Zeek cluster fails with pcap_error: socket: Operation not permitted (pcap_activate)...

Zeek is not storing files, even after script was loaded. What am I missing?...

Does Zeek allow to inspect RTP headers?...

Zeek Scripting "Error field missing value"...

How to set mmdb_dir in Zeek/Bro...

Is it possible to inspect TCP reserved bits with Zeek?...

while start the bro the error is coming "error occurred while trying to send mail: send-mail: S...

Extract the Source IP Address from two different log samples with regex...

Bro / Zeek broctl unable to find peers...

Which services are identified in conn.log by Bro?...

Where are built in scripts for identifying popular web applications?...

Security Onion (Ubuntu 16.04) syslog-ng to multiple sources...

Bro Script to look up hostname from IP Address...

Grok filter isn't matching to the bro httplog data...

Changing bro logging Defaults...

Determining bro version from conn.log file...

Bro Script: Hardcoded IP addresses...

Bro-cut and conn.log - how to access individuals columns?...

How to capture metadata for https traffic using Bro...

Bro IDS - detecting DDoS attacks...

Bro 2.4.1 generating E-mail notice for SSH Bruteforce Attack...

How to generate the software.log from a pcap file using bro?...

Bro - write two filters for database...

Bro: Log only one stream...

Bro IDS searches...

Bro Logs address to WSO2 CEP for processing...

Events for Ldap in Bro IDS...