Nearly all cyberattacks must cross the network, but security analysts often struggle to make quick sense of traffic at scale for hunting and incident response, trapped between data-starved logs (e.g. Netflow) and too much data (full packets) to analyze in time. What if instead there was a “Goldilocks’ for network data? Zeek might just be that platform.
This free 1-hour webinar from GigaOm Research brings together experts in network traffic analysis, featuring GigaOm analyst Simon Gibson and a special guest from Corelight, Steve Smoot. They’ll discuss the evolution of network analysis and explain how open-source Zeek (formerly Bro) came to be the network traffic analysis tool of choice for security analysts to make fast sense of their traffic.
We’ll dive into Zeek’s creation at Livermore Labs and discusses some of the challenges that come with using it in large, fast network environments and explain how Corelight enables organizations to quickly take advantage of the power of Zeek at scale. In this 1-hour webinar, you will discover:
- Why understanding traffic at today’s scale is so important for security teams
- The complexities of traffic and telemetry collection for security
- What Bro was built to do, why was it renamed Zeek, and how it overcomes these complexities
- How Corelight makes Zeek easy to deploy and expands its capabilities
Register now to join GigaOm and Corelight for this free expert webinar.
Who should attend?
- CMO and Channel Partners
- SOC Engineers