Researchers at wiz.io found vulnerabilities in Windows OMI; Corelight has open-sourced a Zeek package for the most severe of these vulnerabilities.
Learn how to use Zeek script for detecting attempts to exercise the PetitPotam exploits.
In the spirit of our open-source heritage, Corelight has produced a document breaking down our ability to identify and detect these attackers’...
Corelight launches software version 22, which introduces a transformative new security product, Smart PCAP, and also enables threat detection in the...
I’ve created and released a Zeek package, zeek-notice-telegram. I’ll walk you through a simple example so you can write your own action.
As the first National Cyber Director settles into office, we are very hopeful this will be a turning point to solidify a true private/public...
CVE-2021-1675 is a vulnerability that targets the Windows Print Spooler service. Find out more about detecting the PrintNightmare vulnerability here.
Recently Blackberry analyzed a new GoLang Remote Access Trojan (RAT) named “ChaChi.” Here's how Corelight Sensors can detect the ChaChi RAT.
Recently Blackberry analyzed a new GoLang Remote Access Trojan (RAT) named “ChaChi.” Here's how Corelight Sensors can detect the ChaChi RAT.