Name: Corelight, Inc.
Type: Organization
Bio: Corelight is the most powerful network visibility solution for information security professionals, founded by the creators of open-source Zeek.
Location: San Francisco, CA
Blog: http://www.corelight.com
Corelight, Inc.'s Projects
Alpine docker container preloaded with AWS CLI and Git for CI/CD
Looker Dashboards for Chronicle
A vulnerable Boa web server detector.
Dr. Watson catcher script for Bro.
Hardware description script module for Bro.
Plugin to support libmaxminddb in Bro
Purely signature based protocol detection for Bro
ShellShock attack and exploit detector for Bro.
Note: This repository has been renamed to corelight-client.
A reusable C implementation of the Community ID standard
Detection of Manjusaka C2 framework
Zeek Plugin that detects CallStranger (CVE-2020-12695) attempts (http://callstranger.com/)
Chronicle parser for CORELIGHT and related information.
Command line tool for Amazon Route 53
An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
JavaScript implementation of the Community ID flow hashing standard
A Bro package to identify connections that are bursting (lots of data and transferring quickly).
Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, Suricata and Zeek solutions.
Corelight Sensor API command-line client
IaC used to deploy Corelight Sensors into various Cloud Providers.
Example script to upload extracted files to Cisco SMA (threatgrid)
Detection of RCE in Oracle's WebLogic Server CVE-2020-14882 / CVE-2020-14750
A network detection package for CVE-2020-16898 (Windows TCP/IP Remote Code Execution Vulnerability)
A network detection package for CVE-2020-5902, a CVE10.0 vulnerability affecting F5 Networks, Inc BIG-IP devices.
HTTP Protocol Stack CVE-2021-31166
CVE-2021-38647 AKA "OMIGOD" vulnerability in Windows OMI