Oliver RochfordinNerd For TechWhy you are probably pricing your security solution all wrongEspecially during my time at Gartner as an analyst, I heard many preposterous claims about TAM’s and IT security budgets and associated…5 min read·Mar 16, 2021----
Oliver RochfordinBrim SecurityVisualizing Network Cyber Attacks with Suricata and Zeek using Brim and NetworkXGaining meaningful Insights out of Security Data11 min read·Feb 24, 2021----
Oliver RochfordinBrim SecurityAnalyzing Qakbot using Brim’s No-code threat huntingQakbot is the newest guise of Qbot, a banking trojan that was first detected in the wild in 2009. Originally focused on the theft of…6 min read·Jan 14, 2021----
Oliver RochfordinBrim SecurityWhat’s new in Brim v0.22.0?Brim is a full nano network intrusion detection and threat hunting platform, and best of all, it’s open source. There is no need to…3 min read·Jan 12, 2021----
Oliver RochfordinBrim SecurityWhat’s better than Brim and Zeek? Brim, Zeek and Suricata!We are really excited to announce that we have extended our pcap post-capture analysis engine in Brim with Suricata. In addition to Brim…5 min read·Dec 22, 2020----
Oliver RochfordinBrim SecurityVisualizing IP Traffic with Brim, Zeek and NetworkXNetwork Graphs and Threat Hunting11 min read·Dec 1, 2020--1--1
Oliver RochfordinBrim SecurityHunting Emotet with Brim and ZeekThe US Cybersecurity and Infrastructure Security Agency recently released an advisory warning of a resurgence of the Emotet malware.8 min read·Nov 5, 2020--2--2
Oliver RochfordinBrim SecurityInvestigating Network traffic activity using Brim and ZeekIn the last article, I shared my favourite Brim ZQL queries to begin a threat hunting investigation in Zeek data. We covered pretty…5 min read·Oct 9, 2020----
Oliver RochfordinBrim SecurityFive Elegant Brim Queries to Threat Hunt in Zeek Logs and Packet CapturesThreat Hunting is challenging — there’s an adversary trying to hide after all — so any tool that can speed up your Time to Insight should…7 min read·Sep 23, 2020----