Product

Introducing the Cloud Sensor for GCP

Introducing the Cloud Sensor for GCP

| | Announcements, aws, google, Google GCP, Google Kubernetes, IaaS, json, Kafka, Microsoft Azure, MTU, Product, SIEM, SOC, Splunk, Suricata, syslog, TAPs, TCP, Terraform, vpc, Zeek
By Vijit Nair, Sr. Director, Product Management, Corelight Visibility is paramount in securing your cloud environment – as the adage goes, you cannot protect what you do not see. However, comprehensive visibility ...
Bright Ideas Blog
Small, fast and easy. Pick any three.

Small, fast and easy. Pick any three.

| | AArch64, Announcements, Corelight, encrypted traffic collection, encryption, json, Kafka, Linux, Product, Raspberry Pi, software, Splunk, ssl, Suricata, TCP, TLS, vm, Zeek, ZeekWeek
By Seth Hall, Co-Founder & Chief Evangelist, Corelight Zeek has been the darling of security defenders looking to get deep visibility into network traffic. Over the last two decades, Zeek has become ...
Bright Ideas Blog

First Hour Response: The Only Way to Handle an Event Prior to it Becoming an Incident

| | Blog, first hour response, Incident Response, incident response planning, incident response readiness, Product, Product News
By Chris Mills In a recent blog post around Cobalt Strike, Chris Gerritz spoke about how important it was to be prepared and have a true partner in the first hour of ...
Blog – Infocyte

Open Source and Cloud Security Together at Last

| | FEATURED, infrastructure as code, News and Views, Nexus Lifecycle, Product
Today, we’re excited to announce a partnership with Fugue to bring cloud security and compliance into development work streams, helping your teams build, deploy, and manage secure applications in today's popular cloud-native ...
Sonatype Blog

Nexus Repository Helps Developers Overcome New Docker Hub Rate Limits

| | Container Registry, Docker, FEATURED, Nexus Repository, Product
Development teams building applications use Nexus Repository (Nexus) to store and manage all of their components, build artifacts, and containers. It provides an efficient way to locally cache myriad types of software ...
Sonatype Blog

Discord.dll: successor to npm “fallguys” malware went undetected for 5 months

| | FEATURED, Nexus Intelligence, Product, Vulnerabilities
This week, the Sonatype Security Research team has identified a series of counterfeit components in the npm ecosystem. These intentionally malicious packages seem to be doing similar, shady things to the malicious ...
Sonatype Blog

Trick or treat: that `twilio-npm` package is brandjacking malware in disguise!

| | FEATURED, malicious code npm, Product, Vulnerabilities
As if the increasing attacks on the open source ecosystem and vulnerabilities making headlines weren’t scary enough events, this Halloween devs were exposed to another malicious trick.  ...
Sonatype Blog

Discord squashes critical Electron bugs: open source attacks continue to grow

| | FEATURED, Nexus Intelligence, Nexus Lifecycle, npm, Product
My colleague has two kids, ages 9 and 12.  Since the COVID lockdowns they have been playing more online games and each of them use Discord to chat with their friends during ...
Sonatype Blog
Community ID support for Wireshark

Community ID support for Wireshark

| | Community ID, json, NDR, network detection response, Network Security, network security monitoring, pcap, Product, python, TCP, tshark, Wireshark, Zeek
By Christian Kreibich, Principal Engineer, Corelight The past few weeks have seen several developments around Community ID, our open standard for rendering network traffic flow tuples into a concise textual representation. I’d ...
Bright Ideas Blog
How Effective Is Castle Against Credential Stuffing?

How Effective Is Castle Against Credential Stuffing?

| | Product
A technical analysis of Castle's performance in detecting and blocking a variety of credential stuffing attacks from Fall 2020 ...
Blog
Load more