Malicious network activity detection with Zeek

Join us Monday, the 23rd of February, for "Malicious network activity detection with Zeek". The presentation will show you how we use Zeek, an open-source tool, to monitor the network activity of the sites that are publicly exposed to the Internet. We will show the infrastructure we deployed and the integrations we have made for Zeek to detect malicious traffic.

As threat intelligence sources, we use MISP, FireHOL and some in-house developed scripts.

Don't miss out, we have juicy threat intelligence stuff as well (but only for your eyes)! Register on indico.upb.ro and we'll send you an invite!

SOCcare

The SOCcare project is co-funded by the European Union, alongside our collaborators, NRD Cyber Security and RevelSI, and supported by the European Cybersecurity Competence Centre (ECCC) Centre (ECCC) under Grant Agreement No. 101145843. Views and opinions expressed are however those of the author(s) only and do not necessarily reflect those of the European Union or the European Cybersecurity Competence Centre. Neither the European Union nor the European Cybersecurity Competence Centre can be held responsible for them.