Welcome to the Zeek Newsletter.
In this Issue:
- TL;DR
- Development Updates
- Zeek in the Community
- Zeek in the Enterprise
- Upcoming Events
- Zeek Package Updates
- Get Involved
TL;DR
ZeekWeek 2022 videos began premiering on YouTube this month, and we released two updates to Zeek. There is more information on the Microsoft integration available as well.
Development Updates
On 8 November, Tim Wojtulewicz announced the release of Zeek 5.0.3 and 5.1.0, followed on 22 November by 5.0.4 and 5.1.1. Both address security issues and bug fixes. Please update Zeek as soon as possible.
See the release notes for details:
https://github.com/zeek/zeek/releases/tag/v5.0.4
https://github.com/zeek/zeek/releases/tag/v5.1.1
Binary packages for the new releases are available:
https://github.com/zeek/zeek/wiki/Binary-Packages
Updated source code is available:
https://download.zeek.org/zeek-5.0.4.tar.gz
https://download.zeek.org/zeek-5.1.1.tar.gz
Zeek in the Community
On 2 November, Fatema Bannat Wala hosted a Zeek community call. The recording is here:
On 10 November, Doug Burks announced the release of Security Onion 2.3.182, including Zeek 5.0.3:
https://blog.securityonion.net/2022/11/security-onion-23182-now-available.html
On 17 November, Seth Grover announced the release of Malcolm 6.4.2, including Zeek 5.0.3:
https://github.com/idaholab/Malcolm/releases/tag/v6.4.2
Zeek in the Enterprise
On 28 November, Microsoft published a blog post by Elad Solomon explaining Microsoft’s integration into the Windows Microsoft Defender for Endpoint:
The same day, the Zeek project published a blog post on integrating Microsoft’s code contribution into the Zeek code base:
https://community.zeek.org/t/new-project-post-on-zeek-in-windows/6817
At this point we provide experimental support for Windows. The Zeek 5.2 release, scheduled for early 2023, will be the first to formally feature Windows support. Please consider testing the new code by compiling it on Windows:
https://docs.zeek.org/en/master/install.html#building-from-source
Upcoming Events
Nearly all ZeekWeek 2022 videos are on YouTube.
Video premieres will continue through the week of 6-8 December 2022.
The easiest way to stay informed on this content is to subscribe to the Zeek YouTube channel:
<https://youtube.com/c/Zeekurity>
The following playlist contains all 19 videos, some of which will premiere in the next 9 days:
https://www.youtube.com/playlist?list=PL2EYTX8UVCMhWO6m_uanhXLrSPrCMxO74
Zeek Package Updates
Changes to packages are available via this search:
https://github.com/zeek/packages/pulls?q=is%3Apr+is%3Aclosed
The https://packages.zeek.org site reported the last 5 updates as of 30 November:
11/30/22, 4:12 AM shodan-zeek
11/28/22, 5:14 PM boa-detector
11/27/22, 7:34 PM zeekjs
11/24/22, 5:17 AM CVE-2022-3602
11/22/22, 9:05 PM zeek-outbound-known-services-with-origflag
Get Involved
If you have any comments or material for the newsletter please email news@zeek.org or join the #news Slack channel.
The Slack channel has been very active during the past month. Here is an invitation link:
https://join.slack.com/t/zeekorg/shared_invite/zt-12z1pjy93-zuVGuT1BF~yUJJvERxhp7g
Stay up to date by joining the Zeek Discourse:
Subscribe to our YouTube channel:
https://youtube.com/c/Zeekurity
Follow us on Twitter:
Follow us on Mastodon:
https://infosec.exchange/@zeek
The old mailing list archives now redirect to this site:
https://community.zeek.org/archives/list/zeek@lists.zeek.org/
If you’d like to read the Leadership Team meeting notes, they are here:
https://github.com/zeek/zeek/wiki/LT-Meeting-Notes
Follow us on LinkedIn:
https://www.linkedin.com/company/zeekurity
To search LinkedIn for jobs mentioning Zeek skills, use this query:
<https://www.linkedin.com/jobs/search/?keywords=zeek>
See you next time!