Packet & Log Analysis with Zeek P1 | TryHackMe Zeek

preview_player
Показать описание
In this video walkthrough, we covered an introduction to Zeek, packets and logs analyzer, that can be used for network security monitoring, incident analysis and logs investigation. Zeek has two primary layers; "Event Engine" and "Policy Script Interpreter" that are used to process and extract key data and insights from the logs such as source and destination IP addresses and ports. This was part of TryHackMe SOC analyst level 1 pathway.
******
Receive Cyber Security Field, Certifications Notes and Special Training Videos
******
Writeup
TryHackMe Zeek
********
Patreon
Instagram
Twitter
Facebook
LinkedIn
Website
Backup channel
My Movie channel:
******
  1. Motasem Hamdan | Cyber Security & Tech
Рекомендации по теме
Packet & Log 0:24:07

Packet & Log Analysis with Zeek P1 | TryHackMe Zeek

How to Use 0:04:45

How to Use Advanced Logs and Analytics Over Packet Capture for Troubleshooting

Android live packet 0:00:25

Android live packet capture

Complete Guide & 0:52:15

Complete Guide & Tutorial To Brim | Packet Analysis and Investigation | TryHackMe

(31) Demo constrained 0:05:34

(31) Demo constrained delegation log events and network packet analysis

tcpdump - Traffic 0:23:20

tcpdump - Traffic Capture & Analysis

Wireshark Tutorial - 0:13:13

Wireshark Tutorial - Packet Analysis (TCP, HTTP, TLS)

WHAT is a 0:03:42

WHAT is a Packet Analyzer!?

Hunting Attacks As 2:31:03

Hunting Attacks As They Happen // SOC Level 2 Ep.21 TryHackMe Threat Hunting: Foothold

wireshark packet capture 0:11:07

wireshark packet capture | How to filter and analyze calls in wireshark | sip call flow wireshark

tcpdump command in 0:03:29

tcpdump command in linux and wireshark packet analysis for network traffic || tcpdump & wireshar...

Learn Wireshark in 0:10:38

Learn Wireshark in 10 minutes - Wireshark Tutorial for Beginners

netsh trace - 0:06:45

netsh trace - Capture packets with a standard Windows tool

How to DECRYPT 0:08:41

How to DECRYPT HTTPS Traffic with Wireshark

How to use 0:01:04

How to use wireshark to monitor websites visited

How to Capture 0:02:06

How to Capture Packets in Wireshark

Extracting Files from 0:05:03

Extracting Files from PCAPs with Wireshark // Lesson 9 // Wireshark Tutorial

Wireshark Tip 4: 0:05:16

Wireshark Tip 4: Finding Suspicious Traffic in Protocol Hierarchy

Capturing & Analyzing 0:38:32

Capturing & Analyzing Network Packets using WireShark 01

Using Packet Analysis 1:00:06

Using Packet Analysis to Understand HTTP Traffic (Series 1 E1)

http packet analysis 0:09:58

http packet analysis for wireshark

What is Wireshark 0:06:24

What is Wireshark ? | Packet Sniffer | Log Analyzer

fortigate packet capture 0:04:36

fortigate packet capture explained

Wireshark TCP Packet 0:08:36

Wireshark TCP Packet Analysis

Комментарии
Автор

Thank you for your videos sir. I'm following along and you're helpful in my SOC L1 path

shxcxchcxsh
Автор

Love your videos man.
Just one thing while explaining things instead of writing on a canvas it would look much better if you type as points.
Reason because its hard to read the second time.

aliasgarkachwala
Автор

Your videos are always to the point and really helpful ❤

Malwr
Автор

The main difference between the both is that Snort is Signature-based where zeek is Anomaly-based
Also Snort focuses on the Network layer where Zeek offers multilayer analysis

san_lowkey
Автор

Hello, Thanks so much for your videos. They are very helpful.... Great Job. I will like a copy of your sheet/notes.

AdetolaAdedoyin
Автор

Thank you so much for your great explain, what is the tool that you use for keeping your notes as shown in the video

mohamedali-lsoz
Автор

Hi, what's is the program for drawing?

vladassassin