Zeek Newsletter - Issue 36 - February 2024

Issue 36 - February 2024

Welcome to the Zeek Newsletter.

In this Issue:

  • TL;DR
  • Development Updates
  • Zeek in the Community
  • Zeek in the Enterprise
  • Upcoming Events
  • Zeek Package Updates
  • Get Involved


We released more code and made more plans for 2024. If anyone wants to help with the Windows port of Zeek, let us know.

Development Updates

On 20 February, Tim published Zeek feature pre-release 6.2.0-rc1. This has feature and security fixes. Please see his post for details:


On 4 March, Benjamin announced the release of Spicy 1.1.10. Please see his post for details:


Zeek in the Community

On 3 February, Arne Welzel gave a talk on ZeekJS at the FOSDEM conference. You can watch the recording and access the description and slides here:


On 16 February, Seth announced the release of Malcolm v24.02.0. This release contains new features, improvements, bug fixes and component version updates. See this page for details:


On 20 February Christian posted a request for help with the Windows ports of Zeek. If you’re interested and able, please check it out:


On 20 February Doug announced the release of Security Onion 2.4.50, including Zeek 6.0.3 and a brand new Community ID dashboard. See this post for details:


Zeek in the Enterprise

If you are interested in running Zeek on Windows, please join the windows channel on Slack. We are happy for any help that we can get. Most of the Zeek development team does not have experience with Windows development.

Upcoming Events

Christian, Fatema, and Aashish are speaking at the NSF Workshop on Automating Cyber Response on 7-8 March 2024 at University of California, Santa Cruz. See this site for details:


The next Zeek Community Call is 6 March at 1 pm ET. There is no need to register. Here is the Zoom link:


Save the date for Zeek Week 2024. We are making plans for an event on 13-14 August at Caltech in Pasadena, Los Angeles County, California. In addition to the two main days, we are planning to have an adjacent one-day training, either directly before or directly after the main conference. The main conference and the training will both be in-person, with no remote participation. More details, as well as a Call for Presentations will be coming in the next few weeks.

Zeek Package Updates

Changes to packages are available via this search:


The https://packages.zeek.org site reported the last 5 updates as of 2 June:

3/4/24, 4:14 AM shodan-zeek

3/3/24, 4:11 AM icsnpp-profinet-io-cm

3/1/24, 7:58 PM ja4

2/28/24, 10:08 AM zeekjs

2/27/24, 4:51 PM zeek-plugin-profinet

Get Involved

If you have any comments or material for the newsletter please email news@zeek.org or join the #news Slack channel.


The Slack channel has been active during the past month. Here is an invitation link:


Stay up to date by joining the Zeek Discourse:


Subscribe to our YouTube channel:


Follow us on Twitter:


Follow us on Mastodon:


The old mailing list archives now redirect to this site:


If you’d like to read the Leadership Team meeting notes, they are here:


Follow us on LinkedIn:


To search LinkedIn for jobs mentioning Zeek skills, use this query:


See you next time!