Security News > 2024 > June > Zeek: Open-source network traffic analysis, security monitoring
Unlike an active security device such as a firewall, Zeek operates on a versatile 'sensor' that can be a hardware, software, virtual, or cloud platform.
This flexibility allows Zeek to quietly monitor network traffic, interpret it, and generate transaction logs, file content, and customized output.
These outputs are suitable for manual review on disk or in an analyst-friendly tool such as SIEM, providing a comprehensive view of network activity.
Key features Download. Zeek is available for free on GitHub.
Zeek is part of many package repositories, including various Linux distributions, FreshPorts on FreeBSD, and MacPorts / Homebrew on macOS. For Linux, binaries are available through the openSUSE Build Service.
The developers aim to publish a new Zeek release about every four months.
News URL
Related news
- Sara: Open-source RouterOS security inspector (source)
- What’s Next for Open Source Software Security in 2025? (source)
- GitHub CISO on security strategy and collaborating with the open-source community (source)
- Fleet: Open-source platform for IT and security teams (source)
- Orbit: Open-source Nuclei security scanning and automation platform (source)