Zeek
Detecting CVE-2022-30216: Windows Server Service Tampering
Corelight Labs reviewed a POC exploit for CVE-2022-30216 and wrote a Zeek-based detection and released the package on GitHub.
Featured
Data quality defines a ceiling for SOC performance
Discover why network data quality sets a hard ceiling on AI SOC performance. Learn how Corelight data outperforms NetFlow and firewall logs.