References

Drain CVR by Mandiant, 2016. Published by NIST. Read here

Applying Network-Centric Approaches for Threat Detection and Response, by Gartner, March 2019. Published by Gartner. Read here (login required)

Market Guide for Network Detection and Response, by Gartner, June 2020. Published by Gartner. Read here (login required)

The Tao of Network Security Monitoring: Beyond Intrusion Detection by Richard Bejtlich, 2004. Published by Addison-Wesley Professional. Learn more

New Network-Based Detections and Improved Device Discovery Using Zeek, by Elad Solomon, October 20, 2022. Published by Microsoft. Read here

Enabling SOHO Network Security Monitoring, by Richard Bejtlich, October 19, 2022. Published by Corelight. Read here