I want to take the opportunity here to talk about a few of our more recent contributions to open-source Zeek (formerly Bro).
Here's why Databricks plus Corelight is a powerful combination for cybersecurity, incident response and threat hunting.
Discover how Zeek (formerly Bro) logs gave one company better DNS traffic visibility than their DNS servers.
Bro’s SMB protocol analyzer has undergone several iterations, and it is now a built-in feature that many Bro users might have overlooked.
When we developed our commercial product we made some design decisions that make running the Corelight Sensor slightly different from running...
The Corelight for Splunk app is now available! Using the new app you can now monitor the health and performance of Corelight Sensors in Splunk and...
I’ve enjoyed meeting many companies and leaders in the Bay Area. The best was with Corelight (where I recently joined as their chief product officer).
Redefs allow the re-definition of already defined constants in Bro. This is often done in local.bro. To modify Site::local_net, use code similar to...
Corelight hosted the Bay Area’s first meetup for the open-source Bro network security monitor; we saw a great turnout of fanatics and first-timers.