This free 1-hour webinar from GigaOm Research brings together experts in network traffic analysis, featuring GigaOm analyst Simon Gibson and a special guest from Corelight, Steve Smoot. They’ll discuss the evolution of network analysis and explain how open-source Zeek (formerly Bro) came to be the network traffic analysis tool of choice for security analysts to make fast sense of their traffic.
In this 1-hour webinar, you will discover:
Why understanding traffic at today’s scale is so important for security teams
The complexities of traffic and telemetry collection for security
What Bro was built to do, why was it renamed Zeek, and how it overcomes these complexities
How Corelight makes Zeek easy to deploy and expands its capabilities
Nearly all cyberattacks must cross the network, but security analysts often struggle to make quick sense of traffic at scale for hunting and incident response, trapped between data-starved logs (e.g. Netflow) and too much data (full packets) to analyze in time. What if instead there was a “Goldilocks’ for network data?
We’ll dive into Zeek’s creation at Livermore Labs and discusses some of the challenges that come with using it in large, fast network environments and explain how Corelight enables organizations to quickly take advantage of the power of Zeek at scale.
Analyst, GigaOm Research
VP of Customer Success, Corelight