filmov
tv
Getting Started with Zeek PCAPs | Chris Brenton
Показать описание
00:00 - Intro/Pre-Show Banter
01:08 - Going through PCAP files with Zeek
05:00 - Datamash
10:00 - Sorting Conn files with Zeek-Cut
13:58 - Using Grep to find Single IP Address
17:30 - DashD in Zeek
21:53 - Q&A
Description: After demonstrating T-Shark, Chris Brenton returns to show us how to go through PCAP files with Zeek!
Commands from video:
beacon-data 67.205.130.225 167.172.154.151
Contents of the beacon-data script:
Antisyphon Socials
Antisyphon Training
Antisyphon Shirts
Educational Infosec Content
Backdoors & Breaches - Incident Response Card Game
#infosec #antisyphon #bhis
01:08 - Going through PCAP files with Zeek
05:00 - Datamash
10:00 - Sorting Conn files with Zeek-Cut
13:58 - Using Grep to find Single IP Address
17:30 - DashD in Zeek
21:53 - Q&A
Description: After demonstrating T-Shark, Chris Brenton returns to show us how to go through PCAP files with Zeek!
Commands from video:
beacon-data 67.205.130.225 167.172.154.151
Contents of the beacon-data script:
Antisyphon Socials
Antisyphon Training
Antisyphon Shirts
Educational Infosec Content
Backdoors & Breaches - Incident Response Card Game
#infosec #antisyphon #bhis
0:30:00
0:13:59
0:13:03
1:31:13
0:42:27
0:00:56
0:01:41
0:11:10
0:15:35
0:00:53
0:30:30
0:24:07
0:33:37
0:41:37
0:08:19
0:34:12
8:35:22
0:44:11
0:19:30
0:04:52
0:17:18
0:54:57
0:52:25
1:00:45