Zeek

Critical Path Security Léargas Platform

Zeek-based network traffic analysis & IDS platform for enterprise deployments.

Corelight Open NDR Platform

Network detection and response platform with IDS, NSM, and threat intel.

zeek paraglob

Pattern matching library for strings against large lists of glob patterns

Corelight Zeek

Open source network security monitoring tool for traffic analysis

Granef

A network forensics toolkit that transforms network traffic data into graph-based representations for interactive analysis and visualization through a web interface.

GQUIC Protocol Analyzer

A Zeek-based protocol analyzer that parses GQUIC traffic to extract connection metadata and create fingerprints for detecting anomalous network behavior.

RDFP

Zeek Remote desktop fingerprinting script for fingerprinting Remote Desktop clients.

zeek2es.py

Python application to translate Zeek logs into ElasticSearch's bulk load JSON format with detailed instructions and features.

RITA (Real Intelligence Threat Analytics)

Open source framework for network traffic analysis with advanced features.

Zeek Analysis Tools (ZAT)

ZAT is a Python package that processes and analyzes Zeek network security data using machine learning libraries like Pandas, scikit-learn, Kafka, and Spark.