Zeek Analysis Tools

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for briford from gravatar.com briford

Unverified details

These details have not been verified by PyPI
Meta
  • License Expression: MIT
    SPDX License Expression
  • Author: Brian Wylie
  • Tags Zeek , Bro , Python , Networking , Security , Scikit-Learn , Spark , Kafka , Parquet
  • Requires: Python >=3.10
  • Provides-Extra: pyspark , all
Classifiers
Report project as malware

Project description

Zeek Analysis Tools (ZAT)

supported-versions license

The ZAT Python package supports the processing and analysis of Zeek data with Pandas, scikit-learn, Kafka, and Spark

Install

pip install zat
pip install zat[pyspark] (includes pyspark library)
pip install zat[all] (include pyarrow, yara-python, and tldextract)

Getting Started

AWS Data Processing and ML Modeling

Installing on Raspberry Pi!

Recent Improvements

Video Presentation

Why ZAT?

Zeek already has a flexible, powerful scripting language why should I use ZAT?

Offloading: Running complex tasks like statistics, state machines, machine learning, etc.. should be offloaded from Zeek so that Zeek can focus on the efficient processing of high volume network traffic.

Data Analysis: We have a large set of support classes that help bridge from raw Zeek data to packages like Pandas, scikit-learn, Kafka, and Spark. We also have example notebooks that show step-by-step how to get from here to there.

Analysis Notebooks

Documentation

https://supercowpowers.github.io/zat/

Running Tests

pip install -e ".[all]"
pip install pytest pytest-cov

pytest zat              # Quick test run
tox                     # Full matrix (Python 3.10, 3.12, 3.13 + flake8)

About SuperCowPowers

The company was formed so that its developers could follow their passion for Python, streaming data pipelines and having fun with data analysis. We also think cows are cool and should be superheros or at least carry around rayguns and burner phones. Visit SuperCowPowers

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for briford from gravatar.com briford

Unverified details

These details have not been verified by PyPI
Meta
  • License Expression: MIT
    SPDX License Expression
  • Author: Brian Wylie
  • Tags Zeek , Bro , Python , Networking , Security , Scikit-Learn , Spark , Kafka , Parquet
  • Requires: Python >=3.10
  • Provides-Extra: pyspark , all
Classifiers

Release history Release notifications | RSS feed

This version

0.4.9

0.4.8

0.4.7

0.4.6

0.4.5

0.4.4

0.4.3

0.4.2

0.4.1

0.4.0

0.3.9

0.3.8

0.3.7

0.3.4

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

zat-0.4.9.tar.gz (3.9 MB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

zat-0.4.9-py3-none-any.whl (43.2 kB view details)

Uploaded Python 3

File details

Details for the file zat-0.4.9.tar.gz.

File metadata

  • Download URL: zat-0.4.9.tar.gz
  • Upload date:
  • Size: 3.9 MB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for zat-0.4.9.tar.gz
Algorithm Hash digest
SHA256 ffd6155b55d4c253e91793c75870afdf2ccc3792c3a32fec4b32ea4184b415aa
MD5 4117f3f29747b3140b81785165bba39d
BLAKE2b-256 1af328e88e28ef5f003ffb1934e36babe96eeaf7819380594c7019563a2484f1

See more details on using hashes here.

Provenance

The following attestation bundles were made for zat-0.4.9.tar.gz:

Publisher: publish.yml on SuperCowPowers/zat

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file zat-0.4.9-py3-none-any.whl.

File metadata

  • Download URL: zat-0.4.9-py3-none-any.whl
  • Upload date:
  • Size: 43.2 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for zat-0.4.9-py3-none-any.whl
Algorithm Hash digest
SHA256 c77750f29d79736499af84fb833cadfd96c0b10d820f338732282358219079ba
MD5 09825f071beff9999b60ee089271e77b
BLAKE2b-256 ec0596c088feff738e8fef12d93bf6bf0715c9a1c440d80095aa206d3d29abc7

See more details on using hashes here.

Provenance

The following attestation bundles were made for zat-0.4.9-py3-none-any.whl:

Publisher: publish.yml on SuperCowPowers/zat

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page