-
Course
- Security
Incident Response & Threat Hunting Using Bro/Zeek Data
BSides Huntsville | Incident Response & Threat Hunting Using Bro/Zeek Data | Alex Kirk
What you'll learn
The open source Zeek network security monitor provides valuable data for incident responders and threat hunters alike. This talk will discuss how to use that data to lower the time necessary to find attackers on your network, as well as ways that advanced users can take Zeek's scripting language to create powerful, flexible detection logic that goes beyond traditional point-in-time IDS signatures.
Table of contents
About the author
BSides Huntsville is for cybersecurity practitioners to engage with others to learn more about the industry.
More Courses by BSides