Data verified May 2026
ADYour product here. Reach security decision-makers.Launch a campaignZeek Agent Description
Zeek Agent is an endpoint monitoring tool for Linux and macOS that reports file, socket, and process events to Zeek. It captures event data from Linux Audit using the Unix domain socket plugin and from macOS using Endpoint Security framework. Collected event data is stored in an SQL database and later fetched by Zeek using scheduled queries. It can also interface to osquery for accessing endpoint information. Pre-built packages are available on the releases page. The Zeek Agent Framework provides API access to Zeek Agents and default scripts for recording endpoint activity into Zeek logs.
Zeek Agent FAQ
Common questions about Zeek Agent including features, pricing, alternatives, and user reviews.
Zeek Agent is An endpoint monitoring tool for Linux and macOS that reports file, socket, and process events to Zeek. It is a Endpoint Security solution designed to help security teams with Linux, Mac Os.
Zeek Agent is a free Endpoint Security tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/zeek/zeek-agent/ for download and installation instructions.
Popular alternatives to Zeek Agent include:
1.BluSapphire OneAgent™ - Prevention-first EDR stopping zero-day attacks, ransomware, and fileless malware (Commercial)
2.HarfangLab Cybersecurity Solutions - EDR platform with EPP capabilities for endpoint threat detection and response (Commercial)
3.Exein Runtime - Runtime security agent for IoT devices with AI-based threat detection (Commercial)
4.AI EdgeLabs Host Platform Security - eBPF-based, AI-driven EDR for edge, containers, and critical infra. (Commercial)
5.Invary Runtime Integrity Solution - Kernel-level runtime integrity verification using NSA-licensed technology. (Commercial)
Compare all Zeek Agent alternatives at https://cybersectools.com/alternatives/zeek-agent
Zeek Agent is for security teams and organizations that need Linux, Mac Os. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Endpoint Security tools can be found at https://cybersectools.com/categories/endpoint-security
Have more questions? Browse our categories or search for specific tools.
