I’m pleased to announce that Corelight sensors now support the Elastic Common Schema (ECS) via our Corelight ECS Mapping.
Version 18 of our software features the Encrypted Traffic Collection which focuses on SSH, SSL/TLS certificates and insights into encrypted network...
Here's how the new Corelight app for Splunk makes network-based threat hunting easier.
I’m seven months into a new job here at Corelight as a product manager, and I’m still as excited about Zeek as I was last month about Zeek Week....
This post will discuss four dimensions of not having network taps in place and offer advice on making the best of available visibility options.
This true story illustrates how Corelight could have assisted with the realization that activity is not suspicious or malicious, but is in fact...
In this post I examine the statement's relevance and discuss why implementing NSM via passive instrumentation delivers on the promise of the...
Discover how Zeek (formerly Bro) logs gave one company better DNS traffic visibility than their DNS servers.
Zeek (formerly Bro) generates real-time data about network flows. But it can do a lot more, and in this blog series, we’ll highlight lesser-known...