Hot Topics

json

Introducing the Cloud Sensor for GCP

Introducing the Cloud Sensor for GCP

| | Announcements, aws, google, Google GCP, Google Kubernetes, IaaS, json, Kafka, Microsoft Azure, MTU, Product, SIEM, SOC, Splunk, Suricata, syslog, TAPs, TCP, Terraform, vpc, Zeek
By Vijit Nair, Sr. Director, Product Management, Corelight Visibility is paramount in securing your cloud environment – as the adage goes, you cannot protect what you do not see. However, comprehensive visibility ...
Bright Ideas Blog
Raspberry Pi sensors for home networks

Who’s your fridge talking to at night?

| | Announcements, [email protected], COVID-19, Elastic, home networks, Humio, Industry, json, Kafka, Linux, NDR, network security monitoring, open source, Raspberry Pi, redis, SANS, Seth Hall, Splunk, Suricata, syslog, TCP, Zeek
By Gary Fisk, Sales Engineer, Corelight I love origin stories – the tales of grand plans, unforeseen circumstances, and necessity that creates something new. These strange times have resulted in something new ...
Bright Ideas Blog
Small, fast and easy. Pick any three.

Small, fast and easy. Pick any three.

| | AArch64, Announcements, Corelight, encrypted traffic collection, encryption, json, Kafka, Linux, Product, Raspberry Pi, software, Splunk, ssl, Suricata, TCP, TLS, vm, Zeek, ZeekWeek
By Seth Hall, Co-Founder & Chief Evangelist, Corelight Zeek has been the darling of security defenders looking to get deep visibility into network traffic. Over the last two decades, Zeek has become ...
Bright Ideas Blog
Community ID support for Wireshark

Community ID support for Wireshark

| | Community ID, json, NDR, network detection response, Network Security, network security monitoring, pcap, Product, python, TCP, tshark, Wireshark, Zeek
By Christian Kreibich, Principal Engineer, Corelight The past few weeks have seen several developments around Community ID, our open standard for rendering network traffic flow tuples into a concise textual representation. I’d ...
Bright Ideas Blog
NetworkMiner 2.6

NetworkMiner 2.6 Released

| | email, Fritzbox, FTP, GRE, http, HTTP/2, IMAP, John, John-the-Ripper, json, JtR, LANMAN, Linux, Mono, NetworkMiner, NTLM, pcap, POP3, RFC1890, RFC3428, RFC3551, RFC7637, SIP, smtp, tor, VoIP
We are happy to announce the release of NetworkMiner 2.6 today! The network forensic tool is now even better at extracting emails, password hashes, FTP transfers and artifacts from HTTP and HTTP/2 ...
NETRESEC Network Security Blog
NetworkMiner 2.6

NetworkMiner 2.6 Released

| | email, Fritzbox, FTP, GRE, http, HTTP/2, IMAP, John, John-the-Ripper, json, JtR, LANMAN, Linux, Mono, NetworkMiner, NTLM, pcap, POP3, RFC1890, RFC3428, RFC3551, RFC7637, SIP, smtp, tor, VoIP
We are happy to announce the release of NetworkMiner 2.6 today! The network forensic tool is now even better at extracting emails, password hashes, FTP transfers and artifacts from HTTP and HTTP/2 ...
NETRESEC Network Security Blog
DNS over TLS and DNS over HTTPS

DNS over TLS and DNS over HTTPS

| | Brave, Chrome, CloudFlare, Cobalt Strike, Command And Control, Corelight Labs, dns, DoH, DoT, Firefox, Godlua, goDoH, HTTPS, json, json+https, Malware, network security monitoring, network traffic analysis, opera, PsiXbot, TLS, TLS 1.3, Zeek
By Jamie Brim, Corelight Security Researcher In this post, we’ll explore DNS over TLS (DoT) and DNS over HTTPS (DoH). DoT and DoH were invented to address privacy concerns associated with cleartext ...
Bright Ideas Blog
Get Freebies by Abusing the Android InApp Billing API

Get Freebies by Abusing the Android InApp Billing API

| | android, Android InApp Billing, api, application program interface, Blog, Fruit Ninja, google, InApp billing, json, purchase verification, Technical Blog
Security researchers started talking about vulnerabilities in the Android InApp Billing API years ago, but we found it worthwhile to take another look to see how it has improved (or not) and ...
Blog – Checkmarx
yaay

NetworkMiner 2.3.2 Released!

| | CASE, crt.sh, email, json, Netresec, NetworkMiner, RTP, SecurityTrails, SIP, TEMP, VoIP
NetworkMiner 2.3.2 was released this morning, and there was much rejoicing! Image: U.S. Navy photo by Stuart Phillips (source) This new release primarily fixes bugs related to extraction of emails and VoIP ...
NETRESEC Network Security Blog
JSON CSRF with Parameter Padding

JSON CSRF with Parameter Padding

| | CSRF, json, Parameter Padding
JavaScript Object Notation (JSON) format is one of the prominent data exchange formats of the contemporary web applications. When a web application implements JSON, Cross Site Request Forgery (CSRF) payload delivery gets ...
Random Security