Zeek

zeek.org
Zeek Icon

Detect if you have a malware-infected computer on your network, and powerful network analysis framework and monitor.

Open Source

Zeek Source Code

Author

zeek

Description

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

#bro#dfir#network-monitoring#nsm#pcap#security#zeek

Homepage

https://www.zeek.org

License

NOASSERTION

Created

06 Jul 12

Last Updated

17 May 24

Latest version

v7.0.0-dev

Primary Language

C++

Size

163,968 KB

Stars

5,966

Forks

1,172

Watchers

5,966

Language Usage

Language Usage

Star History

Star History

Recent Commits

  • Tim Wojtulewicz (17 May 24)

    Merge remote-tracking branch 'origin/topic/bbannier/bump-spicy' * origin/topic/bbannier/bump-spicy: Bump Spicy to latest dev snapshot

  • Benjamin Bannier (17 May 24)

    Bump Spicy to latest dev snapshot

  • Tim Wojtulewicz (17 May 24)

    CI: Disable coverage temporarily, broken with clang-18

  • Tim Wojtulewicz (16 May 24)

    Merge remote-tracking branch 'origin/topic/vern/zam-subnet-fix' * origin/topic/vern/zam-subnet-fix: Fix for ZAM inlining of nested function calls with the same parameter names Fixed ZAM logic error in canonicalizing specialized min/max instructions Fixed order-of-evaluation bug in ZAM Subnet-To-Addr instruction "-a zam" BTest baseline update reflecting recent Spicy baseline change

  • Tim Wojtulewicz (16 May 24)

    Merge branch 'topic/timw/no-spicy-head-on-releases' * topic/timw/no-spicy-head-on-releases: CI: Disable spicy_head task for release branches

  • Tim Wojtulewicz (15 May 24)

    CI: Disable spicy_head task for release branches

  • Tim Wojtulewicz (16 May 24)

    Merge remote-tracking branch 'origin/topic/timw/fix-coverage-build' * origin/topic/timw/fix-coverage-build: CI: Use llvm-cov-18 on Cirrus for building coverage data

  • Vern Paxson (16 May 24)

    Fix for ZAM inlining of nested function calls with the same parameter names

  • Vern Paxson (16 May 24)

    Fixed ZAM logic error in canonicalizing specialized min/max instructions

  • Vern Paxson (16 May 24)

    Fixed order-of-evaluation bug in ZAM Subnet-To-Addr instruction

  • Vern Paxson (16 May 24)

    "-a zam" BTest baseline update reflecting recent Spicy baseline change

  • Tim Wojtulewicz (15 May 24)

    CI: Use llvm-cov-18 on Cirrus for building coverage data

  • Tim Wojtulewicz (14 May 24)

    Merge remote-tracking branch 'origin/topic/timw/missing-lcov' * origin/topic/timw/missing-lcov: CI: Add missing lcov package to ubuntu 24 Dockerfile

  • Tim Wojtulewicz (14 May 24)

    CI: Add missing lcov package to ubuntu 24 Dockerfile

  • Tim Wojtulewicz (14 May 24)

    Merge remote-tracking branch 'origin/topic/timw/ubuntu-24-sanitizers' * origin/topic/timw/ubuntu-24-sanitizers: CI: Use clang-18 on Ubuntu 24 for sanitizers builds, enable TSan builds CI: Add clang-18 to Ubuntu 24.04 VM

  • Tim Wojtulewicz (10 May 24)

    CI: Use clang-18 on Ubuntu 24 for sanitizers builds, enable TSan builds

  • Tim Wojtulewicz (10 May 24)

    CI: Add clang-18 to Ubuntu 24.04 VM

  • Robin Sommer (13 May 24)

    Merge remote-tracking branch 'origin/topic/robin/spicy-gh-1657' * origin/topic/robin/spicy-gh-1657: Apply missing fix for https://github.com/zeek/spicy/pull/1723.

  • Robin Sommer (23 Apr 24)

    Apply missing fix for https://github.com/zeek/spicy/pull/1723.

  • Robin Sommer (13 May 24)

    Merge remote-tracking branch 'origin/topic/robin/revert-deferred' Includes Spicy bump. * origin/topic/robin/revert-deferred: Spicy: Update for https://github.com/zeek/spicy/pull/1738.

