jsiwek

Pinned Repositories

bro_vetting
Bro scripts to monitor for new hosts within a subnet range that aren't whitelisted/vetted.
Language:Bro13 6 00
capsan
Packet capture sanitizer/anonymizer.
Language:C++23 5 06
file
Instrumented version of http://www.darwinsys.com/file/ that can be used to convert a magic database into a set of Bro signatures. One signature is created for every magic rule path that leads to a MIME type. See the "bro-signatures" branch.
Language:C3 3 00
sshd_audit_mux
Language:Python5 4 01
WhitesmithsIndentStyle
Whitesmiths indentation style plugin for Sublime Text.
Language:Python61
zeek-cryptomining
Detect cryptocurrency mining traffic with Zeek.
Language:Zeek46 10 49
zeek-print-log-info
Gather and print field descriptions for all Zeek logs.
Language:Zeek1 4 00
zeek-test-package
A test package for https://github.com/zeek/package-manager
Language:Zeek2 3 01
ZeroMQ-SSL-State-Machine
Experiment in using OpenSSL as a state machine in order to complete a SSL/TLS handshake over a 0MQ socket.
Language:C30
zeek
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
Language:C++6.4k 351 1.4k1.2k

jsiwek's Repositories

jsiwek/zeek-cryptomining
Detect cryptocurrency mining traffic with Zeek.
Language:Zeek46 10 49
jsiwek/capsan
Packet capture sanitizer/anonymizer.
Language:C++23 5 06
jsiwek/actor-framework
An Open Source Implementation of the Actor Model in C++
Language:C++2 3 0
jsiwek/bro.vim
bro.vim - A simple plugin for working with the bro scripting languages.
Language:Bro2 3 0
jsiwek/linguist
Language Savant. If your repository's language is being reported incorrectly, send us a pull request!
Language:Ruby2 3 0
jsiwek/package_control_channel
Default channel file for Package Control. Follow the directions at:
Language:Python2 3 0
jsiwek/zeek-test-package
A test package for https://github.com/zeek/package-manager
Language:Zeek2 3 01
jsiwek/aaalm
Generate network maps from packet captures
Language:JavaScript1 2 01
jsiwek/bro-community-id
Bro support for "community ID" flow hashing.
Language:Shell1 3 0
jsiwek/zeek-print-log-info
Gather and print field descriptions for all Zeek logs.
Language:Zeek1 4 00
jsiwek/ace
Ace (Ajax.org Cloud9 Editor)
Language:JavaScript
jsiwek/action-zkg-install
Github Action for installing a Zeek package via zkg
Language:Shell2 0
jsiwek/bro-http2
Plugin for Bro which provides http2 decoder/analyzer
Language:C++3 0
jsiwek/bro-rita
A bro plugin for writing log data to MongoDB for use with RITA
Language:C++
jsiwek/ci-email-action
GitHub action to send email via SMTP on CI check_suite failure
Language:Python3 04
jsiwek/cirrus-ci-test
Experimenting with Cirrus CI
Language:Shell3 0
jsiwek/emojifier
Set your logs on fire with Emoji-🔥!
Language:Zeek
jsiwek/git-notifier
Email change notifications for git (and GitHub).
Language:Python
jsiwek/install-clang
A script to create a standalone installation of clang/LLVM/libc++. Updated for Clang/LLVM 6.0.
Language:Shell3 0
jsiwek/ja3
JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
Language:Python
jsiwek/oss-fuzz
OSS-Fuzz - continuous fuzzing of open source software.
Language:Shell2 0
jsiwek/packages
The default package source of the Zeek Package Manager
jsiwek/pygments
Pygments is a generic syntax highlighter written in Python
jsiwek/rtd-test
Experiments/testing related to Read The Docs
Language:Python3 0
jsiwek/smtp-url-analysis
Extracting and analyzing URLs from Emails for phishing events
Language:Zeek2 0
jsiwek/tcprs
TCP Retransmission and State Analyzer plugin for the Bro-IDS framework
Language:C++
jsiwek/vim-easymotion-vscode
Vim motions on speed!
Language:Vim Script2 0
jsiwek/vim-spicy
Syntax highlighting for BinPAC++/Spicy files (.pac2/.spicy) in Vim
Language:Vim script
jsiwek/zeek
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
Language:C++3 0
jsiwek/zeek-vast
Enables Bro to communicate with VAST
Language:Zeek2 0