Corelight Bright Ideas Blog

Featured

How to React(.js) to React2Shell and detecting behaviors to catch the Next(.js) big RCE

Ground your defense against React2Shell in verifiable network evidence. Deploy high-fidelity Suricata detections to spot unauthenticated remote code...

David Burkett Dec 6, 2025

network visibility

It’s Typhoon Season: Attackers are deliberately evading EDR. What can you do about it?

Learn how network visibility and detection are critical to closing security gaps and detecting these attacks.

Vince Stoffer Dec 6, 2024

Tagged With: Community ID, JSON, NDR, network dete

Don’t trust. Verify with evidence.

The most sophisticated cyber defense teams in the world have shifted their strategies towards the collection and analysis of high-quality evidence.

Brian Dye Apr 7, 2022

Tagged With: APT, BIRT, BlackHat, Business Inciden

Corelight & Microsoft Defender for IoT: Through an XDR lens

What is the XDR paradox? It’s the hottest term in security but there is no consensus yet on the right definition. Why is that?

Brian Dye Nov 16, 2021

MITRE ATT&CK

Monitoring networks for Chinese State-Sponsored Cyber Operations

In the spirit of our open-source heritage, Corelight has produced a document breaking down our ability to identify and detect these attackers’...

Alex Kirk Aug 18, 2021

Zeek

Countering network resident threats

Anyone worrying about detecting and responding to network resident threats would benefit from the data that Corelight provides.

Richard Bejtlich Feb 20, 2020

Corelight announces cloud enrichment for AWS, GCP, and Azure

The Corelight Partner Program

10 considerations for implementing an XDR strategy

Don't trust. Verify with evidence

Network Detection & Response