Loading…
BruCON 0x0A has ended
Thursday, October 4 • 10:30 - 12:30
Introduction to Bro Network Security Monitor FILLING

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
Limited Capacity filling up

Bro is an open-source Network Security Monitor (NSM) and analytics platform. Even though it has been around since the mid 90's, its main user base was primarily universities, research labs and supercomputing centers. In the past few years, however, more and more security professionals in the industry turned their attention to this powerful tool, as it runs on commodity hardware, thus providing a low-cost alternative to commercial solutions. 

At its core, Bro inspects traffic and creates an extensive set of well-structured, tab-separated log files that record a network’s activity. Nonetheless, Bro is a lot more than just a traditional signature-based IDS. While it supports such standard functionality as well, Bro’s scripting language allows security analysts to perform arbitrary analysis tasks such as extracting files from sessions, detecting malware by interfacing with an external source, detecting brute-forcing, etc. It comes with a large set of pre-built standard libraries, just like Python. 

During this two-hour workshop, we will learn about Bro's capabilities and cover the following topics: 
- Introduction to Bro 
- Bro architecture 
- Bro events and logs 
- Bro signatures 
- Bro scripting 
- Bro and ELK 

Speakers
avatar for Eva Szilagyi

Eva Szilagyi

CEO, Alzette Information Security
Eva Szilagyi is managing partner and CEO of Alzette Information Security, a consulting company based in Luxembourg. She has more than 8 years of professional experience in penetration testing, security source code review, digital forensics, IT auditing, telecommunication networks... Read More →
avatar for David Szili

David Szili

CTO, Alzette Information Security
David Szili is managing partner and CTO of Alzette Information Security, a consulting company based in Luxembourg. He has more than 8 years of professional experience in penetration testing, red teaming, vulnerability assessment, vulnerability management, security monitoring, security... Read More →


Thursday October 4, 2018 10:30 - 12:30
03. Chimay Novotel

Attendees (28)