Issue 36 - February 2024
Welcome to the Zeek Newsletter.
In this Issue:
- TL;DR
- Development Updates
- Zeek in the Community
- Zeek in the Enterprise
- Upcoming Events
- Zeek Package Updates
- Get Involved
TL;DR
We released more code and made more plans for 2024. If anyone wants to help with the Windows port of Zeek, let us know.
Development Updates
On 20 February, Tim published Zeek feature pre-release 6.2.0-rc1. This has feature and security fixes. Please see his post for details:
https://community.zeek.org/t/zeek-feature-pre-release-6-2-0-rc1/
On 4 March, Benjamin announced the release of Spicy 1.1.10. Please see his post for details:
https://community.zeek.org/t/spicy-1-10-released/
Zeek in the Community
On 3 February, Arne Welzel gave a talk on ZeekJS at the FOSDEM conference. You can watch the recording and access the description and slides here:
https://fosdem.org/2024/schedule/event/fosdem-2024-2388-zeekjs-javascript-support-in-zeek/
On 16 February, Seth announced the release of Malcolm v24.02.0. This release contains new features, improvements, bug fixes and component version updates. See this page for details:
https://github.com/idaholab/Malcolm/releases/tag/v24.02.0
On 20 February Christian posted a request for help with the Windows ports of Zeek. If you’re interested and able, please check it out:
https://community.zeek.org/t/seeking-windows-contributors/7291
On 20 February Doug announced the release of Security Onion 2.4.50, including Zeek 6.0.3 and a brand new Community ID dashboard. See this post for details:
https://blog.securityonion.net/2024/02/security-onion-2450-now-available.html
Zeek in the Enterprise
If you are interested in running Zeek on Windows, please join the windows channel on Slack. We are happy for any help that we can get. Most of the Zeek development team does not have experience with Windows development.
Upcoming Events
Christian, Fatema, and Aashish are speaking at the NSF Workshop on Automating Cyber Response on 7-8 March 2024 at University of California, Santa Cruz. See this site for details:
https://sites.google.com/ucsc.edu/air-2024/home
The next Zeek Community Call is 6 March at 1 pm ET. There is no need to register. Here is the Zoom link:
https://us06web.zoom.us/j/99882457331?pwd=WVZLRGtpbmx1V2FqSnlRT1FLRC9lQT09
Save the date for Zeek Week 2024. We are making plans for an event on 13-14 August at Caltech in Pasadena, Los Angeles County, California. In addition to the two main days, we are planning to have an adjacent one-day training, either directly before or directly after the main conference. The main conference and the training will both be in-person, with no remote participation. More details, as well as a Call for Presentations will be coming in the next few weeks.
Zeek Package Updates
Changes to packages are available via this search:
https://github.com/zeek/packages/pulls?q=is%3Apr+is%3Aclosed
The https://packages.zeek.org site reported the last 5 updates as of 2 June:
3/4/24, 4:14 AM shodan-zeek
3/3/24, 4:11 AM icsnpp-profinet-io-cm
3/1/24, 7:58 PM ja4
2/28/24, 10:08 AM zeekjs
2/27/24, 4:51 PM zeek-plugin-profinet
Get Involved
If you have any comments or material for the newsletter please email news@zeek.org or join the #news Slack channel.
The Slack channel has been active during the past month. Here is an invitation link:
https://join.slack.com/t/zeekorg/shared_invite/zt-12z1pjy93-zuVGuT1BF~yUJJvERxhp7g
Stay up to date by joining the Zeek Discourse:
Subscribe to our YouTube channel:
https://youtube.com/c/Zeekurity
Follow us on Twitter:
Follow us on Mastodon:
https://infosec.exchange/@zeek
The old mailing list archives now redirect to this site:
https://community.zeek.org/archives/list/zeek@lists.zeek.org/
If you’d like to read the Leadership Team meeting notes, they are here:
https://github.com/zeek/zeek/wiki/LT-Meeting-Notes
Follow us on LinkedIn:
https://www.linkedin.com/company/zeekurity
To search LinkedIn for jobs mentioning Zeek skills, use this query:
https://www.linkedin.com/jobs/search/?keywords=zeek
See you next time!