ESPA111 - Packet Analysis with Zeek
CyberWarrior
About This Course
In this course, students will become familiar with the Zeek tool, a powerful and popular open source network monitoring and analysis solution. They will learn how to use Zeek to monitor and analyze network traffic in real time, identify traffic patterns, and detect potential attacks or threats.
Students will gain knowledge of the basics of network monitoring and analysis, how to configure and use Zeek efficiently, how to interpret the results obtained, and how to implement security measures to protect the network. By the end of the course, students will be prepared to use Zeek effectively on their networks and protect them from potential threats. In addition, they will explore some of Zeek's advanced features, such as intrusion identification and threat detection. They will learn how to customize threat detection rules and use Zeek's reporting features to get a detailed view of network activity.
Prerequisites for the course include basic knowledge of networks and network security. A prior knowledge of Unix operating systems is also recommended, as Zeek runs in a Unix-based environment. In summary, this course is a unique opportunity to learn about Zeek and how to use it to improve the security of your network.
Requirements
To take the Packet Analysis with Zeek course, it is necessary to have basic knowledge of networks and computer security. In addition, it is recommended to have access to a computer with the Ubuntu operating system and a stable Internet connection. It is also necessary to have Zeek installed on the computer and to know its basic operation.
Regarding the technical requirements, it is recommended to have a computer with a high-speed processor and enough RAM and storage to handle the amount of data that will be analyzed in the course. It is also important to have access to a test network to put into practice the concepts learned in the course.