Bro NSM Hunting Tips

Abstract: The Bro Network Security Monitor (NSM) is used on networks worldwide for in-depth network monitoring and hunting for potential malicious activities. This document provides tips for analysts on how to raise a notice when irregular activity is observed on a network.

Date Published:

Last Reviewed: 11 December 2017

Identifier: CTR-U-OO-801108-17

Creator: Vulnerability Solutions

Dissemination Control: N/A

Length: 25 page(s)

Format: pdf

Type: Reference/Overview; Report

Tags: Network Security; Traffic; Intrusion Detection and Prevention; Cyber; Event Logging; GitHub