Zeek
Detecting OpenBSD CVE-2019-19521 SSH exploit attempts
Here's a simple prototype script which identifies CVE-2019-19521 within SSH connections.
Featured
Fueling Cisco XDR with Corelight high-fidelity network evidence
Learn how to integrate Corelight Investigator directly into Cisco XDR to enrich your SOC investigations with high-fidelity network evidence.