FreeBSD.software
Home/security/zeek

zeek

8.0.6

System for detecting network intruders in real-time

Zeek (formerly known as Bro) is an open-source, Unix-based Network Intrusion Detection System (NIDS) that passively monitors network traffic and looks for suspicious activity. Zeek detects intrusions by first parsing network traffic to extract its application-level semantics and then executing event-oriented analyzers that compare the activity with patterns deemed troublesome. Its analysis includes detection of specific attacks (including those defined by signatures, but also those defined in terms of events) and unusual activities (e.g., certain hosts connecting to certain services, or patterns of failed connection attempts). Zeek is documented in the USENIX 1998 Security Conference proceedings (as Bro).

Origin: security/zeek
Category: security
Size: 139MiB
License: CC-BY-4.0
Maintainer: leres@FreeBSD.org
Dependencies: 12 packages
Required by: 0 packages
Website: www.zeek.org
$pkg install zeek

Dependencies (12)

python311py311-zkgpy311-sqlite3perl5libzmq4libmaxminddblbl-hflbl-cfipsumdumpgettext-runtimec-aresbash

More in security

gnutls3.8.12
GNU Transport Layer Security library
py311-cryptography45.0.7_2,1
Cryptographic recipes and primitives for Python developers
libgcrypt1.11.2
General purpose cryptographic library based on the code from GnuPG
libgpg-error1.58
Common error values for all GnuPG components
ca_root_nss3.117_2
Root certificate bundle from the Mozilla Project
cyrus-sasl2.1.28_5
RFC 2222 SASL (Simple Authentication and Security Layer)
libsodium1.0.21
Library to build higher-level cryptographic tools
php84-filter8.4.16
The filter shared extension for php
libsecret0.21.7_2
Library to access the secret service API
p5-IO-Socket-SSL2.095
Perl5 interface to SSL sockets