Corelight

We all remember the 2021 SolarWinds #vulnerability 🫣 @strandjs from @ActiveCountermeasures stopped by our #RSA2023 booth today to share how he was able to identify a compromised instance of SolarWinds within a customer environment using @corelight_inc — before the #CVE was even disclosed. During his "Identifying Compromised Systems" session, John shared how he uses Corelight network evidence from Zeek logs to conduct #threathunting missions, and talked about the importance of open-source technologies in #security.

A big thank you to John for the session today!

To learn more about open-source Zeek and how it is the foundational to the Corelight Open #NDR Platform, visit our website: https://corelight.com/products/zeek/ You can also learn more about Zeek by following @zeekurity.

For more on why evidence-led security is so important when evaluating Network #DetectionandResponse vendors, check out our new NDR primer:
https://corelight.com/resources/glossary/ndr-network-detection-and-response

#NetworkSecurity #DFIR #OpenSource #Cybersecurity #RSA #RSAConference

Zeek | Corelight

Zeek is the gold standard for network traffic monitoring and is the foundation for Corelight's Open NDR platform.

Apr 26, 2023 at 1:17amWeb