by Anthony Kasza | Nov 5, 2021 | community, CTF, ZeekWeek21
As part of the most recent ZeekWeek event the Zeek Project Training Subgroup and the Corelight Labs Team made a capture the flag (CTF) competition available for attendees to play. The competition included 19 challenges of varying difficulties which involved tasks...
by Anthony Kasza | Oct 8, 2021 | Capture the Flag, community, CTF, Zeek Events, ZeekWeek, ZeekWeek21
Another ZeekWeek means another ZeekWeek CTF! This will be the 2nd year of this event. In full observation of the stereotypical behavior associated with the “terrible twos”, expect defiant and unruly puzzles 😀 What is this thing? Not only are CTFs a great...
by Anthony Kasza | Jun 23, 2021 | Scripting
I recently attempted to better understand script execution flow. As Zeek’s scripting language is heavily driven by events, debugging scripts can, at times, be frustrating and surprising. In an effort to reduce both frustration and surprises for others in the...
by Anthony Kasza | Oct 30, 2020 | Capture the Flag, community, CTF, ZeekWeek, ZeekWeek2020
As part of the most recent ZeekWeek event a capture the flag (CTF) competition was available for attendees to play. The competition included 12 challenges, of varying difficulties, which involved tasks surrounding Zeek scripting and traffic analysis. After a...
by Anthony Kasza | Jun 8, 2020 | Scripting
This post serves as an introduction to some of the pitfalls I had to learn about whilst writing scripts. Hopefully, they help you avoid the same pitfalls. In some of the below example code snippets, bold font is used to emphasize a particular pitfall. If you’d like to...