Explore how Zeek reliably identifies encrypted traffic

Shake the Box: How to Get Encrypted Traffic Insights Without Decryption

Cover

The most advanced security teams rely on network traffic as a fundamental data source, ground truth for security investigations, but encryption has made certain aspects of that truth increasingly difficult to obtain.

72% of Internet-bound network traffic is now encrypted and intruders continue to conduct their attacks in a cloak of encryption according to, Encrypted Traffic Reaches A New Threshold.

In this white paper, learn how the open-source Zeek framework (formerly called ‘Bro’) was purpose-built for network security monitoring. Explore how it has proven itself an adept tool for parsing encrypted traffic.

Vendor:
Corelight
Posted:
21 May 2019
Published:
21 May 2019
Format:
PDF
Length:
5 Page(s)
Type:
White Paper
Language:
English
Already a Bitpipe member? Login here

Download this White Paper!