Corelight's YARA integration helps organizations increase detection rates, improve network visibility, and reduce false positives.
Together, NDR and YARA help SOC teams detect attackers at their point of entry and accelerate incident response.
Corelight Entity Collection, now available in v26 software release, features 3 new packages: Known Entities, Application Identification and Local...
Federal CTO Jean Schaffer explores how evidence - not data - is critical to speed defenders’ knowledge and response capabilities.
Learn about the attributes of high-quality evidence. What should evidence look like, in order to be useful to defenders when the next security event...
The Corelight Labs team investigates CVE-2022-26809 and open-sources a Zeek package that detects attempts and successful exploitation in unencrypted...
Corelight launches software version 22, which introduces a transformative new security product, Smart PCAP, and also enables threat detection in the...
I’ve created and released a Zeek package, zeek-notice-telegram. I’ll walk you through a simple example so you can write your own action.
As the first National Cyber Director settles into office, we are very hopeful this will be a turning point to solidify a true private/public...