Get Started

          We're committed to providing users with access to the richest stream of network detection and response data possible. Discover parsers for new protocols, data analyzers, malware detectors, supporting documentation, and more, here.

          1240x570-insights-2nd-image

          Corelight Collections


          Corelight-Collections-icon-reflection-Large

          Collections of scripts and plug-ins created for Corelight Sensors that detect malicious behaviors and expand on Zeek data.

          • C2 Collection - Detection for over 50 types of command and control activity
          • Encrypted Traffic Collection - Unique insights to investigate encrypted traffic present on most networks
          • Core Collection - Expanded insights for monitoring high-throughput sites for port scanning, cryptomining, and more
          Corelight-Collections-icon-reflection-Large

          Zeek Open Source Packages


           

           

          Query a full list of all Zeek packages:

          https://packages.zeek.org/packages?q=corelight

          Zeek Open Source Enhancements


          zeek-logo-blue-black-rgb-horizontal

          Documentation and Guides



          To learn more about Corelight Labs, contact our team.