What is the pricing for zeek2es.py?

zeek2es.py is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/corelight/zeek2es/ for download and installation instructions.

What are alternatives to zeek2es.py?

Popular alternatives to zeek2es.py include: 1. IBM QRadar SIEM - SIEM platform for centralized security visibility and threat detection (Commercial) 2. SolarWinds Observability - Unified observability platform for IT infrastructure, apps, and databases (Commercial) 3. Datadog Cloud SIEM - Cloud-based SIEM for threat detection and security monitoring (Commercial) 4. DNIF HYPERCLOUD - SIEM platform with user analytics and automation for threat detection (Commercial) 5. Coralogix DataPrime Engine - Observability platform with unified query engine for logs, metrics, and traces (Commercial) Compare these tools and more at https://cybersectools.com/categories/security-operations

Who should use zeek2es.py?

zeek2es.py is for security teams and organizations that need Zeek, Log Management. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations

zeek2es.py | CybersecTools

zeek2es.py

Python application to translate Zeek logs into ElasticSearch's bulk load JSON format with detailed instructions and features.

Free39

Visit Website

Compare

Free39

zeek2es.py

Python application to translate Zeek logs into ElasticSearch's bulk load JSON format with detailed instructions and features.

Visit Website

Data verified Apr 2026

Explore Security Operations 48 Alternatives Compare Stacks Market Map Explore All Tools

ADYour product here. Reach security decision-makers.Launch a campaign

zeek2es.py Description

Security Operations/Security Information and Event Management

Zeek Log Management

This Python application translates Zeek's ASCII TSV and JSON logs into ElasticSearch's bulk load JSON format. Table of Contents: Introduction Installation Elastic v8.0+ Docker Upgrading zeek2es ES Ingest Pipeline Filtering Data Python Filters Filter on Keys Command Line Examples Command Line Options Requirements Notes Humio JSON Log Input Data Streams Helper Scripts Cython Introduction Want to see multiple Zeek logs for the same connection ID (uid) or file ID (fuid)? Here are the hits from files.log, http.log, and conn.log for a single uid: You can perform subnet searching on Zeek's 'addr' type: You can create time series graphs, such as this NTP and HTTP graph: IP Addresses can be Geolocated with the -g command line option: Aggregations are simple and quick: This application will 'just work' when Zeek log formats change. The logic reads the field names and associated types to set up the mappings correctly in ElasticSearch. This application will recognize gzip or uncompressed logs. This application assumes you have ElasticSearch set up on your localhost at the default port. If you do not have ElasticSearch you can output the JSON to stdout with the -s -b command line opt

zeek2es.py Description

Security Operations/Security Information and Event Management

Zeek Log Management

zeek2es.py FAQ

Common questions about zeek2es.py including features, pricing, alternatives, and user reviews.

zeek2es.py is Python application to translate Zeek logs into ElasticSearch's bulk load JSON format with detailed instructions and features. It is a Security Operations solution designed to help security teams with Zeek, Log Management.

Have more questions? Browse our categories or search for specific tools.

zeek2es.py

zeek2es.py

zeek2es.py Description

zeek2es.py Description

zeek2es.py FAQ

FEATURED

ALTERNATIVES

POPULAR

TRENDING CATEGORIES

FEATURED

ALTERNATIVES

POPULAR

TRENDING CATEGORIES