  • Robin Sommer (13 May 24)

    Spicy: Update for https://github.com/zeek/spicy/pull/1738.

  • Tim Wojtulewicz (10 May 24)

    Merge remote-tracking branch 'origin/topic/timw/ci-ubuntu-24-lts' * origin/topic/timw/ci-ubuntu-24-lts: CI: Update asan and ubsan tasks to use Ubuntu 22.04 VM CI: Replace Ubuntu 23.10 with Ubuntu 24.04

  • Robin Sommer (10 May 24)

    Merge remote-tracking branch 'origin/topic/robin/gh-3561-forward-to-udp' * origin/topic/robin/gh-3561-forward-to-udp: Update docs. Add explicit children life-cycle management method to analyzers. Spicy: Support UDP in Spicy's `protocol_*` runtime functions. Add method to analyzer to retrieve direct child by name. Extend PIA's `FirstPacket` API. Spicy: Prepare for supporting forwarding to protocols other than TCP.

  • Robin Sommer (10 May 24)

    Merge remote-tracking branch 'origin/topic/robin/gh-3725-service' * origin/topic/robin/gh-3725-service: Spicy: Fix service reporting for replaced analyzers. Fix include of private file in public header

  • Tim Wojtulewicz (08 May 24)

    CI: Update asan and ubsan tasks to use Ubuntu 22.04 VM

  • Tim Wojtulewicz (08 May 24)

    CI: Replace Ubuntu 23.10 with Ubuntu 24.04

  • Tim Wojtulewicz (08 May 24)

    Merge remote-tracking branch 'origin/topic/timw/update-zeekctl-zkg' * origin/topic/timw/update-zeekctl-zkg: Update package-manager submodule [nomail] Update zeekctl submodule [nomail]

  • Tim Wojtulewicz (08 May 24)

    Merge remote-tracking branch 'origin/topic/vern/gen-zam-multi-files' * origin/topic/vern/gen-zam-multi-files: enable ZAM operation specifications to reside in multiple files (not yet used)

  • Vern Paxson (02 May 24)

    enable ZAM operation specifications to reside in multiple files (not yet used)

  • Tim Wojtulewicz (08 May 24)

    Update package-manager submodule [nomail]

Zeek Website

Website

The Zeek Network Security Monitor

Zeek (formerly Bro) is the world’s leading platform for network security monitoring. Flexible, open source, and powered by defenders.

Redirects

Redirects to https://zeek.org/

Security Checks

All 66 security checks passed

Server Details

  • IP Address 192.0.78.150
  • Location San Francisco, California, United States of America, NA
  • ISP Automattic Inc
  • ASN AS2635

Associated Countries

  • US

Saftey Score

Website marked as safe

100%

Blacklist Check

zeek.org was found on 0 blacklists

  • ThreatLog
  • OpenPhish
  • PhishTank
  • Phishing.Database
  • PhishStats
  • URLhaus
  • RPiList Not Serious
  • AntiSocial Blacklist
  • PhishFeed
  • NABP Not Recommended Sites
  • Spam404
  • CRDF
  • Artists Against 419
  • CERT Polska
  • PetScams
  • Suspicious Hosting IP
  • Phishunt
  • CoinBlockerLists
  • MetaMask EthPhishing
  • EtherScamDB
  • EtherAddressLookup
  • ViriBack C2 Tracker
  • Bambenek Consulting
  • Badbitcoin
  • SecureReload Phishing List
  • Fake Website Buster
  • TweetFeed
  • CryptoScamDB
  • StopGunScams
  • ThreatFox
  • PhishFort

Website Preview

Zeek Reviews

More Self-Hosted Network Security

About the Data: Zeek

API

You can access Zeek's data programmatically via our API. Simply make a GET request to:

https://api.awesome-privacy.xyz/networking/self-hosted-network-security/zeek

The REST API is free, no-auth and CORS-enabled. To learn more, view the Swagger Docs or read the API Usage Guide.

About the Data

Beyond the user-submitted YAML you see above, we also augment each listing with additional data dynamically fetched from several sources. To learn more about where the rest of data included in this page comes from, and how it is computed, see the About the Data section of our About page.

Share Zeek

Help your friends compare Self-Hosted Network Security, and pick privacy-respecting software and services.
Share Zeek and Awesome Privacy with your network!

View Self-Hosted Network Security (8)