Analyzing Cybersecurity Incidents with Zeek IDS | TryHackMe Zeek Exercises

Поделиться
HTML-код
  • Опубликовано: 15 сен 2024
  • In this video walkthrough, we covered examples of analyzing cybersecurity incidents such as Anomalous DNS, phishing attacks and the Log4j vulnerability using Zeek IDS. We used Zeek IDS in offline packet analysis mode while it can still be used in a live captured mode. The examples used in the video are part of TryHackMe Zeek Exercises room which is part of the SOC Level 1 Track.
    *****
    Receive Cyber Security Field, Certifications Notes and Special Training Videos
    / @motasemhamdan
    ******
    TryHackMe Zeek Exercises
    tryhackme.com/...
    Writeup
    motasem-notes....
    ********
    LinkedIn
    [1]: / motasem-hamdan-7673289b
    [2]: / motasem-eldad-ha-bb424...
    Instagram
    / dev.stuxnet
    Twitter
    / manmotasem
    Facebook
    / motasemhamdantty

Комментарии • 6

  • @albuandrei2005
    @albuandrei2005 3 месяца назад +1

    life saver. AS someone that has never worked with Zeek before, except through your tutorials, it's hard to know in what fields to look. Although your explanation on how to look into each field is really useful.
    For anyone doing this, make sure you look at the Hint in THM

  • @wabisabi84
    @wabisabi84 2 месяца назад

    Thank you!

  • @zedhacking
    @zedhacking 5 месяцев назад

    THANK YOU

  • @RaphealOke-David
    @RaphealOke-David Месяц назад

    Is it possible to get access to your note for some commands search

  • @Wins694
    @Wins694 5 месяцев назад

    Thanks

  • @mohamedmohamed-yt3bi
    @mohamedmohamed-yt3bi 2 месяца назад

    cat dns.log | zeek-cut query | rev | cut -d '.' -f 1-2 | rev | sort | uniq , i used this to get the answer for "What is the number of unique domain queries? " for task 2

