Corelight Bright Ideas Blog

Featured

Modernize threat detection and SOC efficiency with integrated Corelight Threat Intelligence

Enhanced anomaly detection and east-west visibility improve evasive threat detection, reduce false positives, and help SOC teams focus on critical...

Allen Marin Oct 30, 2025

Zeek

Detecting OpenBSD CVE-2019-19521 SSH exploit attempts

Here's a simple prototype script which identifies CVE-2019-19521 within SSH connections.

Anthony Kasza Dec 6, 2019

Zeek

Light in the darkness: New Corelight Encrypted Traffic Collection

Version 18 of our software features the Encrypted Traffic Collection which focuses on SSH, SSL/TLS certificates and insights into encrypted network...

Vince Stoffer Nov 20, 2019

Corelight Labs

Introducing the Corelight SSH Inference package

The SSH Inference package installs on sensors with a few clicks and provides network traffic analysis (NTA) inferences on live SSH traffic.

Anthony Kasza Nov 19, 2019

Zeek

How Zeek can provide insights despite encrypted communications

This post will outline some methods Zeek employs to provide visibility into SSH connections.

Anthony Kasza May 7, 2019

< 1 2 3 3 4 >

Corelight announces cloud enrichment for AWS, GCP, and Azure

The Corelight Partner Program

10 considerations for implementing an XDR strategy

Don't trust. Verify with evidence

Network Detection & Response

Corelight Bright Ideas Blog

Modernize threat detection and SOC efficiency with integrated Corelight Threat Intelligence

Detecting OpenBSD CVE-2019-19521 SSH exploit attempts

Light in the darkness: New Corelight Encrypted Traffic Collection

Introducing the Corelight SSH Inference package

How Zeek can provide insights despite encrypted communications

Have questions?

Sign up for our newsletter

We’re hiring!