首页
论坛
课程
招聘
[转帖]Zeek – Network Traffic Analysis and Security Monitoring Tool
2021-2-5 06:44 1941

[转帖]Zeek – Network Traffic Analysis and Security Monitoring Tool

2021-2-5 06:44
1941

Zeek – Network Traffic Analysis and Security Monitoring Tool

Zeek Network Security Monitor:

Zeek (formerly Bro) is a popular and powerful network traffic analysis framework, which is used by a wide variety of security professionals. Like Virustotal, Bro is offered free as an open-source, UNIX-based network monitoring framework that can be used for detecting network intrusion, collecting network measurements, and generating an extensive set of log files that records a network’s activity in high-level terms.


These logs include not only a comprehensive record of every connection seen on the network, but also application layer transcripts such as all HTTP sessions and their requested URIs (Uniform Resource Identifier), key headers, MIME (Multipurpose Internet Mail Extensions) types, and server responses. Bro also provides analysts with a scripting language similar to Python’s functionality, that allows users to customize network analysis.

https://socinvestigation.com/zeek-network-traffic-analysis-and-security-monitoring-tool/



[注意] 欢迎加入看雪团队!base上海,招聘CTF安全工程师,将兴趣和工作融合在一起!看雪20年安全圈的口碑,助你快速成长!

收藏
点赞1
打赏
分享
最新回复 (0)
游客
登录 | 注册 方可回帖
返回