Sold by: pCloudHosting LLC
Deployed on AWS
AWS Free Tier
This product has charges associated with it for seller support. Zeek is an open source network security monitoring tool. It analyzes network traffic in real time, offering deep protocol inspection, anomaly detection, and logging for network events.
Overview
Zeek 8.1.0 on Ubuntu 24.04 with free maintenance support by PCloudhosting is a repackaged open-source solution, with optional paid support available. Zeek is a powerful, open-source network monitoring framework built for modern security analytics and high-volume traffic analysis. Its trusted by cybersecurity teams to monitor large scale networks in real time, detect anomalies early, and generate high-fidelity logs for investigations.
Delivered as an AWS Marketplace ready solution, Zeek on Ubuntu 24.04 is designed for fast cloud deployment, scalability, and seamless integration with existing AWS security and logging services. It focuses on real-time traffic inspection, deep protocol analysis, anomaly detection, and advanced log correlation it a strong fit for cloud-native SOC and network forensics use cases.
How Zeek Compares with Other Network Security Solutions
Zeek (Standalone) gives security teams full control over configuration, scripting, and versioning. Its ideal for organizations that already have a mature security stack and want a pure, flexible network monitoring engine running efficiently on AWS.
Security Onion 2 is an all-in-one security monitoring distribution that bundles Zeek and Suricata, Elastic Stack, full packet capture, and a web UI. Its best suited for teams looking for a ready to use SOC platform with minimal setup effort.
Vectra Cognito takes a different approach it doesnt run Zeek directly but exports enriched network metadata in Zeek-compatible formats. It relies on AI driven detection to prioritize threats and stream insights to SIEMs and data lakes, focusing more on rapid detection than raw traffic analysis.
Highlights
- Zeek supports a wide range of network protocols, including HTTP, DNS, FTP, SMTP, and many more, enabling deep and detailed traffic inspection.
- Zeek includes a powerful scripting language that lets teams customize detection logic and analysis workflows to match real-world threats.
- Zeek generates rich, structured logs and enables advanced event correlation, making investigations faster and more accurate.
Highlights
- Zeek supports a wide range of network protocols 'HTTP, DNS, FTP, SMTP, and more' for detailed inspection.
- Zeek provides a powerful scripting language that allows users to customize the analysis process.
- Zeek generates rich logs and provides detailed event correlation capabilities.
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
Ubuntu 24.04
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
If you are an AWS Free Tier customer with a free plan, you are eligible to subscribe to this offer. You can use free credits to cover the cost of eligible AWS infrastructure. See AWS Free Tier for more details. If you created an AWS account before July 15th, 2025, and qualify for the Legacy AWS Free Tier, Amazon EC2 charges for Micro instances are free for up to 750 hours per month. See Legacy AWS Free Tier for more details.
Dimension | Cost/hour |
|---|---|
m4.large Recommended | $0.06 |
t3.micro | $0.06 |
t2.micro | $0.001 |
m3.large | $0.06 |
t2.xlarge | $0.06 |
r5.large | $0.06 |
t2.small | $0.06 |
m5.large | $0.06 |
t3.small | $0.06 |
c5.large | $0.06 |
Vendor refund policy
No refund
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Packaged with latest updates as of Jan/26
Additional details
Usage instructions
Connect you your instance via SSH, the username is ubuntu. More info on SSH: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AccessingInstancesLinux.html - Run the following commands: #sudo su #zeek --version
Support
Vendor support
Feel free to reach out anytime. Our support team is available 24x7 for assistance.
Email: anant.shahi@pcloudhostings.com
Website:
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
The official Security Onion 2 AMI. Security Onion 2 provides organizations with a suite of tools for threat hunting, enterprise security monitoring, and log management.
The Vectra Stream connector outputs Bro/Zeek formatted metadata from the Vectra Network Detection and Response Platform to any data-lake.
OpenText™ Network Detection & Response provides Comprehensive Network Protection for cloud, enterprise, and hybrid networks. The OpenText™ Network Detection & Response Central Management Console is a single user and administrator interface into your deployed OpenText™ Network Detection & Response Sensors and the True Threat Hunting repository they feed.
OpenText™ Network Detection & Response delivers Comprehensive Network Protection for cloud, enterprise, and hybrid networks. Instrument your network with OpenText™ Network Detection & Response Sensors everywhere you want visibility and protection.
Customer reviews
No customer reviews yet
Be the first to review this product . We've partnered with PeerSpot to gather customer feedback. You can share your experience by writing or recording a review, or scheduling a call with a PeerSpot analyst.