Bricata is a complete network monitoring and protection solution. The system is comprised of sensors used to instrument networks and a Central Management Console (CMC) that aggregates data from the sensors for threat hunting and investigation. It delivers network visibility, threat detection, threat hunting and investigation, and prevention in a single, self-contained, easy-to-use system.
Conventional IDS/IPS systems have lacked the innovation needed to address advanced threats, evidenced by the wide-scale adoption of Open Source solutions. Zeek and Suricata are two of the leading engines many teams are using to create tools; but like most open source technologies, they can be difficult to build, deploy, and maintain in-house without the right expertise.
Bricata is closing the gap by delivering the first network security sensors with integrated Zeek and Suricata engines. We simplify operations and maintenance with a centralized management console (CMC) that auto-manages threat intelligence, signatures, scripts, and policies.
While focusing on network security monitoring, Zeek (formerly Bro) provides a comprehensive platform for more general network traffic analysis as well. Well grounded in more than 15 years of research, Zeek has successfully bridged the traditional gap between academia and operations since its inception. Today, it is relied upon operationally in particular by many scientific environments for securing their cyber infrastructure. Zeek’s user community includes major universities, research labs, super computing centers, and open-science communities.
Dr. Ali Hadi, a professor of cybersecurity, answers our questions and describes the Zeek framework as LEGO bricks for network security. ...Read More
Bricata recently released a new version of its network security product with several cool new features including metadata filters, customizable dashboards and smart alert grouping....Read More