Zeek
Detecting CVE-2022-23270 in PPTP
In this post Corelight Labs reviewed a proof of concept exploit for this vulnerability and wrote a Zeek-based detection for it.
Featured
Data quality defines a ceiling for SOC performance
Discover why network data quality sets a hard ceiling on AI SOC performance. Learn how Corelight data outperforms NetFlow and firewall logs.