|
About the Development category
|
|
1
|
251
|
May 6, 2022
|
|
Struggling with plugin/scripts
|
|
1
|
20
|
May 27, 2025
|
|
Creating a Baseline from known hosts and services
|
|
2
|
39
|
May 15, 2025
|
|
How to push status information from a spicy parser to an cpp parser?
|
|
4
|
21
|
May 15, 2025
|
|
Zeek ignores my spicy plugins
|
|
2
|
19
|
May 15, 2025
|
|
Add/Ignore files extensions from hosom file-extraction module
|
|
1
|
48
|
March 3, 2025
|
|
Script for malicious User agent list
|
|
2
|
75
|
February 14, 2025
|
|
Geoip info add to Analyzer & Weird logs
|
|
0
|
22
|
January 31, 2025
|
|
Building Zeek 7.0.3 from source
|
|
5
|
67
|
December 12, 2024
|
|
Packet Analyzer over TCP
|
|
2
|
63
|
December 11, 2024
|
|
Getting services usage and inactivity over time
|
|
1
|
28
|
December 9, 2024
|
|
Filter and Aggregation of Ethernet fields: Mac Address using summary statistics
|
|
1
|
48
|
October 2, 2024
|
|
New spicy protocol with zeek broker
|
|
3
|
398
|
August 3, 2023
|
|
Best place io deploy zeek
|
|
1
|
234
|
August 2, 2023
|
|
How to activate extended ssl log information
|
|
8
|
366
|
April 17, 2023
|
|
Custom development scripts for the HTTP protocol
|
|
1
|
239
|
April 13, 2023
|
|
Othe than the CheckString function, how to return a whole complete raw string that may embed NUL characters in a bif function?
|
|
3
|
224
|
April 9, 2023
|
|
Zeekctl crashed after doing zeekctl "Install" command
|
|
1
|
350
|
February 20, 2023
|
|
How to add process field to conn.log?
|
|
2
|
449
|
January 5, 2023
|
|
Check if request has response in Zeek script
|
|
4
|
378
|
December 2, 2022
|
|
Retrieve modbus error code in Zeek event
|
|
1
|
307
|
December 1, 2022
|
|
What's the difference between <if> and <@if>
|
|
4
|
244
|
November 30, 2022
|
|
Modify consts.zeek file
|
|
1
|
254
|
November 30, 2022
|
|
Event groups and log streams - looking for feeback
|
|
0
|
201
|
November 28, 2022
|
|
Special case blank identifier _ in Zeek scripts
|
|
0
|
211
|
October 18, 2022
|
|
NTLM Version Parsing
|
|
0
|
232
|
August 29, 2022
|
|
Script-layer telemetry framework proposal
|
|
0
|
232
|
July 8, 2022
|
|
Renaming the Packet::l2_checksummed and Packet::l3_checksummed variables
|
|
2
|
255
|
July 1, 2022
|
|
Zeek benchmarks
|
|
5
|
372
|
May 6, 2022
|
|
I have a question about “Use multiple ZEEK to process traffic”
|
|
1
|
238
|
May 6, 2022
|