Corelight Bright Ideas Blog

This is the Custom Rich Text module

Feel free to edit this text to reflect your unique voice and message. Tell visitors what you do, why you do it, and what sets you apart.

network detection response

The evidence bank: leveraging security's most valuable asset

Organizations often implement a data collection strategy out of fear, collecting everything “just in case.” I challenge the assumption.

Bernard Brantley Jun 30, 2022

network detection response

Don’t trust. Verify with evidence.

The most sophisticated cyber defense teams in the world have shifted their strategies towards the collection and analysis of high-quality evidence.

Brian Dye Apr 7, 2022

network detection response

Detecting Log4j exploits via Zeek when Java downloads Java

The blog covers a third log4j detection method, this one focused on the second-stage download that happens after the first stage completes.

Corelight Labs Team Dec 18, 2021

network detection response

Detecting Log4j via Zeek & LDAP traffic

We recently discussed some methods for detecting the Log4j exploit, and we’ve developed another method that one running Zeek® or a Corelight sensor...

Corelight Labs Team Dec 17, 2021

network detection response

Simplifying detection of Log4Shell

Simplify the detection of CVE-2021-44228 exploit (the log4j 0-day known as Log4Shell) with Corelight.

Corelight Labs Team Dec 15, 2021

Corelight Labs

Introducing the Corelight SSH Inference package

The SSH Inference package installs on sensors with a few clicks and provides network traffic analysis (NTA) inferences on live SSH traffic.

Anthony Kasza Nov 19, 2019

Zeek

A network engineer in a Zeek Week world

I’m seven months into a new job here at Corelight as a product manager, and I’m still as excited about Zeek as I was last month about Zeek Week....

Sarah Banks Nov 5, 2019

Corelight

Hello, my name is??

Corelight just released our v17 software. Here are the details about how these new features can enhance your data, speed up your IR workflow, and...

Vince Stoffer Jun 11, 2019

Secure your cloud.

Cloud enrichment for AWS, GCP,
and Azure

Corelight's
partner program

10 Considerations for Implementing an XDR Strategy

Don't trust. Verify with evidence

The Power of Open-Source Tools for Network Detection and Response

The Evolving Role
of NDR

Detecting 5 Current APTs without heavy lifting

Network Detection and Response

Corelight Bright Ideas Blog

This is the Custom Rich Text module

The evidence bank: leveraging security's most valuable asset

Don’t trust. Verify with evidence.

Detecting Log4j exploits via Zeek when Java downloads Java

Detecting Log4j via Zeek & LDAP traffic

Simplifying detection of Log4Shell

Introducing the Corelight SSH Inference package

A network engineer in a Zeek Week world

Hello, my name is??

Have questions?

Sign up for our newsletter

We’re hiring!