Corelight Bright Ideas Blog

Featured

Corelight at SC25: A laboratory for securing the fastest conference network

Defending the SCinet network is critical work. See how we handled orders of magnitude more traffic using Corelight’s Open NDR Platform.

Mark Overholser Feb 17, 2026

All
Zeek
Network Security Monitoring
featured
network security
NDR
Corelight
network detection response
cybersecurity
network traffic analysis
SOC
Bro
network visibility
Corelight Labs
Richard Bejtlich
SIEM
Product
open source
threat hunting
Announcements
Suricata
Splunk
DNS
Industry
PCAP
TLS
BlackHat
open source community
Corelight Sensor
NSM
Partnership
HTTP
MITRE ATT&CK
GitHub
Incident response
Zeek Logs
encrypted traffic
network evidence
SSH
microsoft
encrypted traffic collection
Detection
JSON
command and control
encryption
ja3
AWS
Crowdstrike
HTTPS
IDS
SSL

Zeek

Another day, another DCE/RPC RCE

The Corelight Labs team investigates CVE-2022-26809 and open-sources a Zeek package that detects attempts and successful exploitation in unencrypted...

Corelight Labs Team May 17, 2022

Corelight announces cloud enrichment for AWS, GCP, and Azure

The Corelight Partner Program

Network Detection & Response

Corelight Bright Ideas Blog

Corelight at SC25: A laboratory for securing the fastest conference network

Another day, another DCE/RPC RCE

Have questions?

Sign up for our newsletter

We’re hiring!

Get in touch