Loading organizations...
§ Private Profile · Tel Aviv, Israel
Zeek is a technology company.
Zeek operates as an open-source software platform dedicated to advanced network security monitoring. The technology passively analyzes network traffic, generating high-fidelity transaction logs, extracted file content, and fully customizable data outputs. Its powerful, network-optimized scripting language enables deep insight into network activity, equipping organizations with actionable intelligence for security, performance, audit, and capacity management across diverse computing environments.
The project originated in 1995 with Vern Paxson, who began its development at Lawrence Berkeley National Lab under the initial name "Bro." Paxson’s foundational insight was the necessity for a system that could not only capture network packets but also perform semantic analysis to provide a richer, more contextual understanding of network communications and behaviors. This vision laid the groundwork for its current capabilities.
Zeek sees adoption across a broad spectrum of users, ranging from small enterprises to large-scale research and commercial networks globally. The platform’s ongoing mission is to empower organizations to comprehensively understand their network usage, thereby enabling them to effectively address complex network challenges in enterprise, cloud, and industrial settings. It continues to evolve, supported by its vibrant open-source community.
Zeek has raised $23.0M across 3 funding rounds.
Zeek has raised $23.0M in total across 3 funding rounds.
Zeek has raised $23.0M across 3 funding rounds. Most recently, it raised $10.0M Pre-Series A in December 2020.
| Date | Round | Lead Investors | Other Investors | Status |
|---|---|---|---|---|
| Dec 18, 2020 | $10M Seed Plus | — | LEE KA KIT, Caelus Asset Management, Chinachem Group, Elite Time, Hkstp Ventures, Innovation And Technology Venture Fund, Philippines KHO Group Family, Radiant Tech Ventures, SF Express, SQ Capital Ventures | Announced |
| Jul 1, 2016 | $10M Series B | Alex Lazovsky | ALL Iron Ventures, Ataria Ventures, B Capital Group, Blockchange Ventures, ENGIE, FJ Labs, Forerunner Ventures, Giza Polish Ventures | Announced |
| May 1, 2015 | $3M Series A | — | ENGIE, URI Levine, Blumberg Capital, Qualcomm Ventures | Announced |
Zeek has raised $23.0M in total across 3 funding rounds.
Zeek's investors include Lee Ka Kit, Caelus Asset Management, Chinachem Group, Elite Time, HKSTP Ventures, Innovation and Technology Venture Fund, Philippines KHO Group family, Radiant Tech Ventures, SF Express, SQ Capital Ventures, Alex Lazovsky, All Iron Ventures.
Zeek is the world's leading open-source network security monitoring (NSM) platform, transforming network traffic into compact, high-fidelity transaction logs, file content, and customizable behavioral analytics for security analysis.[1][2][4][5] It serves security teams, enterprises, government agencies, research institutions, and cloud environments by solving the problem of gaining deep visibility into network activity without active blocking—enabling threat hunting, performance monitoring, audits, and capacity planning across small offices to global networks.[1][2][4] With over 10,000 deployments, 7,300+ GitHub stars, and 270+ community packages, Zeek demonstrates strong growth, bolstered by its 2022 integration into Microsoft Windows and Defender for Endpoint, enhancing threat detection and IoT discovery.[1][4]
Originally developed as "Bro" in the 1990s, Zeek (renamed in 2018) is now custodied by Corelight, a San Francisco-based open-core security company founded by its creators, which provides funding, code contributions, and advocacy while the project remains BSD-licensed and community-driven.[1][2][4]
Zeek's development began in 1995 at Lawrence Berkeley National Laboratory (LBNL) under Vern Paxson, a chief scientist who created it (originally named "Bro") to analyze network traffic on university and national lab networks, inspired by a pseudo-user "zeek" for sensors.[1][4][5] Funded initially by the National Science Foundation and U.S. Department of Energy’s Office of Science, it evolved over 20+ years of federally backed R&D into a flexible NSM tool, renamed Zeek in 2018 to reflect its expanded role.[1][4][5]
Paxson co-founded Corelight with other Zeek creators, which took custodianship from the International Computer Science Institute (ICSI) in Berkeley—a nonprofit that nurtured its early growth.[1][2] Pivotal moments include its global adoption, vibrant open-source community, and the 2022 Microsoft integration, cementing its status after decades as a defender-powered staple.[1][4]
(Note: Unrelated entities like Zeektek, an IT staffing firm founded in 2016, share the name but are distinct.[3][6][7])
Zeek rides the wave of rising cyber threats, zero-trust architectures, and cloud-native security, where traditional tools fall short on visibility into encrypted or IoT traffic—its timing aligns with surging demand for open-source NSM amid SIEM evolution and advanced persistent threats.[1][2][4] Market forces like regulatory compliance (e.g., audits), hybrid cloud proliferation, and talent shortages favor its passive, analyst-empowering model, which integrates seamlessly with tools like Microsoft Defender.[1][5]
It influences the ecosystem by powering 10,000+ deployments, fostering a defender community, and inspiring commercial extensions like Corelight's NDR, democratizing high-end network forensics while advancing federally rooted R&D into enterprise-grade defense.[1][4]
Zeek's trajectory points to deeper AI/ML integrations for automated threat analytics, expanded cloud/IoT support, and broader ecosystem partnerships (e.g., more SIEM/EDR tie-ins), fueled by Corelight's backing and community momentum.[1][2] Trends like ransomware proliferation and edge computing will amplify its role in proactive hunting, potentially evolving its influence toward hybrid open-core dominance in NDR. As network complexity grows, Zeek remains the trusted foundation for visibility, turning traffic chaos into actionable security intelligence.