Zeek

zeek.org
Zeek Icon

Detect if you have a malware-infected computer on your network, and powerful network analysis framework and monitor.

Open Source

Zeek Source Code

Author

zeek

Description

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

#bro#dfir#network-monitoring#nsm#pcap#security#zeek

Homepage

https://www.zeek.org

License

NOASSERTION

Created

06 Jul 12

Last Updated

08 Jun 24

Latest version

v7.0.0-dev

Primary Language

C++

Size

163,778 KB

Stars

6,016

Forks

1,180

Watchers

6,016

Language Usage

Language Usage

Star History

Star History

Recent Commits

  • zeek-bot (08 Jun 24)

    Update doc submodule [nomail] [skip ci]

  • Tim Wojtulewicz (07 Jun 24)

    Merge remote-tracking branch 'origin/topic/timw/telemetry-bind-address' * origin/topic/timw/telemetry-bind-address: Add Telemetry::metrics_address option

  • Tim Wojtulewicz (07 Jun 24)

    Add Telemetry::metrics_address option

  • Tim Wojtulewicz (07 Jun 24)

    Merge remote-tracking branch 'origin/topic/timw/pic-prometheus-cpp' * origin/topic/timw/pic-prometheus-cpp: Update cmake submodule [nomail]

  • Tim Wojtulewicz (05 Jun 24)

    Update cmake submodule [nomail]

  • Tim Wojtulewicz (07 Jun 24)

    Merge remote-tracking branch 'origin/topic/timw/dont-require-jq' * origin/topic/timw/dont-require-jq: Change prometheus test to check for require jq

  • Tim Wojtulewicz (07 Jun 24)

    Merge remote-tracking branch 'origin/topic/timw/zeekctl-check-telemetry' * origin/topic/timw/zeekctl-check-telemetry: Check for 'zeekctl check' before trying to start up prometheus

  • Tim Wojtulewicz (06 Jun 24)

    Check for 'zeekctl check' before trying to start up prometheus

  • Tim Wojtulewicz (06 Jun 24)

    Change prometheus test to check for require jq

  • Tim Wojtulewicz (06 Jun 24)

    Update cmake submodule [nomail]

  • zeek-bot (05 Jun 24)

    Update doc submodule [nomail] [skip ci]

  • Tim Wojtulewicz (04 Jun 24)

    Merge remote-tracking branch 'origin/topic/timw/telemetry-follow-up' * origin/topic/timw/telemetry-follow-up: Switch to zeek fork of prometheus-cpp Remove unnecessary shared_from_this on instrument classes Restore label_names field in MetricOpts record Change how we count FDs on Linux to fix zeekctl stop issues Update zeekctl tests for telemetry rework Use forward declarations of prometheus-cpp types in telemetry::Manager Add prometheus-cpp files to install set for plugins to use Fix a memory leak with the CivetWeb callbacks in telemetry Fix a bunch of copy-instead-of-move findings from Coverity Move telmetry label names out of opts records, into main metric records Ensure the order of label values matches the label names Remove prefix column from telemetry.log Fix race condition by pre-building the cluster json data for services.json Set running_under_test for scripts.base.frameworks.logging.telemetry test

  • Tim Wojtulewicz (04 Jun 24)

    Switch to zeek fork of prometheus-cpp

  • Tim Wojtulewicz (04 Jun 24)

    Remove unnecessary shared_from_this on instrument classes

  • Tim Wojtulewicz (04 Jun 24)

    Restore label_names field in MetricOpts record

  • Tim Wojtulewicz (04 Jun 24)

    Change how we count FDs on Linux to fix zeekctl stop issues

  • Tim Wojtulewicz (03 Jun 24)

    Update zeekctl tests for telemetry rework

  • Tim Wojtulewicz (03 Jun 24)

    Use forward declarations of prometheus-cpp types in telemetry::Manager

  • Tim Wojtulewicz (03 Jun 24)

    Add prometheus-cpp files to install set for plugins to use

  • Tim Wojtulewicz (03 Jun 24)

    Fix a memory leak with the CivetWeb callbacks in telemetry

  • Tim Wojtulewicz (03 Jun 24)

    Fix a bunch of copy-instead-of-move findings from Coverity

  • Tim Wojtulewicz (03 Jun 24)

    Move telmetry label names out of opts records, into main metric records

  • Tim Wojtulewicz (01 Jun 24)

    Ensure the order of label values matches the label names

  • Tim Wojtulewicz (01 Jun 24)

    Remove prefix column from telemetry.log

  • Tim Wojtulewicz (01 Jun 24)

    Fix race condition by pre-building the cluster json data for services.json

  • Tim Wojtulewicz (31 May 24)

    Set running_under_test for scripts.base.frameworks.logging.telemetry test

  • Tim Wojtulewicz (04 Jun 24)

    Merge remote-tracking branch 'origin/topic/awelzel/stevesmoot-reporter-error-updates' * origin/topic/awelzel/stevesmoot-reporter-error-updates: Update reporter.bif to describe special case of errors in init

  • Tim Wojtulewicz (04 Jun 24)

    Merge remote-tracking branch 'origin/topic/vern/script-opt-maint.Jun24' * origin/topic/vern/script-opt-maint.Jun24: script optimization baseline tweaks due to recent minor changes updated list of BiFs for script optimization addressed some Coverity nits improved error cascade for invalid attributes

  • Vern Paxson (01 Jun 24)

    script optimization baseline tweaks due to recent minor changes

  • Vern Paxson (01 Jun 24)

    updated list of BiFs for script optimization

Zeek Website

Website

The Zeek Network Security Monitor

Zeek (formerly Bro) is the world’s leading platform for network security monitoring. Flexible, open source, and powered by defenders.

Redirects

Redirects to https://zeek.org/

Security Checks

All 66 security checks passed

Server Details

  • IP Address 192.0.78.150
  • Location San Francisco, California, United States of America, NA
  • ISP Automattic Inc
  • ASN AS2635

Associated Countries

  • US

Saftey Score

Website marked as safe

100%

Blacklist Check

zeek.org was found on 0 blacklists

  • ThreatLog
  • OpenPhish
  • PhishTank
  • Phishing.Database
  • PhishStats
  • URLhaus
  • RPiList Not Serious
  • AntiSocial Blacklist
  • PhishFeed
  • NABP Not Recommended Sites
  • Spam404
  • CRDF
  • Artists Against 419
  • CERT Polska
  • PetScams
  • Suspicious Hosting IP
  • Phishunt
  • CoinBlockerLists
  • MetaMask EthPhishing
  • EtherScamDB
  • EtherAddressLookup
  • ViriBack C2 Tracker
  • Bambenek Consulting
  • Badbitcoin
  • SecureReload Phishing List
  • Fake Website Buster
  • TweetFeed
  • CryptoScamDB
  • StopGunScams
  • ThreatFox
  • PhishFort

Website Preview

Zeek Reviews

More Self-Hosted Network Security

About the Data: Zeek

API

You can access Zeek's data programmatically via our API. Simply make a GET request to:

https://api.awesome-privacy.xyz/networking/self-hosted-network-security/zeek

The REST API is free, no-auth and CORS-enabled. To learn more, view the Swagger Docs or read the API Usage Guide.

About the Data

Beyond the user-submitted YAML you see above, we also augment each listing with additional data dynamically fetched from several sources. To learn more about where the rest of data included in this page comes from, and how it is computed, see the About the Data section of our About page.

Share Zeek

Help your friends compare Self-Hosted Network Security, and pick privacy-respecting software and services.
Share Zeek and Awesome Privacy with your network!

View Self-Hosted Network Security (8)