Corelight
Data driven detection: Corelight’s approach to AI-powered NDR
Learn how Corelight combines Zeek data, ML, and GenAI workflows to fuel threat hunting, accelerate incident response, and disrupt advanced network...
Corelight Bright Ideas Blog
This is the Custom Rich Text module
Feel free to edit this text to reflect your unique voice and message. Tell visitors what you do, why you do it, and what sets you apart.
- All
- Zeek
- Network Security Monitoring
- network security
- featured
- NDR
- network detection response
- Corelight
- cybersecurity
- network traffic analysis
- network visibility
- Bro
- SOC
- Corelight Labs
- Richard Bejtlich
- Product
- SIEM
- open source
- Announcements
- threat hunting
- BlackHat
- Industry
- Suricata
- Splunk
- DNS
- PCAP
- TLS
- open source community
- Corelight Sensor
- NSM
- Partnership
- HTTP
- MITRE ATT&CK
- GitHub
- Incident response
- network evidence
- Zeek Logs
- encrypted traffic
- SSH
- microsoft
- encrypted traffic collection
- JSON
- Detection
- IDS
- NOC
- command and control
- encryption
- ja3
- AWS
- HTTPS
- SSL
network detection response
Empowering your LLMs: Unlocking cybersecurity queries with Open WebUI knowledge bases
Learn how to use Open WebUI knowledge bases to enhance your LLMs with private, local cybersecurity data for better queries, analysis, and incident...
Keith J. Jones
Jul 2, 2025
network detection response
How to threat hunt for Volt Typhoon using NDR
Learn how to use NDR to detect Volt Typhoon attacks that evade EDR, closing blindspots to stop intrusions before they become breaches.
Jason Wood
May 12, 2025
network detection response
Leveraging map-reduce and LLMs for enhanced cybersecurity network detection
Learn how Map-Reduce and LLMs can be used to efficiently analyze huge datasets and improve threat hunting, incident response, and forensic analysis.
Keith J. Jones
Mar 25, 2025
network detection response
Quick FIX® log management: How metadata simplifies financial protocol tracking (and how Corelight’s platform can help)
Learn how Corelight and Zeek streamline financial protocol tracking, improve network security, and simplify compliance.
Steve Smoot
Mar 7, 2025
network detection response
How metadata wrestled control of FINRA’s colossal data archiving requirements
Learn how metadata enables efficient, cost-effective compliance with FINRA's data archiving requirements while improving network security.
Richard Chitamitre
Mar 7, 2025
network detection response
For Science! – Threat hunting with SCinet at SC24
SCinet’s massive, open network creates unique security challenges. Here's a recap of my experience threat hunting in this high-speed environment.
Eldon Koyle
Mar 6, 2025
network detection response
Running DeepSeek AI privately using open-source software
Learn how to run DeepSeek AI locally with Ollama and Open WebUI for secure Zeek script analysis.
Keith J. Jones
Feb 28, 2025
network detection response
Corelight delivers data aggregation to reduce SIEM ingest by 50-80% compared to legacy network security monitoring tools
Corelight's data aggregation reduces SIEM ingest by 50-80% compared to legacy network security monitoring tools.
Cynthia Gonzalez
Feb 18, 2025
network detection response
Understand and detect MITRE Caldera with Zeek®
Read how to identify C2 activities and agent downloads associated with MITRE Caldera agents using this Zeek Caldera detector via GitHub.
Keith J. Jones
Feb 14, 2025