1. Home
  2. Partners
  3. Zeek IDS

Zeek IDS with Always-on Packet Capture

Zeek IDS

Zeek (formerly Bro IDS) offers a different take on intrusion detection systems by also providing a comprehensive platform for general network traffic analysis.

Why deploy Zeek with the always-on, full packet capture of EndaceProbes?

Capture every threat, breach and outage

Recall every network activity with perfect clarity. Always on packet capture means you always have the data you need.

Visibility across your entire hybrid network

Record weeks to months of traffic from across your distributed, on-premise, public and private cloud network.

Faster investigation and response

Rapid, centralized search and data-mining puts conclusive forensic evidence at your fingertips in seconds not hours.

Powerful forensics

Quickly and accurately reconstruct events, analyze pcap data and reassemble files with InvestigationManager.

Enterprise-class scalability

Your entire estate of EndaceProbes, physical and cloud, managed centrally, with network-wide investigations from a single pane-of-glass.

Host in Application Dock

Zeek can be hosted in the EndaceProbe's Application Dock™ hosting environmentIt is included in the DockOS virtual machine image that can be downloaded from the Endace Support Portal for fast, easy deployment on EndaceProbes.

About Zeek

Learn more about Zeek, the open-source network security monitoring tool Zeek relied upon by many scientific environments to secure network infrastructure.

How about a demo?

Want to see the benefits of hosting Zeek on EndaceProbes?

Get a demo