Security News > 2024 > June > Zeek: Open-source network traffic analysis, security monitoring
Unlike an active security device such as a firewall, Zeek operates on a versatile 'sensor' that can be a hardware, software, virtual, or cloud platform.
This flexibility allows Zeek to quietly monitor network traffic, interpret it, and generate transaction logs, file content, and customized output.
These outputs are suitable for manual review on disk or in an analyst-friendly tool such as SIEM, providing a comprehensive view of network activity.
Key features Download. Zeek is available for free on GitHub.
Zeek is part of many package repositories, including various Linux distributions, FreshPorts on FreeBSD, and MacPorts / Homebrew on macOS. For Linux, binaries are available through the openSUSE Build Service.
The developers aim to publish a new Zeek release about every four months.
News URL
Related news
- Misconfig Mapper: Open-source tool to uncover security misconfigurations (source)
- OSPS Baseline: Practical security best practices for open source software projects (source)
- Hetty: Open-source HTTP toolkit for security research (source)
- NetBird: Open-source network security (source)
- IntelMQ: Open-source tool for collecting and processing security feeds (source)
- YES3 Scanner: Open-source S3 security scanner for public access, ransomware protection (source)