- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
Zeek (Bro) Logs | Artifact of the Day
Attackers left zero files — but Zeek caught everything.
Artifact of the Day | DFIR Media
• Your endpoint logs show nothing. But network traffic never lies.
• Zeek generates structured logs from every packet. Conn, DNS, HTTP, SSL.
• Connection log shows duration, bytes transferred, and connection state for everything.
• DNS log captures every query. Perfect for spotting C2 domains.
• Tab-separated or JSON format. Parse with zeek-cut or ingest into Splunk.
• Fileless attacks leave traces. Zeek sees what your EDR missed.
AI-generated narration | DFIR Media
Видео Zeek (Bro) Logs | Artifact of the Day канала DFIR Lab
Artifact of the Day | DFIR Media
• Your endpoint logs show nothing. But network traffic never lies.
• Zeek generates structured logs from every packet. Conn, DNS, HTTP, SSL.
• Connection log shows duration, bytes transferred, and connection state for everything.
• DNS log captures every query. Perfect for spotting C2 domains.
• Tab-separated or JSON format. Parse with zeek-cut or ingest into Splunk.
• Fileless attacks leave traces. Zeek sees what your EDR missed.
AI-generated narration | DFIR Media
Видео Zeek (Bro) Logs | Artifact of the Day канала DFIR Lab
Комментарии отсутствуют
Информация о видео
6 мая 2026 г. 3:51:25
00:00:36
Другие видео канала
AI Detection Rule Generation
AI Detection Rule Generation
T1562 — Impair Defenses | MITRE Spotlight
Mystery Malware Coded in Unknown Language Stumped World's Best Hackers
AI Alert Triage
DNS Configuration Analysis
Ransomware's Worst Nightmare (Shadow Copies) #DFIR #Cybersecurity
T1190 — Exploit Public-Facing Application | MITRE Spotlight
PCAP Files | Artifact of the Day
macOS Unified Logs | Artifact of the Day
Volume Shadow Copies (VSS) | Artifact of the Day
macOS KnowledgeC.db | Artifact of the Day
Shellbags | Artifact of the Day
PCAP Files | Artifact of the Day
Attack Surface Scan
Memory Forensics — Process Listing | Artifact of the Day
Service Installation from Unusual Directories | Detection Rule Friday
Windows Event Logs — PowerShell | Artifact of the Day
Cobalt Strike Beacon Detection Patterns | Detection Rule Friday
LOLBins — Living Off the Land Detection | Detection Rule Friday
Student Accidentally Broke 10% of the Internet in 1988
