zeek

Verified for current stable LTS

Zeek Commands

Zeek command syntax with verified terminal examples.

Commands

6 commands for Zeek

zeek Operations

Zeek Command: Analyze Live Traffic Network Interface

sudo zeek --iface <interface>

zeek Operations

Zeek Command: Analyze Live Traffic No Scripts

sudo zeek --bare-mode --iface <interface>

zeek Operations

Zeek Command: Analyze Live Traffic With Custom Scripts

sudo zeek --iface <interface> <script1 script2 ...>

zeek Operations

Zeek Command: Analyze Live Traffic With Tcpdump Filter

sudo zeek --filter <path/to/filter> --iface <interface>

zeek Operations

Zeek Command: Analyze Live Traffic With Watchdog Timer

sudo zeek --watchdog --iface <interface>

zeek Operations

Zeek Command: Analyze Traffic From Pcap File

zeek --readfile <path/to/file.trace>

Suggest a Zeek Command

Submit missing workflows, corrections, or verified alternatives for this tool.

FAQ

Coverage: Focused examples for common Zeek workflows.

Verified version: current stable LTS.

Verification: Test commands in a disposable workspace and submit notes for edge cases.