{"id":13415473,"url":"https://github.com/zeek/zeek","last_synced_at":"2026-01-29T21:12:03.214Z","repository":{"id":3846581,"uuid":"4930716","full_name":"zeek/zeek","owner":"zeek","description":"Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.","archived":false,"fork":false,"pushed_at":"2025-05-09T22:02:52.000Z","size":192263,"stargazers_count":6853,"open_issues_count":184,"forks_count":1260,"subscribers_count":353,"default_branch":"master","last_synced_at":"2025-05-12T13:14:08.363Z","etag":null,"topics":["bro","dfir","network-monitoring","nsm","pcap","security","zeek"],"latest_commit_sha":null,"homepage":"https://www.zeek.org","language":"C++","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/zeek.png","metadata":{"files":{"readme":"README","changelog":"CHANGES","contributing":"CONTRIBUTING.md","funding":null,"license":"COPYING","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2012-07-06T20:30:16.000Z","updated_at":"2025-05-12T02:01:43.000Z","dependencies_parsed_at":"2023-09-23T07:24:52.516Z","dependency_job_id":"64706b52-4d6d-4fea-94bd-52ade373e38f","html_url":"https://github.com/zeek/zeek","commit_stats":{"total_commits":13070,"total_committers":232,"mean_commits":56.33620689655172,"dds":0.8802601377199694,"last_synced_commit":"a3a0155825a80d26157f1de0595752a9af142516"},"previous_names":[],"tags_count":185,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zeek%2Fzeek","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zeek%2Fzeek/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zeek%2Fzeek/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zeek%2Fzeek/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/zeek","download_url":"https://codeload.github.com/zeek/zeek/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":253745197,"owners_count":21957319,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bro","dfir","network-monitoring","nsm","pcap","security","zeek"],"created_at":"2024-07-30T21:00:49.492Z","updated_at":"2026-01-29T21:12:03.169Z","avatar_url":"https://github.com/zeek.png","language":"C++","funding_links":[],"categories":["Threat Detection and Hunting","Network Traffic Logging","C++","Using AI for Pentesting","\u003ca id=\"946d766c6a0fb23b480ff59d4029ec71\"\u003e\u003c/a\u003e防护\u0026\u0026Defense","\u003ca name=\"cpp\"\u003e\u003c/a\u003eC++","By Industry","security","Uncategorized","\u003ca id=\"0abd611fc3e9a4d9744865ca6e47a6b2\"\u003e\u003c/a\u003e工具","Application Recommendation"],"sub_categories":["Tools","Detection","\u003ca id=\"ff3e0b52a1477704b5f6a94ccf784b9a\"\u003e\u003c/a\u003eIDS\u0026\u0026IPS","Security","Uncategorized","🔒 Cybersecurity"],"readme":"=================================\nThe Zeek Network Security Monitor\n=================================\n\nZeek is a powerful framework for network traffic analysis and security\nmonitoring. Follow us on Twitter at @zeekurity.\n\nKey Features\n============\n\n*   **In-depth Analysis**\n    Zeek ships with analyzers for many protocols, enabling\n    high-level semantic analysis at the application layer.\n\n*   **Adaptable \u0026 Flexible**\n    Zeek's domain specific scripting language enables site-specific\n    monitoring policies and means that it is not restricted to any\n    particular detection approach.\n\n*   **Efficient**\n    Zeek targets high-performance networks and is used operationally\n    at a variety of large sites.\n\n*   **Highly Stateful**\n    Zeek keeps extensive application-layer state about the network\n    it monitors and provides a high-level archive of a network's\n    activity.\n\nGetting Started\n===============\n\nThe best place to find information about getting started with Zeek is\nour web site https://www.zeek.org, specifically the documentation\nsection there [1]. One the web site you can also get downloads for\nstable releases, tutorials on getting Zeek set up, and many other\nuseful resources.\n\nYou can find release notes in NEWS, and a complete record of all\nchanges in CHANGES.\n\nTo work with the most recent code from the development branch of Zeek,\nclone the master git repository:\n\n    \u003e git clone --recursive https://github.com/zeek/zeek\n\nWith all dependencies [2] in place, build and install:\n\n    \u003e ./configure \u0026\u0026 make \u0026\u0026 sudo make install\n\nWrite your first Zeek script:\n\n    # File \"hello.zeek\"\n\n    event zeek_init()\n        {\n        print \"Hello, World!\";\n        }\n\nAnd run it:\n\n    \u003e zeek hello.zeek\n\nFor learning more about the Zeek scripting language,\nhttps://try.zeek.org is a great resource.\n\nDevelopment\n===========\n\nZeek is developed on GitHub by its community. We welcome\ncontributions. Working on an open source project like Zeek can be an\nincredibly rewarding experience and, packet by packet, makes the\nInternet a little safer. Today, as a result of countless\ncontributions, Zeek is used operationally around the world by major\ncompanies and educational and scientific institutions alike for\nsecuring their cyber infrastructure.\n\nIf you're interested in getting involved, we collect feature requests\nand issues on GitHub. More information on Zeek's development can be\nfound here [2], and information about its community and mailing lists\n(which are fairly active) can be found here [3].\n\nLicense\n-------\n\nZeek comes with a BSD license, allowing for free use with virtually no\nrestrictions. You can find it in COPYING.\n\nTooling\n-------\n\nWe use the following tooling to help discover issues to fix, amongst a number of\nothers.\n\n- Clang-Tidy [5]\n- Coverity [6]\n- PVS-Studio - static analyzer for C, C++, C#, and Java code [7]\n\n[1] https://www.zeek.org/documentation/index.html\n[2] https://docs.zeek.org/en/stable/install/install.html\n[3] https://www.zeek.org/development/index.html\n[4] https://www.zeek.org/community/index.html\n[5] https://clang.llvm.org/extra/clang-tidy/\n[6] https://scan.coverity.com/projects/bro\n[7] https://pvs-studio.com/en/pvs-studio/?utm_source=github\u0026utm_medium=organic\u0026utm_campaign=open_source","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fzeek%2Fzeek","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fzeek%2Fzeek","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fzeek%2Fzeek/lists"}