Skip to content
/ wildcard-domain Public

Adds a Intel::WILDCARD_DOMAIN type to the Zeek Inteligence Framework

License

BSD-2-Clause license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

jbaggs/wildcard-domain

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
scripts
scripts
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.rst
README.rst
 
 
zkg.meta
zkg.meta
 
 

Repository files navigation

wildcard-domain

In the default configuration, the Zeek Intelligence Framework requires exact matches for detection of intel items. This script adds a new Intel::WILDCARD_DOMAIN type that matches on the base domain name, regardless of what subdomain may be prepended to it. ( e.g.: "example.com" would match "example.com", "foo.example.com", "foo.bar.example.com", etc. )

Installation

zkg install jbaggs/wildcard-domain

About

Adds a Intel::WILDCARD_DOMAIN type to the Zeek Inteligence Framework

Resources

Readme

License

BSD-2-Clause license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages