Hot Topics

network visibility

traffic anomalies microsegmentation NDR network SASE K8s Network Traffic Analysis Security Goals 5g

Increasing Network Visibility: The Key to Security

| | NDR, Network Security, network security monitoring, network visibility
Networks are becoming increasingly complex as organizations adopt a raft of new technologies and services, including edge computing, automation, connected devices, sensors and 5G. These complex networks undergird the essential services of ...
Security Boulevard

Network Visibility is Foundational to Cyber Security’s Vital Few

| | Blog, Network Security, network visibility, threat detection, Threat Hunting
For more than a hundred years now the Pareto Principle has reminded us that the relationship between inputs and outputs is rarely in balance. Though the 80/20 rule began as a comparison ...
Bricata | Network Detection & Response | Visibility & Analytics | Threat Hunting

Network Visibility is Foundational to Cyber Security’s Vital Few

| | Blog, Network Security, network visibility, threat detection, Threat Hunting
For more than a hundred years now the Pareto Principle has reminded us that the relationship between inputs and outputs is rarely in balance. Though the 80/20 rule began as a comparison ...
Bricata | Network Detection & Response | Visibility & Analytics | Threat Hunting

The Critical Role of Network Detection and Response in Improving Enterprise Security [Q&A with Vito Rallo of PwC]

| | Blog, Cyber Threats, Cybersecurity, Incident Response, Network Security, network visibility, thought leader interviews, threat detection, Threat Hunting
Vito Rallo is Director of Cyber Incident and Threat Management at PwC. He and his team provide offensive security and incident and threat management services to medium and large enterprises. Prior to ...
Bricata | Network Detection & Response | Visibility & Analytics | Threat Hunting

The Critical Role of Network Detection and Response in Improving Enterprise Security [Q&A with Vito Rallo of PwC]

| | Blog, Cyber Threats, Cybersecurity, Incident Response, Network Security, network visibility, thought leader interviews, threat detection, Threat Hunting
Vito Rallo is Director of Cyber Incident and Threat Management at PwC. He and his team provide offensive security and incident and threat management services to medium and large enterprises. Prior to ...
Bricata | Network Detection & Response | Visibility & Analytics | Threat Hunting
Telegram Zeek, you’re my main notice

Telegram Zeek, you’re my main notice

| | Corelight Labs, Corelight@Home, NetControl, network detection response, Network Security, network security monitoring, network traffic analysis, network visibility, Notice Framework, TCP, Telegram, Zeek
Notices in Zeek Zeek’s Notice Framework enables network operators to specify how potentially interesting network findings can be reported. This decoupling of detection and reporting highlights Zeek’s flexibility: a notice-worthy event in ...
Bright Ideas Blog
Finding SolarWinds / SUNBURST backdoors with Zeek, Suricata, & Corelight

Detecting CVE-2021-31166 – HTTP vulnerability

| | Accept-Encoding, Corelight Labs, CVE-202131166, GitHub, http, http.log, HTTP.sys, Network Security, network security monitoring, network traffic analysis, network visibility, SOAP, SolarWinds, SUNBURST, WinRM, Zeek
By Ben Reardon, Corelight Security Researcher In this blog we aim to provide a little insight into part of the lifecycle of Corelight Lab’s response to a critical HTTP vulnerability. We’ve open-sourced ...
Bright Ideas Blog

What the Cyber EO means for federal agencies

| | Chris Inglis, Cybersecurity, Defense Federal Acquisition Regulation, executive order, Federal, Federal Acquisition Regulation, Industry, Jean Schaffer, Mandiant, network detection response, Network Security, network security monitoring, network traffic analysis, network visibility, nsa, President Biden, Snowden, SUNBURST, Zeek, zero trust
By Jean Schaffer, Federal CTO, Corelight For those of us who have spent our careers working in cybersecurity, President Biden’s recent “Executive Order on Improving the Nation’s Cybersecurity,” (EO) held no surprises ...
Bright Ideas Blog

World’s first 100G Zeek sensor

| | 100G, Announcements, AP 5000, Command And Control, Fleet Manager, intrusion detection, Lawrence Berkeley Labs, network detection response, Network Security, network security monitoring, network traffic analysis, network visibility, open source, Open Source Community, Product, RDP, SIEM, Suricata, Zeek
By Sarah Banks, Senior Director of Product Management, Corelight As we finished rolling out Corelight’s v21 software release, which saw the delivery of the world’s first 100G, 1U Zeek sensor, I was ...
Bright Ideas Blog
Introducing RDP Inferences

Introducing RDP Inferences

| | Alert AA21-131A, Announcements, APT39, APT40, Corelight Labs, Crowbar, DarkSide ransomware, Duo, Emotet, encrypted traffic, encrypted traffic collection, JA3, Matrix ransomware, network detection response, Network Security, network security monitoring, network traffic analysis, network visibility, Palo Alto Networks, RDP, RDPBCGR, Richard Bejtlich, rsa, RSAConference, Vern Paxson, Zeek, Zscaler
By Anthony Kasza, Technical Director, Corelight Corelight recently released a new package, focused on RDP inferences, as part of our Encrypted Traffic Collection. This package runs on Corelight Sensors and provides network ...
Bright Ideas Blog
Load more