Skip to content
@corelight

Corelight, Inc.

Corelight is the most powerful network visibility solution for information security professionals, founded by the creators of open-source Zeek.

Popular repositories Loading

  1. zeek-cheatsheets zeek-cheatsheets Public

    Zeek Log Cheatsheets

    288 46

  2. community-id-spec community-id-spec Public

    An open standard for hashing network flows into identifiers, a.k.a "Community IDs".

    Python 176 25

  3. threat-hunting-guide threat-hunting-guide Public

    51 12

  4. raspi-corelight raspi-corelight Public

    Corelight@Home script

    Shell 40 5

  5. zeek-community-id zeek-community-id Public

    Zeek support for Community ID flow hashing.

    Zeek 35 18

  6. ecs-mapping ecs-mapping Public

    Mapping Corelight or Zeek data to Elastic Common Schema fields

    34 15

Repositories

Showing 10 of 143 repositories
  • LLM-Ninja Public

    Scripts to help you use an LLM AI model like a ninja.

    corelight/LLM-Ninja’s past year of commit activity
    Python 1 BSD-3-Clause 0 0 0 Updated Mar 11, 2025
  • zeek-caldera-detector Public

    A Zeek based Mitre Caldera detector.

    corelight/zeek-caldera-detector’s past year of commit activity
    Zeek 0 BSD-3-Clause 0 0 0 Updated Mar 11, 2025
  • corelight-client Public

    Corelight Sensor API command-line client

    corelight/corelight-client’s past year of commit activity
    Python 17 BSD-3-Clause 5 3 2 Updated Mar 11, 2025
  • zeek-quasarrat-detector Public

    Zeek detector for QuasarRat

    corelight/zeek-quasarrat-detector’s past year of commit activity
    Shell 2 BSD-3-Clause 0 0 0 Updated Mar 11, 2025
  • zeek-netsupport-detector Public

    A Zeek based NetSupport detector. NetSupport is often abused by attackers in malware.

    corelight/zeek-netsupport-detector’s past year of commit activity
    Shell 1 BSD-3-Clause 1 0 0 Updated Mar 11, 2025
  • zeekjs Public

    ZeekJS - Experimental JavaScript support for Zeek.

    corelight/zeekjs’s past year of commit activity
    C++ 9 BSD-3-Clause 4 3 1 Updated Mar 10, 2025
  • terraform-azure-sensor Public

    Terraform for Corelight's Azure Cloud Sensor Deployment.

    corelight/terraform-azure-sensor’s past year of commit activity
    HCL 2 MIT 1 0 0 Updated Feb 28, 2025
  • Zeek-Endpoint-Enrichment Public
    corelight/Zeek-Endpoint-Enrichment’s past year of commit activity
    Zeek 2 1 0 1 Updated Feb 26, 2025
  • ecs-templates Public

    Corelight or Zeek Elastic Common Schema Templates

    corelight/ecs-templates’s past year of commit activity
    Python 8 BSD-3-Clause 6 2 0 Updated Feb 25, 2025
  • ecs-logstash-mappings Public

    Mapping Corelight or Zeek data to Elastic Common Schema logs

    corelight/ecs-logstash-mappings’s past year of commit activity
    12 BSD-3-Clause 6 1 0 Updated Feb 5, 2025
View all repositories

Top languages

Loading…