Python scripts for collection, and analysis of cyber threats and artifacts

Parses in Bro logs, analyses logs & graphs them into a html report

No elephant flows - flow shunting for Arista switches using EOS API

Repo for the talks I have given.

Real Intelligence Threat Analytics

Bro intelligence framework utilities for Golang

Slides and stuff for my talk at flocon 2021 "Collecting Wiredata at House Hold Speeds"

Proyecto de Grado realizado en la Universidad de Granada

A sample application showing how to retrieve CPTs from the BRO with the bro python package.

BRO IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to capture and index BRO logs coming from a Security Onion sensor.

day 02 task

A friendly commandline tool for bro and tldr

Bro packages. Possibly unstable. I release here before anywhere else.

A continuous integration system for testing Bro IDS

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

Bro Log Analysis

A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, tedious tasks slowing them down. #nsacyber

DO NOT GET CAUGHT LACKING! Keep it totally legal, bro. LICENSE, SPDX headers, CI enforcement, repair mode. The works. Legit af.