Corelight Bright Ideas Blog

Featured

How to React(.js) to React2Shell and detecting behaviors to catch the Next(.js) big RCE

Ground your defense against React2Shell in verifiable network evidence. Deploy high-fidelity Suricata detections to spot unauthenticated remote code...

David Burkett Dec 6, 2025

Stories by Yacin

Zeek

Telegram Zeek, you’re my main notice

I’ve created and released a Zeek package, zeek-notice-telegram. I’ll walk you through a simple example so you can write your own action.

Yacin Nadji Jul 29, 2021

Zeek

Detecting Zerologon (CVE-2020-1472) with Zeek

To assist in detecting Zerologon (CVE-2020-1472), we’ve open sourced a Zeek package that detects both attempted and successful exploits.

Yacin Nadji Sep 16, 2020

Corelight announces cloud enrichment for AWS, GCP, and Azure

The Corelight Partner Program

10 considerations for implementing an XDR strategy

Don't trust. Verify with evidence

Network Detection & Response

Corelight Bright Ideas Blog

How to React(.js) to React2Shell and detecting behaviors to catch the Next(.js) big RCE

Stories by Yacin

Telegram Zeek, you’re my main notice

Detecting Zerologon (CVE-2020-1472) with Zeek

Have questions?

Sign up for our newsletter

We’re hiring!