Just a reminder that we are looking for members who would be interested to participate in the Zeek training content creation for this year’s ZeekWeek’21 in Austin TX.
There are 4 areas we are looking for help regarding the training content creation:
- Running Zeek inside docker and creating an image to use during the training - Docker experience is greatly appreciated.
- Community case studies - New things learned about Zeek by tweaking Zeek frameworks/scripts for log filtering etc.
- Revamping the exercises to include analysis of new traffic pcaps with some new scripts. DNS would still be valuable. (to find exercises, previous Zeek blog posts about Incident response and threat hunting would be valuable resources)
- Assistance with supporting and helping out students during the training hybrid event (In-person only) - Logistics and admin tasks.
Please contact me if you have any questions.
And reach out to me/Keith (cc’ed) directly, if you are interested to participate, and we will plan accordingly.
We will start having meetings with people who are interested by late next week.