Suricon - November 2022

At Suricon, we showed how you can get more runway out of your EVE JSON logs by compacting them with VAST. We explained how compaction works as a trigger for pipelines that aggregate the EVE logs into a more space-efficient representation.

ZeekWeek - October 2021

At ZeekWeek 2021, we presented how VAST can become a Zeek logger node and transparently receive logs from a Zeek cluster in an optimal fashion. To this end, we wrote a Broker plugin to acquire the binary log data. We then reverse-engineered the binary message format of batched logs, which allowed us to convert them directly into VAST's data plane using Apache Arrow.

(This is a retrospective release to fill in a gap, and not in order of the usual releases.)

The Data Thread - June 2022

At The Data Thread, we presented how [VAST][vast] uses Apache Arrow as data engineering toolkit. We showcase VAST's architecture and how Arrow helps us with interoperability of security data.

Check out our companion blog post: https://vast.io/blog/apache-arrow-as-platform-for-security-data-engineering

Potsdam Conference on National CyberSecurity - June 2022

At the Potsdam Conference on National CyberSecurity we highlighted one of the core problems of large SOCs: handling the complexity imposed by a myriad of interconnected security tools. We showed how VAST can help from an architectural standpoint, as a "sidecar for the SOC."

The International Conference on the EU Cyber Act - May 2022

At the International Conference on the EU Cyber Act 2022, we co-presented with IBM Security's Jason Keirstead about how standardization alone is insufficient to create an open, interoperable ecosystem of security tools. Going back to the articles in the act, we identified market and operational themes that need to be addressed comprehensively in order to have a real-world impact.

Suricon 2021

This release adds slides and video of our talk at Suricon 2021.

Suricon 2019

This release contains the slides from Suricon 2019.

Zeek (Bro) Workshop Europe

This release contains the slides from the Zeek Workshop Europe 2019.

DFN Conference on Security in Networked Systems

This release includes our slides from the DFN Conference on Security in Networked Systems.

BroCon 2018

This release includes our presentation material at BroCon 2018.