Zeek
Pingback: ICMP Tunneling Malware
This blog will introduce a method of detecting the Pingback malware in which attackers often hide their communications in ping message payloads.
Featured
Extending the value of network evidence: Introducing Performance and Asset Visibility
Corelight Performance and Asset Visibility unlocks SecOps and NetOps intelligence from one sensor, with device classification and anomaly-first...