Corelight Bright Ideas Blog

Featured

Inside the mind of a cybersecurity threat hunter part 3: hunting for adversaries moving inside your network

Learn how to use Corelight’s rich network telemetry in CrowdStrike’s Next-Gen SIEM to expose defense evasion and lateral movement inside your network.

Allen Marin Dec 22, 2025

Zeek

Investigating the effects of TLS 1.3 on Corelight logs, part 1

In this first of three parts, I will introduce TLS and demonstrate a clear-text HTTP session as interpreted by Corelight logs.

Richard Bejtlich May 29, 2019

Zeek

How to use Corelight and Zeek logs to mitigate RDS/RDP vulnerabilities

CVE-2019-0708 is a serious vulnerability awaiting exploitation. Learn how to use Corelight and Zeek logs to mitigate RDS/RDP vulnerabilities.

Richard Bejtlich May 23, 2019

Zeek

Network Security Monitoring, a requirement for Managed Service Providers?

Over the last six months, a variety of MSPs were compromised. In this post, I aim to get a better understanding of those incidents.

Richard Bejtlich May 21, 2019

Zeek

Is there a ‘Z’ in “Vectra”?

This blog builds on a prior post by discussing why our customers come to us as an enterprise solution to support their Zeek deployments.

Vern Paxson May 21, 2019

Zeek

How Zeek can provide insights despite encrypted communications

This post will outline some methods Zeek employs to provide visibility into SSH connections.

Anthony Kasza May 7, 2019

Corelight announces cloud enrichment for AWS, GCP, and Azure

The Corelight Partner Program

10 considerations for implementing an XDR strategy

Don't trust. Verify with evidence

Network Detection & Response

Corelight Bright Ideas Blog

Inside the mind of a cybersecurity threat hunter part 3: hunting for adversaries moving inside your network

Investigating the effects of TLS 1.3 on Corelight logs, part 1

How to use Corelight and Zeek logs to mitigate RDS/RDP vulnerabilities

Network Security Monitoring, a requirement for Managed Service Providers?

Is there a ‘Z’ in “Vectra”?

How Zeek can provide insights despite encrypted communications

Have questions?

Sign up for our newsletter

We’re hiring!