/BroScript

分析提取各种应用层协议所需数据

Primary LanguageZeek

应用层协议分析器

  • 分析提取应用层各协议五元组信息
  • 邮件相关协议提取账号密码,附件
  • http-post,ftp提取上传的文件
  • Analyze and extract valid data of various protocols in the application layer
  • Extract email related protocol account password, attachment
  • Extract http-post, ftp uploaded files

包含的协议(Included protocol)

dns pop3 smtp snmp netflow sip imap http ftp telnet

zeek资源(原名bro)

请参阅zeek官网页面以了解zeek,并查看有关安装,配置和使用文档