mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 06:38:20 +00:00
ded98cd373
This is based on commit 2731def9159247e6da8a3191783c89683363689c from the zeek-docs repo.
38 lines
1 KiB
ReStructuredText
38 lines
1 KiB
ReStructuredText
|
||
==========
|
||
Frameworks
|
||
==========
|
||
|
||
Zeek includes several software frameworks that provide commonly used
|
||
functionality to the scripting layer. Among other things, these frameworks
|
||
enhance Zeek’s ability to ingest data, structure and filter its outputs, adapt
|
||
settings at runtime, and interact with other components in your network. Most
|
||
frameworks include functionality implemented in Zeek’s core, with
|
||
corresponding data structures and APIs exposed to the script layer.
|
||
|
||
Some frameworks target relatively specific use cases, while others run in
|
||
nearly every Zeek installation. The logging framework, for example, provides
|
||
the machinery behind all of the Zeek logs covered earlier. Frameworks also
|
||
build on each other, so it’s well worth knowing their capabilities. The next
|
||
sections cover them in detail.
|
||
|
||
.. toctree::
|
||
:maxdepth: 1
|
||
|
||
broker
|
||
cluster
|
||
configuration
|
||
file-analysis
|
||
input
|
||
intel
|
||
logging
|
||
management
|
||
netcontrol
|
||
notice
|
||
packet-analysis
|
||
signatures
|
||
storage
|
||
sumstats
|
||
supervisor
|
||
telemetry
|
||
tls-decryption
|