filmov
tv
Zeek-Bro Security Monitoring with Tim Garcia
Показать описание
This video is about threat detection using the open source tool, Zeek/Bro to perform traffic logging and security monitoring on corporate networks by Tim Garcia, SANS instructor (Tool Time with Tim) VP-CISSP,GSEC,GCDA,GCCC,GMON,GCED
Can a 20 year old technology help give you strategic visibility into a modern enterprise netowork? The answer is yes!. Welcome to a powerful network monitoring/logging tool most people have never heard of.
Tim Garcia will review the capabilities and use of the the Zeek and Bro IDS (two separate tools that are often used together) for security threat hunting.
(Originally the presentation was to be on the use of the Yara scripting tool to identify malware signatures but the Zeek/Bro topic won out due to popular demand).
Tim is SANS Instructor primarily focused on blue team activities, ethical hacking, incident handling, security management and general information security principles. Instructor in Information Systems Security, Systems Analysis and Project Management for several local universities in the Phoenix area.
Can a 20 year old technology help give you strategic visibility into a modern enterprise netowork? The answer is yes!. Welcome to a powerful network monitoring/logging tool most people have never heard of.
Tim Garcia will review the capabilities and use of the the Zeek and Bro IDS (two separate tools that are often used together) for security threat hunting.
(Originally the presentation was to be on the use of the Yara scripting tool to identify malware signatures but the Zeek/Bro topic won out due to popular demand).
Tim is SANS Instructor primarily focused on blue team activities, ethical hacking, incident handling, security management and general information security principles. Instructor in Information Systems Security, Systems Analysis and Project Management for several local universities in the Phoenix area.
0:47:06
Zeek-Bro Security Monitoring with Tim Garcia
0:22:45
vZW20 - Day 3 - Packet Analyzers - Jan Grashöfer & Tim Wojtulewicz
0:34:12
A Technical Introduction to Zeek/Bro, Network Security's Best Kept Secret
0:03:36
How to Detect SMB Abuse Using Zeek
0:25:05
Zeek in Action, Video 10, Examining the Four Types of Network Security Monitoring Data
0:39:41
Intro to Zeek - Virtually Testing
1:00:45
An Introduction to Threat Hunting With Zeek (Bro)
0:25:20
Zeek in Action, Video 7, Capture Loss Statistics
![[OLF 2019] Zeek](https://i.ytimg.com/vi/7mjn75A1ZOo/hqdefault.jpg)
0:39:02
[OLF 2019] Zeek and Ye Shall Find: Introduction to Zeek
0:41:40
Zeek Webinar - Zeek@Meta: Scale, Log Enrichment and Detections
0:35:50
Using Bro to Hunt Persistent Threats by Benjamin Klimkowski
0:22:27
Introduction to network forensics using Zeek (Bro), Snort and OSINT
0:42:55
Distributed Network Detection with Bro and The Cloud by Mike Reeves
1:02:13
The Power of Zeek (formerly Bro)
0:42:15
How to find C2 activity with Zeek and MITRE ATT&CK
1:01:16
Using Zeek/Bro To Discover Network TTPs of MITRE ATT&CK™ Part 2
0:07:30
BroCon 2017 Welcome and State of Bro Project by Adam Slagell
0:33:37
Cutting through network forensic data with Zeek
0:13:03
12 Days of Defense - Day 2: How to use Zeek for PCAP Analysis
0:23:44
Zeek From Home – Looking Deeper into the Zeek 3.0 - Tim Wojtulewicz - 13 May 2020
0:52:14
Book of Zeek
0:36:15
Creating the Bro RFB (VNC) parser by Martin van Hensbergen
0:30:07
Mick Douglas and what you'll learn from Zeek: Network Monitoring with Cheat Modes
1:02:18
Using Zeek/Bro To Discover Network TTPs of MITRE ATT&CK™ Part 1
Комментарии