By corelight
A network detection package for CVE-2020-16898 (Windows TCP/IP Remote Code Execution Vulnerability) AKA BadNeighbor
By corelight
A network detection package for CVE-2020-5902, a CVE10.0 vulnerability affecting F5 Networks, Inc BIG-IP devices.
By corelight
A Zeek package which detects CVE-2021-38647 (AKA OMIGOD) exploit attempts
By corelight
A package to detect CVE-2021-42292, a Microsoft Excel priviledge exploit.
By corelight
Detect CVE-2022-22954 attempts and exploits. Also logs what data was returned to the attacker.
By corelight
CVE-2022-26809 is a DCE/RPC RCE exploit. This package detects both attempts and successful exploits.
By corelight
Watch SMB transactions for files whose filename matches patterns known to be used by ransomware
By salesforce
Protocol analyzer that detects, dissects, fingerprints, and logs GQUIC traffic