- Course
- Security
Threat Intelligence with Zeek Frameworks
Visibility is crucial in detecting and responding to cyber threats. This course will teach you how to utilize Zeek to enrich network telemetry with threat intelligence.
What you'll learn
Enterprises are overwhelmed with cyber attacks. They also lack the visibility necessary to adequately detect and respond to cyber attacks. In this course, Threat Intelligence with Zeek Frameworks, you’ll learn to enrich the network telemetry using Zeek. First, you’ll explore Zeek’s signature framework and find out how to use it to detect known threats. Next, you’ll discover how to use Zeek’s intelligence framework to enrich the data and provide real-time threat detection. Finally, you’ll learn how to utilize Zeek’s notice framework to alert on specific behaviors so that you can take an action on the information. When you’re finished with this course, you’ll have the skills and knowledge of how to use Zeek’s frameworks to enhance the security operations of your organization.
Table of contents
About the author
Joe is a Network Consulting Engineer and has worked in the IT industry since 2010. He has experience in teaching and mentoring IT professionals in both DoD environments and in the civilian sector, in both the networking and IT security fields.