BZAR Logo

BZAR

0
Free
Visit Website

BZAR (Bro/Zeek ATT&CK-based Analytics and Reporting) is a set of Bro/Zeek scripts that utilize the SMB and DCE-RPC protocol analyzers and the File Extraction Framework to detect ATT&CK-like activity, raise notices, and write to the Notice Log. It uses the Bro/Zeek Network Security Monitor to detect ATT&CK-based adversarial activity and is a component of the Cyber Analytics Repository. BZAR must be tuned for your specific operational environment to avoid unnecessary entries in the Notice Log.

FEATURES

ALTERNATIVES

A simple honeypot that opens a listening socket and waits for connection attempts, with configurable reply and event handling

Akamai Enterprise Application Access is a ZTNA solution that provides secure, identity-based access to private applications without exposing the network.

A set of Go-based emulators for testing network security and analyzing network traffic.

A powerful interactive packet manipulation program and library for network exploration and security testing.

Romana automates cloud native network creation and secures applications with a distributed firewall.

Fast, smart, effective port scanner with extensive extendability and adaptive learning.

Repository of pcap traces for evaluating Network Intrusion Detection Systems in HVAC systems.

Prisma SASE is a cloud-delivered service integrating network security, SD-WAN, and user experience management for comprehensive protection and optimization of hybrid work environments.

PINNED