Bro IDS

Suricata or Zeek? The answer is both.

| | Blog, Bro IDS, network analysis, network metadata, signature threat detection, Suricata, threat detection, Zeek
If you apply Pereto’s Principal (the 80/20 rule) to network security, about 80% of incidents are caused by known threats that are easily ...
Bricata

Suricata or Zeek? The answer is both.

| | Blog, Bro IDS, network analysis, network metadata, signature threat detection, Suricata, threat detection, Zeek
If you apply Pereto’s Principal (the 80/20 rule) to network security, about 80% of incidents are caused by known threats that are easily identified by signature-based rules system and 20% come from ...
Bricata | Network Detection & Response | Visibility & Analytics | Threat Hunting

Four Key Elements for Comprehensive Network Threat Detection

| | advanced threat detection, Blog, Bro IDS, comprehensive network threat detection, comprehensive threat, comprehensive threat detection, network threat detection, Suricata, threat detection, Zeek
Today’s cybersecurity landscape is a mix of old and new threats. Many of the attacks that organizations encounter involve legacy malware and techniques ...
Bricata

Four Key Elements for Comprehensive Network Threat Detection

| | advanced threat detection, Blog, Bro IDS, comprehensive network threat detection, comprehensive threat, comprehensive threat detection, network threat detection, Suricata, threat detection, Zeek
Today’s cybersecurity landscape is a mix of old and new threats. Many of the attacks that organizations encounter involve legacy malware and techniques that are repackaged and reused (this post from security ...
Bricata | Network Detection & Response | Visibility & Analytics | Threat Hunting

Getting Network Visibility into East-West Traffic

| | Blog, Bro IDS, bro logs, east-west traffic, network security monitoring, open source network security tools, threat detection, Zeek, zeek logs
Getting highly granular “everywhere” visibility continues to be a significant challenge for organizations as they work to protect their networks from threats. Traditionally, ...
Bricata

Getting Network Visibility into East-West Traffic

| | Blog, Bro IDS, bro logs, east-west traffic, network security monitoring, open source network security tools, threat detection, Zeek, zeek logs
Getting highly granular “everywhere” visibility continues to be a significant challenge for organizations as they work to protect their networks from threats. Traditionally, companies have prioritized monitoring and securing north-south traffic (traffic ...
Bricata | Network Detection & Response | Visibility & Analytics | Threat Hunting

ZeekWeek 2019: 5 Things Network Security Pros Should Know about Zeek

| | behavior detection, Blog, Bro IDS, encryption, ids, intrusion detection, network traffic analysis, open source, Zeek, Zeek IDS
As the annual ZeekWeek conference kicks off – here are X things network security professionals should know about Zeek ...
Bricata
Threat Hunting Using 16th-Century Math and Sesame Street

Make it Harder to Hide: 3 Techniques for Conducting Threat Hunting at Scale

| | behavior detection, Blog, Bro IDS, Network Security, rsa, Threat Hunting, Zeek
The law of large numbers theorem facilitates threat hunting at scale on large networks because it isolates unusual activity and network anomalies ...
Bricata
Open Source Security Tools and Threat Hunting: The 10 Most Read Bricata Posts on Cybersecurity in 2018

Open Source Security Tools and Threat Hunting: The 10 Most Read Bricata Posts on Cybersecurity in 2018

| | Blog, Bro IDS, CISO, cybersecurity studies, cybersecurity trends, ids, intrusion detection, IPS, open source, Threat Hunting
Every week we publish a blog post where we dive into a topic or study around network security. In 2018, we even produced ...
Bricata
Profiling And Detecting All Things SSL With JA3 - John Althouse and Jeff Atkinson

Network Visibility: Can You Analyze Encrypted Traffic for Cybersecurity Threats?

| | behavior detection, Blog, Bro IDS, encryption, ids, network visability, Zeek IDS
We get this question a lot: Can you analyze encrypted traffic for cyber threats? It just came up again during the question and ...
Bricata
Load more