Corelight Bright Ideas Blog

Featured

Black Hat Europe 2025: Lessons from the NOC

The antidote to security erosion is monitoring your traffic. I’ve learned you have to "peep those packets" to catch the leaks and make response a...

Mark Overholser Feb 27, 2026

All
Zeek
Network Security Monitoring
featured
network security
NDR
Corelight
network detection response
cybersecurity
SOC
network traffic analysis
Bro
network visibility
Corelight Labs
Richard Bejtlich
SIEM
threat hunting
Product
open source
Announcements
Suricata
Splunk
DNS
Industry
PCAP
TLS
BlackHat
open source community
Corelight Sensor
NSM
Partnership
HTTP
MITRE ATT&CK
GitHub
Incident response
Zeek Logs
encrypted traffic
network evidence
SSH
microsoft
encrypted traffic collection
threat hunter
Detection
JSON
command and control
encryption
ja3
AWS
Crowdstrike
HTTPS
IDS

Zeek

Meet the Corelight CTF tournament winners

We hosted a virtual CTF tournament where hundreds of players raced to solve security challenges using Zeek data in Splunk and Elastic. Here are the...

John Gamble Sep 15, 2020

Corelight announces cloud enrichment for AWS, GCP, and Azure

The Corelight Partner Program

Network Detection & Response

Corelight Bright Ideas Blog

Black Hat Europe 2025: Lessons from the NOC

Meet the Corelight CTF tournament winners

Have questions?

Sign up for our newsletter

We’re hiring!

Get in touch