Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an App
TA for Zeek app icon

TA for Zeek

This add-on parses open-source Zeek data in JSON and TSV formats, and populates it through into the CIM data model. Compatible with the dashboards and visualizations in the Corelight App for Splunk. Previously maintained by Splunk as the "Splunk Add-on for Zeek aka Bro", now maintained by Corelight as part of its ongoing support for the Zeek project.

Built by Corelight Inc
splunk product badge
Latest Version 1.0.8
April 10, 2024
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0
CIM Version: 5.x
Rating

0

(0)

Log in to rate this app
Support
TA for Zeek support icon
Developer Supported addon
Learn more
Ranking

#1

in Network Security

#34

in Security, Fraud & Compliance
This add-on parses open-source Zeek data in JSON and TSV formats, and populates it through into the CIM data model. Compatible with the dashboards and visualizations in the Corelight App for Splunk. Previously maintained by Splunk as the "Splunk Add-on for Zeek aka Bro", now maintained by Corelight as part of its ongoing support for the Zeek project.

Categories

Created By

Corelight Inc

Type

addon

Downloads

47,409

Licensing

Splunk Answers

Resources

Login to report this app listing