Corelight Bright Ideas Blog

Featured

Inside the mind of a cybersecurity threat hunter part 3: hunting for adversaries moving inside your network

Learn how to use Corelight’s rich network telemetry in CrowdStrike’s Next-Gen SIEM to expose defense evasion and lateral movement inside your network.

Allen Marin Dec 22, 2025

network detection response

Detecting Log4j via Zeek & LDAP traffic

We recently discussed some methods for detecting the Log4j exploit, and we’ve developed another method that one running Zeek® or a Corelight sensor...

Corelight Labs Team Dec 17, 2021

network detection response

Simplifying detection of Log4Shell

Simplify the detection of CVE-2021-44228 exploit (the log4j 0-day known as Log4Shell) with Corelight.

Corelight Labs Team Dec 15, 2021

Tagged With: APT, BIRT, BlackHat, Business Inciden

Corelight & Microsoft Defender for IoT: Through an XDR lens

What is the XDR paradox? It’s the hottest term in security but there is no consensus yet on the right definition. Why is that?

Brian Dye Nov 16, 2021

Zeek

Detecting CVE-2021-42292

Learn how to detect the CVE-2021-42292 exploit, which relies on Excel fetching a second Excel file, through behavioral tricks.

Corelight Labs Team Nov 10, 2021

network detection response

Microsoft + Corelight partner to stop IoT attacks

Our new integration combines Corelight with the advanced vulnerability management, detection and response capabilities of Microsoft Defender for IoT.

Ed Smith Nov 2, 2021

Zeek

Smart PCAP and threat detection in the cloud

Corelight launches software version 22, which introduces a transformative new security product, Smart PCAP, and also enables threat detection in the...

John Gamble Aug 3, 2021

Network Security Monitoring