![]() All the data is written in a well-structured, tab separated or JSON format. These logs include all the data like HTTP sessions, requested URIs, MIME types, server responses, DNS requests, SSL certificates, key content of SMTP sessions, and much more. Zeek logs network activity in a separate file. This tool also supports a wide range of traffic analysis tasks beyond the cybersecurity domain, including performance measurement and troubleshooting. Many companies and operators use Zeek as a NSM (network security monitor), as it is very helpful for investigating suspicious or malicious activity in the network. ![]() Zeek is a passive, open source network traffic analyser tool. Zeek: An open source network monitoring tool ![]()
0 Comments
Leave a Reply. |