cybersecurity
Inside the Mind of a Cybersecurity Threat Hunter Part 2: Identifying Persistence Techniques
Learn how threat hunters can identify MITRE ATT&CK persistence techniques.
Corelight Bright Ideas Blog
This is the Custom Rich Text module
Feel free to edit this text to reflect your unique voice and message. Tell visitors what you do, why you do it, and what sets you apart.
- All
- Zeek
- Network Security Monitoring
- network security
- featured
- NDR
- network detection response
- Corelight
- cybersecurity
- network traffic analysis
- network visibility
- Bro
- SOC
- Corelight Labs
- Richard Bejtlich
- Product
- SIEM
- open source
- Announcements
- threat hunting
- BlackHat
- Industry
- Suricata
- Splunk
- DNS
- PCAP
- TLS
- open source community
- Corelight Sensor
- NSM
- Partnership
- HTTP
- MITRE ATT&CK
- GitHub
- Incident response
- network evidence
- Zeek Logs
- encrypted traffic
- SSH
- microsoft
- encrypted traffic collection
- JSON
- Detection
- IDS
- NOC
- command and control
- encryption
- ja3
- AWS
- HTTPS
- SSL
Zeek
What makes evidence uniquely valuable?
Learn about the attributes of high-quality evidence. What should evidence look like, in order to be useful to defenders when the next security event...
Gregory Bell
May 18, 2022
Zeek
Corelight & Microsoft Defender for IoT: Through an XDR lens
What is the XDR paradox? It’s the hottest term in security but there is no consensus yet on the right definition. Why is that?
Brian Dye
Nov 16, 2021
Zeek
Expanded Suricata detections with Dtection.io
Corelight offers a new core recommendation - Dtection.io - for customers using its Suricata integration.
Alex Kirk
Nov 4, 2021
network detection response
Microsoft + Corelight partner to stop IoT attacks
Our new integration combines Corelight with the advanced vulnerability management, detection and response capabilities of Microsoft Defender for IoT.
Ed Smith
Nov 2, 2021
Federal
Corelight accelerates OMB logging adoption
If you missed the Office of Management and Budget memo M-21-31, let me provide you the information that you need to know if you are in the federal...
Jean Schaffer
Oct 7, 2021
MITRE ATT&CK
Monitoring networks for Chinese State-Sponsored Cyber Operations
In the spirit of our open-source heritage, Corelight has produced a document breaking down our ability to identify and detect these attackers’...
Alex Kirk
Aug 18, 2021
Zeek
C2 detections, RDP insights and NDR at 100G
I am excited to announce Corelight’s v21 release, which delivers dozens of powerful C2 detections, extends analyst visibility around RDP connections,...
John Gamble
May 18, 2021
Zeek
Introducing the C2 Collection and RDP inferences
We’re excited to announce that the Command and Control (C2) Collection is now available with today’s launch of version 21 of the Corelight software.
Vince Stoffer
May 18, 2021
Zeek
CrowdStrike + Corelight partner to reach new heights
The CrowdStrike + Corelight partnership lets customers incorporate threat intelligence into Corelight Sensors to generate alerts and network evidence.
Lana Knop
Apr 22, 2021