Welcome to the Zeek Newsletter.
In this Issue:
- TL;DR
- Development Updates
- Zeek in the Community
- Zeek in the Enterprise
- Upcoming Events
- Zeek Package Updates
- Get Involved
TL;DR
Details on meeting the Zeek developers in Amsterdam on 31 May are now available:
https://go.corelight.com/zeek-day
See the upcoming events below for a schedule.
Development Updates
On 11 April, Tim Wojtulewicz released Zeek 5.0.8 and 5.2.1. These are security and bug fix releases.
https://community.zeek.org/t/zeek-bugfix-security-releases-5-0-8-and-5-2-1/
On 18 April, Benjamin Bannier released Spicy 1.5.4. This is a bug fix release.
https://community.zeek.org/t/spicy-bugfix-release-1-5-4/
Zeek in the Community
The community survey results are live. If you view them in dark mode, switch to light mode in order to see the tables.
https://community.zeek.org/t/zeek-2023-community-survey-results/
On 17 April, Doug Burks announced the inclusion of Zeek 5.0.8 now in Security Onion 2.3.230:
https://blog.securityonion.net/2023/04/security-onion-23230-now-available.html
Zeek in the Enterprise
On 18 April, Microsoft published a blog post explaining how Windows uses Zeek to improve its detection processes on the endpoint:
Upcoming Events
We are working on a “meet the developers” get-together in Amsterdam on 31 May. We would like to interact with local community members and discuss the Zeek roadmap and related issues.
https://go.corelight.com/zeek-day
Here is the agenda:
9:30 - 9:45 - Welcome | Agenda for the Day | Introduce the Team
9:45 - 11:00 - General session (TBC). (These sessions will be a culmination of Zeek developer topics such as, technical roadmap, Spicy, team projects and new ideas).
11:00 - 11:15 - Break
11:15 - 12:15 - Ask the Zeek Developer(s) Informal Roundtables
12:15 - 13:30 - Lunch and Networking
13:30 - 14:30 - General session (TBC).
14:30 - 15:15 - Zeek & Corelight Journey (Barry Weymes - Aramco)
15:15 - 17:00 - Ask the Zeek Developer(s) Informal Roundtables
17:00 - Informal Meetings and Discussions over Drinks
We are working on other small get-togethers for the future. We will use this Amsterdam event to test our ideas.
Our next monthly community call will take place on Wednesday 3 May at 1 pm ET. Register here:
https://zoom.us/meeting/register/tJ0lf-usqzwpGdXz35YcBhYtJOEjvSZcgl6W
After registering, you will receive a confirmation email containing information about joining the meeting.
If you have any questions please email: fatema@zeek.org
One way to stay informed on video content is to subscribe to the Zeek YouTube channel:
https://youtube.com/c/Zeekurity
The following playlist contains all 19 videos for ZeekWeek 2022:
https://www.youtube.com/playlist?list=PL2EYTX8UVCMhWO6m_uanhXLrSPrCMxO74
Zeek Package Updates
Changes to packages are available via this search:
https://github.com/zeek/packages/pulls?q=is%3Apr+is%3Aclosed
The https://packages.zeek.org site reported the last 5 updates as of 3 January:
5/1/23, 4:12 AM shodan-zeek
4/29/23, 9:43 AM spicy-plugin
4/27/23, 3:50 PM zeek-pcapovertcp-plugin
4/26/23, 4:57 PM icsnpp-synchrophasor
4/25/23, 10:40 PM zeek-plugin-tds
Get Involved
If you have any comments or material for the newsletter please email news@zeek.org or join the #news Slack channel.
The Slack channel has been very active during the past month. Here is an invitation link:
https://join.slack.com/t/zeekorg/shared_invite/zt-12z1pjy93-zuVGuT1BF~yUJJvERxhp7g
Stay up to date by joining the Zeek Discourse:
Subscribe to our YouTube channel:
https://youtube.com/c/Zeekurity
Follow us on Twitter:
Follow us on Mastodon:
https://infosec.exchange/@zeek
The old mailing list archives now redirect to this site:
https://community.zeek.org/archives/list/zeek@lists.zeek.org/
If you’d like to read the Leadership Team meeting notes, they are here:
https://github.com/zeek/zeek/wiki/LT-Meeting-Notes
Follow us on LinkedIn:
https://www.linkedin.com/company/zeekurity
To search LinkedIn for jobs mentioning Zeek skills, use this query:
https://www.linkedin.com/jobs/search/?keywords=zeek
See you next time!