Zeek
Detecting CVE-2022-23270 in PPTP
In this post Corelight Labs reviewed a proof of concept exploit for this vulnerability and wrote a Zeek-based detection for it.
Featured
Fueling Cisco XDR with Corelight high-fidelity network evidence
Learn how to integrate Corelight Investigator directly into Cisco XDR to enrich your SOC investigations with high-fidelity network evidence.