Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
-
Updated
Jul 10, 2024 - Go
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
Bro IDS Dockerfile
Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
A lightweight tool to score network traffic and flag anomalies
brostash: Linux distribution based on Debian and focusing on network security events collection
An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk
Brostash Logstash pipeline
Simple logfile parser for Bro IDS
Look for un-sinkholed C&C IPs in your Bro logs (from Bambanek Consulting C&C master list)
Integration of Bro-IDS and ELK stack
🐦 A fluentd config for zeek
Add a description, image, and links to the bro-ids topic page so that developers can more easily learn about it.
To associate your repository with the bro-ids topic, visit your repo's landing page and select "manage topics."