BZAR Logo

BZAR

0
Free
Updated 11 March 2025
Network Security
Attandck
Bro
Cyber Security
Network Security
Security Monitoring
Threat Detection
Visit Website

BZAR (Bro/Zeek ATT&CK-based Analytics and Reporting) is a set of Bro/Zeek scripts that utilize the SMB and DCE-RPC protocol analyzers and the File Extraction Framework to detect ATT&CK-like activity, raise notices, and write to the Notice Log. It uses the Bro/Zeek Network Security Monitor to detect ATT&CK-based adversarial activity and is a component of the Cyber Analytics Repository. BZAR must be tuned for your specific operational environment to avoid unnecessary entries in the Notice Log.

FEATURES

EXPLORE BY TAGS

Attandck

Bro

Cyber Security

Network Security

Security Monitoring

Threat Detection

SIMILAR TOOLS

AWS Network Firewall Logo
AWS Network Firewall

AWS Network Firewall provides fine-grained control over network traffic and enables easy deployment of firewall security.

Free
Network Security
ExternalC2 Logo
ExternalC2

A library for integrating communication channels with the Cobalt Strike External C2 server.

Free
Network Security
HoneyWRT Intrusion Detection System Logo
HoneyWRT Intrusion Detection System

A low interaction Python honeypot designed to mimic various services and ports to attract attackers and log access attempts.

Free
Network Security
GNU Netcat Logo
GNU Netcat

A featured networking utility for reading and writing data across network connections with advanced capabilities.

Free
Network Security
tcpreplay Logo
tcpreplay

Tcpreplay is a suite of Open Source utilities for editing and replaying captured network traffic.

Free
Network Security
nbdclient Logo
nbdclient

NBD is a user-space network protocol for sharing block devices over a network, allowing clients to access block devices on a server as if they were local.

Free
Network Security
tcpdump Logo
tcpdump

Tcpdump is a command-line packet analyzer for capturing and analyzing network traffic.

Free
Network Security
bettercap Logo
bettercap

A powerful and extensible framework for reconnaissance and attacking various networks and devices.

Free
Network Security
Cacador Logo
Cacador

A tool for extracting common indicators of compromise from a block of text.

Free
Network Security

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy