Incident Response & Threat Hunting Using Bro/Zeek Data

BSides Huntsville | Incident Response & Threat Hunting Using Bro/Zeek Data | Alex Kirk

What you'll learn

The open source Zeek network security monitor provides valuable data for incident responders and threat hunters alike. This talk will discuss how to use that data to lower the time necessary to find attackers on your network, as well as ways that advanced users can take Zeek's scripting language to create powerful, flexible detection logic that goes beyond traditional point-in-time IDS signatures.

Incident Response & Threat Hunting Using Bro/Zeek Data

34mins

Incident Response & Threat Hunting Using Bro/Zeek Data 34m

About the author

BSides Huntsville

BSides Huntsville is the conference for those that work (or would like to work) in the trenches of cybersecurity. This is the opportunity for you to engage in fierce discussions about the next big ideas or the worst product you've ever seen in a friendly and informal setting.

See more courses by BSides Huntsville

Ready to upskill? Get started

Contact Sales

Incident Response & Threat Hunting Using Bro/Zeek Data

What you'll learn

Table of contents

About the author

Ready to skill up
your entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Ready to skill up
your entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Support

Community

Company

Industries

Newsletter

Contact Sales

Incident Response & Threat Hunting Using Bro/Zeek Data

What you'll learn

Table of contents

About the author

Get access now

Ready to skill upyour entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Ready to skill upyour entire team?

With your Pluralsight plan, you can:

With your 30-day pilot, you can:

Support

Community

Company

Industries

Newsletter

Ready to skill up
your entire team?

Ready to skill up
your entire team?