Zeek Logo

Zeek in Action, Video 10, Examining the Four Types of Network Security Monitoring Data

by | Dec 6, 2021 | community, Zeek in Action

In this episode of Zeek in Action, Richard examines the four types of network security monitoring data: 1) full content data (“PCAP”), 2) transaction logs, 3) extracted content, and 4) intrusion detection systems (IDS) alerts. He uses the online tool Cloudshark to examine all four types and to compare and contrast the strengths and weaknesses of each.

If you would like to follow along, please check out our Zeek in Action playlist on the Zeek YouTube Channel.

If you would like to discuss the video, or consider creating one yourself, please visit the Zeek community Slack workspace and join the #documentation channel.

Get Zeek
Downloads
Zeek GitHub
Add-on Packages
Try Zeek Online

Documentation
Feature Release
LTS Release
Dev Version
Dev Resources
FAQs

Community
Getting Started
Mastodon
Twitter
Youtube
Discourse
Slack
GitHub Issues
Security Reporting
Contact Us
Subgroups
Training

Events
Upcoming Events
Calendar
ZeekWeek 2024
Past Events

Blog

About About Zeek Leadership Team Code of Conduct Slack Guidelines Governance Framework Mission, Vision, Values

Discover more from Zeek

Subscribe now to keep reading and get access to the full archive.

Continue reading