Read how to identify C2 activities and agent downloads associated with MITRE Caldera agents using this Zeek Caldera detector via GitHub.
Streamline alert triage and reduce alert fatigue with Corelight's Microsoft Defender integration, enabling faster, smarter decisions across your SOC.
RSA 2024 is a wrap. Here are the biggest takeaways from conversations with security leaders and partners.
This new feature empowers SOC analysts to isolate a host directly from Corelight Investigator.
RSA 2024 is a wrap. Here are the biggest takeaways from conversations with security leaders and partners.
Our Series E funding is an endorsement of both our strategy and opportunity.
Learn how the kill web concept can be applied to cybersecurity, and how it addresses some of the concerns with the kill chain.
Here are my learnings from participating in NOCs at Black Hat Asia and Black Hat Las Vegas in 2023.
In this article we'll share some useful guidance for writing a real-world Zeek package in JavaScript or TypeScript.