Следующие
Автовоспроизведение
Investigating Cyber Attacks With Snort | TryHackMe Snort Challenge -- Live Attacks25:08Investigating Cyber Attacks With Snort | TryHackMe Snort Challenge -- Live Attacks
Investigating Cyber Attacks With Snort | TryHackMe Snort Challenge -- Live AttacksMotasem Hamdan | Cyber Security & Tech
Просмотров 15 тыс.
Packet & Log Analysis with Zeek P1 | TryHackMe Zeek24:07Packet & Log Analysis with Zeek P1 | TryHackMe Zeek
Packet & Log Analysis with Zeek P1 | TryHackMe ZeekMotasem Hamdan | Cyber Security & Tech
Просмотров 3 тыс.
Network Forensics with Network Miner | TryHackMe SOC Level 144:10Network Forensics with Network Miner | TryHackMe SOC Level 1
Network Forensics with Network Miner | TryHackMe SOC Level 1Motasem Hamdan | Cyber Security & Tech
Просмотров 2 тыс.
Playboi Carti - ALL RED (Official Audio)02:29Playboi Carti - ALL RED (Official Audio)
Playboi Carti - ALL RED (Official Audio)Playboi Carti
Просмотров 2,6 млн
Am I Racist? - Movie Review04:27Am I Racist? - Movie Review
Am I Racist? - Movie ReviewJeremy Jahns
Просмотров 249 тыс.
Kendrick Dropped Again10:02Kendrick Dropped Again
Kendrick Dropped Againfantano
Просмотров 592 тыс.
The Talk - Curtis "50 Cent" Gives His 2 Cents on Kendrick Lamar Superbowl Halftime04:46The Talk - Curtis "50 Cent" Gives His 2 Cents on Kendrick Lamar Superbowl Halftime
The Talk - Curtis "50 Cent" Gives His 2 Cents on Kendrick Lamar Superbowl HalftimeThe Talk
Просмотров 359 тыс.
Wireshark Basics | Complete Guide | TryHackMe Wireshark The Basics & Packet Operations1:17:13Wireshark Basics | Complete Guide | TryHackMe Wireshark The Basics & Packet Operations
Wireshark Basics | Complete Guide | TryHackMe Wireshark The Basics & Packet OperationsMotasem Hamdan | Cyber Security & Tech
Просмотров 3 тыс.
Detecting Suspicious Traffic with Zeek P2 | Signatures & Scripts | TryHackMe Zeek45:44Detecting Suspicious Traffic with Zeek P2 | Signatures & Scripts | TryHackMe Zeek
Detecting Suspicious Traffic with Zeek P2 | Signatures & Scripts | TryHackMe ZeekMotasem Hamdan | Cyber Security & Tech
Просмотров 1,9 тыс.
Webinar - Advanced Threat Analysis with OpenCTI39:05Webinar - Advanced Threat Analysis with OpenCTI
Webinar - Advanced Threat Analysis with OpenCTIFiligran
Просмотров 3,9 тыс.
I Challenged 3 Hackers for 1 Hour in TryHackMe's King of the Hill.8:30I Challenged 3 Hackers for 1 Hour in TryHackMe's King of the Hill.
I Challenged 3 Hackers for 1 Hour in TryHackMe's King of the Hill.thehackerish
Просмотров 26 тыс.
Complete Guide & Tutorial To Brim | Packet Analysis and Investigation | TryHackMe52:15Complete Guide & Tutorial To Brim | Packet Analysis and Investigation | TryHackMe
Complete Guide & Tutorial To Brim | Packet Analysis and Investigation | TryHackMeMotasem Hamdan | Cyber Security & Tech
Просмотров 1,5 тыс.
Why Cybersecurity Training is a SCAM10:37Why Cybersecurity Training is a SCAM
Why Cybersecurity Training is a SCAMTechnical Institute of America
Просмотров 159 тыс.
Zeek in Action, Video 1, Suspected Malware Compromise54:57Zeek in Action, Video 1, Suspected Malware Compromise
Zeek in Action, Video 1, Suspected Malware CompromiseZeek
Просмотров 20 тыс.
Packet Analysis with Zeek P3 | Frameworks & Packages | TryHackMe31:41Packet Analysis with Zeek P3 | Frameworks & Packages | TryHackMe
Packet Analysis with Zeek P3 | Frameworks & Packages | TryHackMeMotasem Hamdan | Cyber Security & Tech
Просмотров 1 тыс.
Active Directory Basics : Tryhackme42:29Active Directory Basics : Tryhackme
Active Directory Basics : Tryhackmestuffy24
Просмотров 14 тыс.
Какой звук фальшивый?00:32Какой звук фальшивый?
Какой звук фальшивый?Аришнев
Просмотров 154 тыс.
Цены на КИТАЙСКОЕ авто которое везут в Россию01:00Цены на КИТАЙСКОЕ авто которое везут в Россию
Цены на КИТАЙСКОЕ авто которое везут в РоссиюНастя ЧПЕК Туман
Просмотров 1,1 млн
Опозорил ЧИТЕРА на глазах ВСЕГО КЛАССА на Уроке в ZOOM...17:39Опозорил ЧИТЕРА на глазах ВСЕГО КЛАССА на Уроке в ZOOM...
Опозорил ЧИТЕРА на глазах ВСЕГО КЛАССА на Уроке в ZOOM...Domer Grief
Просмотров 852 тыс.
БЕРЕМЕННА В 16 - 2 ВЫПУСК, 2 СЕЗОН (МАМА В 16)1:57:13БЕРЕМЕННА В 16 - 2 ВЫПУСК, 2 СЕЗОН (МАМА В 16)
БЕРЕМЕННА В 16 - 2 ВЫПУСК, 2 СЕЗОН (МАМА В 16)Юлик
Просмотров 201 тыс.
@HolyBaam ультанул в конце 🧨00:34@HolyBaam ультанул в конце 🧨
@HolyBaam ультанул в конце 🧨Оля Кекс
Просмотров 162 тыс.
9월 15일 💙1:23:239월 15일 💙
9월 15일 💙Stray Kids
Просмотров 1,1 млн
Лаки Блок СКУЛБОЙ vs. ТИМОХА Лакиблок в Майнкрафт! Minecraft11:13Лаки Блок СКУЛБОЙ vs. ТИМОХА Лакиблок в Майнкрафт! Minecraft
Лаки Блок СКУЛБОЙ vs. ТИМОХА Лакиблок в Майнкрафт! MinecraftВЛАДУС — Майнкрафт
Просмотров 197 тыс.
ИВЕТА и МАРИНА: ПРЕРВАННАЯ БЕРЕМЕННОСТЬ, РАЗВОД И РАЗНИЦА В ВОЗРАСТЕ / У МАМЫ НА КУХНЕ #2 х Аня Ищук50:28ИВЕТА и МАРИНА: ПРЕРВАННАЯ БЕРЕМЕННОСТЬ, РАЗВОД И РАЗНИЦА В ВОЗРАСТЕ / У МАМЫ НА КУХНЕ #2 х Аня Ищук
ИВЕТА и МАРИНА: ПРЕРВАННАЯ БЕРЕМЕННОСТЬ, РАЗВОД И РАЗНИЦА В ВОЗРАСТЕ / У МАМЫ НА КУХНЕ #2 х Аня ИщукAnyaischuk
Просмотров 427 тыс.