Ref comm for https://furaffinity.net/user/azula!

#furryart #zeekthehusky #zeek #husky #reff #reference

At December's Community Call, Benjamin demoed zeek-websocket-rs, the new Rust-based WebSocket bindings for Zeek with support for Python, C++, and Node.js.

Watch the demo: https://www.youtube.com/watch?v=pP2b9lQAZl8&t=426s #Zeek #NetworkSecurity

#OpenSource #Rust #InfoSec

Malcolm v25.12.1 contains a few critical bug fixes and component version updates.

https://github.com/idaholab/Malcolm/compare/v25.12.0...v25.12.1

• ✨ Features and enhancements
  • Installer splash screen shows "HEDGEHOG" when using Hedgehog run profile
• ✅ Component version updates
  • supercronic to v0.2.40
  • Alpine (Docker base image) to v3.23
  • NetBox to v4.4.8
  • urllib3 to v2.6.0 (CVE-2025-66471, 8.9 High, GHSA-2xpw-w6gg-jr37)
• 🐛 Bug fixes
  • Changed field used in Threat Intelligence dashboard's file type table from zeek.intel.file_mime_type to file.mime_type so filters created from it can work on other dashboards
  • link for threat intelligence URL doesn't work correctly from dashboards (behind reverse proxy) (#832)
  • self-signed certificates not accepted by Chrome (#833)
  • Malcolm ISO installer's automatic partitioning may create too-small /var partition (#835)
• 🧹 Code and project maintenance
  • Added new Analytics section to documentation

Malcolm is a powerful, easily deployable network 🖧 traffic analysis tool suite for network security monitoring 🕵🏻‍♀️.

Malcolm operates as a cluster of containers 📦, isolated sandboxes which each serve a dedicated function of the system. This makes Malcolm deployable with frameworks like Docker 🐋, Podman 🦭, and Kubernetes ⎈. Check out the Quick Start guide for examples on how to get up and running.

Alternatively, dedicated official ISO installer images 💿 for Malcolm and Hedgehog Linux 🦔 can be downloaded from Malcolm's releases page on GitHub. Due to limits on individual files in GitHub releases, these ISO files have been split 🪓 into 2GB chunks and can be reassembled with scripts provided for both Bash 🐧 (release_cleaver.sh) and PowerShell 🪟 (release_cleaver.ps1). See Downloading Malcolm - Installer ISOs for instructions.

As always, join us on the Malcolm discussions board 💬 to engage with the community, or pop some corn 🍿 and watch a video 📼.

#Malcolm #HedgehogLinux #Zeek #Arkime #NetBox #OpenSearch #Elasticsearch #Suricata #PCAP #NetworkTrafficAnalysis #networksecuritymonitoring #OT #ICS #icssecurity #CyberSecurity #Cyber #Infosec #INL

This month's tip: how to process compressed pcaps directly with Zeek.

See the command in the newsletter: https://community.zeek.org/t/zeek-newsletter-issue-57-november-2025/7912

#Zeek #NetworkSecurity #pcap

Who is running #corelight
at home?

https://corelight.com/blog/corelight-at-home

Seems like a good use of a spare raspi

#raspi #raspi4 #zeek #suricata
#networking #networkmonitoring #DNS #infosec #cyberz #cybersecurity

Our new blog post walks through best practices for writing clean, maintainable scripts.

Read here: https://zeek.org/2025/12/developing-zeek-scripts-with-style/

#Zeek #NetworkSecurity #OpenSource #InfoSec

Some cool stuff happening in Zeek development this month: Zeek 8.1 is almost here, updates on WebSocket bindings, and more.

Get the full rundown in our newsletter: https://community.zeek.org/t/zeek-newsletter-issue-57-november-2025/7912

#Zeek #NetworkSecurity #OpenSource

Our call for presentations is open for the upcoming Zeek workshop at CERN, Using Zeek in your security work? Built custom scripts or plugins? Analyzing protocols with Spicy? We want to hear about it.

https://zeek.org/workshop-cern-2026/call-for-presentations/

#Zeek #NetworkSecurity #ThreatHunting #InfoSec #OpenSource

Malcolm v25.11.0 brings a rebuilt install script and fresh visualizations. Security Onion 2.4.190 updates its Zeek components. Find the full details in the latest Zeek newsletter:
https://community.zeek.org/t/zeek-newsletter-issue-56-october-2025/

#Zeek #Malcolm #SecurityOnion #NetworkSecurity