Zeek Files

Zeek is a powerful network analysis framework

This is an exact mirror of the Zeek project, hosted at https://github.com/zeek/zeek. SourceForge is not affiliated with Zeek. For more information, see the SourceForge Open Source Mirror Directory.

The interactive file manager requires Javascript. Please enable it or use sftp or scp.
You may still browse the files here.

Name	Modified	Size	InfoDownloads / Week
Parent folder
zeek-8.0.2.tar.gz	2025-10-13	99.6 MB	0
zeek-8.0.2.tar.gz.asc	2025-10-13	833 Bytes	0
README.md	2025-10-13	1.0 kB	0
v8.0.2 source code.tar.gz	2025-10-13	32.5 MB	2
v8.0.2 source code.zip	2025-10-13	36.8 MB	3
Totals: 5 Items		168.9 MB	5

We would like to thank Jeff McJunkin (@jeffmcjunkin) and Peter Cullen (@pbcullen) for their contributions to this release.

This release fixes the following security issue:

The KRB analyzer can leak information about hosts in analyzed traffic via external DNS lookups. This only happens if the script-level variable KRB::keytab is set to point at a valid Kerberos keytab file. We're opting to fix the analyzer so it can't happen at all. The fix is to use a different method from libkrb5 that reuses known host information from the packets instead of re-requesting the same information externally.

This release fixes the following bugs:

The get_current_packet_header() BIF now populates the returned record also for fragmented IP datagrams.
The decompose_uri() script function now correctly handles URIs containing IPv6 addresses.
The QUIC parser now discards packets with the fixed_bit field set to 0, rather than continuing to parse and potentially running into analyzer violations.

Source: README.md, updated 2025-10-13

Other Useful Business Software

Gen AI apps are built with MongoDB Atlas Icon

Gen AI apps are built with MongoDB Atlas

The database for AI-powered applications.

MongoDB Atlas is the developer-friendly database used to build, scale, and run gen AI and LLM-powered apps—without needing a separate vector database. Atlas offers built-in vector search, global availability across 115+ regions, and flexible document modeling. Start building AI apps faster, all in one place.

Start Free

Build Securely on AWS with Proven Frameworks Icon

Build Securely on AWS with Proven Frameworks

Lay a foundation for success with Tested Reference Architectures developed by Fortinet’s experts. Learn more in this white paper.

Moving to the cloud brings new challenges. How can you manage a larger attack surface while ensuring great network performance? Turn to Fortinet’s Tested Reference Architectures, blueprints for designing and securing cloud environments built by cybersecurity experts. Learn more and explore use cases in this white paper.

Download Now

Recommended Projects

Wazuh
Wazuh is an open-source, unified security platform that delivers extended detection and response (XDR) and SIEM capabilities for on-premises, cloud, container, and endpoint environments. It provides comprehensive threat prevention, detection, integrity monitoring, incident response, and...
AlienVault OSSIM
OSSIM, AlienVault’s Open Source Security Information and Event Management (SIEM) product, provides event collection, normalization and correlation. For more advanced functionality, AlienVault Unified Security Management (USM) builds on OSSIM with these additional capabilities: * Log...
Brim
Desktop application to efficiently search and analyze super-structured data. Powered by Zed. Zed is a system that makes data easier by utilizing our new super-structured data model. Brim is a desktop app to explore, query, and shape the data in your super-structured data lake. Brim is an open...
Cyberoam iView - Open Source SIEM
Cyberoam iView; the Intelligent Logging & Reporting solution provides organizations network visibility across multiple devices to achieve higher levels of security, data confidentiality while meeting the requirements of regulatory compliance. To know more about Cyberoam and it’s security...
TheHive
TheHive is a scalable 3-in-1 open source and free Security Incident Response Platform designed to make life easier for SOCs, CSIRTs, CERTs and any information security practitioner dealing with security incidents that need to be investigated and acted upon swiftly. It is the perfect companion to...