Zeek 4.0.0 – Digitalmunition




Pentest Tools no-image-featured-image.png

Published on March 2nd, 2021 📆 | 2208 Views ⚑

0

Zeek 4.0.0

Zeek 4.0.0
Posted Mar 2, 2021
Authored by Robin Sommer, Vern Paxson | Site zeek.org

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know. While focusing on network security monitoring, Zeek provides a comprehensive platform for more general network traffic analysis as well. Well grounded in more than 15 years of research, Zeek has successfully bridged the traditional gap between academia and operations since its inception. Today, it is relied upon operationally in particular by many scientific environments for securing their cyber-infrastructure. Zeek’s user community includes major universities, research labs, supercomputing centers, and open-science communities. This is the source code release.

Changes: Added support for EDNS0 Cookie and Keep-Alive options. Added new Packet Analysis plugin architecture for parsing packet headers at layers below the existing Session analysis plugins. A few other additions as well as improvements to capture-loss.zeek.
tags | tool, intrusion detection
systems | unix
MD5 | 3178eb66e9ac62e8e61707d34c8855f9

Source link

Tagged with:



Leave a Reply