Zeek
Detecting Zerologon (CVE-2020-1472) with Zeek
To assist in detecting Zerologon (CVE-2020-1472), we’ve open sourced a Zeek package that detects both attempted and successful exploits.
Featured
Corelight and Microsoft: A smarter way to fight alert fatigue
Streamline alert triage and reduce alert fatigue with Corelight's Microsoft Defender integration, enabling faster, smarter decisions across your SOC.