Corelight Bright Ideas Blog

Featured Post

May 29, 2025

Corelight Recognized as a Leader in the 2025 Gartner® Magic Quadrant™ for Network Detection and Response

Network Detection and Response (NDR) has emerged as a must-have capability of modern security operations (SecOps). NDR provides deep visibility, detection of advanced threats that evade other security tools, and rapid response capabilities to address the SecOps challenges of incomplete visibility, detection gaps, high SIEM and storage costs, and... Read more »

Additional Posts

Corelight Recognized as a Leader in the 2025 Gartner® Magic Quadrant™ for Network Detection and Response

By Ashish Malpani – May 29, 2025

Hunting at Black Hat Asia 2025: There’s a First Time for Everything

By Jason Wood – May 19, 2025

Want to hunt at Black Hat Asia? It was January 2025 and it was a new year at a new job. I had just started at Corelight as a member of the TME team and received an invitation to work Black Hat Asia as a threat hunter in the Black Hat Network... Read more »

Black Hat Asia 2025 NOC: Headfirst into the (Un)Known

By Stan Kiefer – May 19, 2025

I have been working in the cyber security space for over 25 years. I have spent time in security operations centers (SOCs) within the US Department of Defense, taught cyber warfare operators, secured large enterprise networks and, most recently,... Read more »

Dispatch from Black Hat Asia 2025: To err is (still) human

By Mark Overholser – May 19, 2025

Black Hat Asia 2025 has come and gone, and it was another whirlwind of a conference. Thank you to our partners—Arista, Cisco, MyRepublic, and Palo Alto Networks—for making it a successful conference! It’s an exhilarating experience: sitting in the... Read more »

How to threat hunt for Volt Typhoon using NDR

By Jason Wood – May 12, 2025

Whether they use custom implants for persistence, zero days for initial access, or live off the land (LOTL) to avoid detection, finding a state-sponsored adversary group can be a challenging proposition for defenders. This can be particularly true... Read more »

Edge exploits, EDR blind spots, 51-second breakouts

By Vijit Nair – April 30, 2025

For every advancement in defense, attackers supply the equal and opposite adaptation. In the last few years EDRs have become so effective that adversaries have radically shifted gears. That shift shows up unmistakably in three heavyweight... Read more »

Cloud your way: Expanding threat visibility to meet the unique needs of your business

By Allen Marin – April 29, 2025

Let’s face it: The cloud has become the go-to platform for modern infrastructure—and for good reason. Scalability, flexibility, and speed are hard to beat. But as organizations increasingly rely on the cloud to run their critical operations, the... Read more »

Your network evidence, your SIEM, your way: Corelight’s open SIEM strategy empowers SOCs with a unified experience

By Ricky Lin – April 25, 2025

Security operations centers (SOCs) are under constant pressure to keep their organizations secure, while battling alert fatigue, tool sprawl, and ever-rising demands for speed and precision. Analysts today face an overwhelming landscape where... Read more »

How Corelight's anomaly detection enhances network security

By Cynthia Gonzalez – April 15, 2025

Signature-based detections provide fast, effective defense against known attacks. But the threat landscape is rapidly changing: Attackers are utilizing novel, sophisticated techniques that can bypass traditional, signature-based detection methods... Read more »

Leveraging map-reduce and LLMs for enhanced cybersecurity network detection

By Keith J. Jones – March 25, 2025

In my security research role at Corelight, I often have to go through large, complex data sets to detect subtle anomalies and threats. It reminds me of a famous quote by Abraham Lincoln: Read more »

Load Older Posts

Corelight Bright Ideas Blog

Featured Post

Corelight Recognized as a Leader in the 2025 Gartner® Magic Quadrant™ for Network Detection and Response

Additional Posts

Corelight Recognized as a Leader in the 2025 Gartner® Magic Quadrant™ for Network Detection and Response

Hunting at Black Hat Asia 2025: There’s a First Time for Everything

Black Hat Asia 2025 NOC: Headfirst into the (Un)Known

Dispatch from Black Hat Asia 2025: To err is (still) human

How to threat hunt for Volt Typhoon using NDR

Edge exploits, EDR blind spots, 51-second breakouts

Cloud your way: Expanding threat visibility to meet the unique needs of your business

Your network evidence, your SIEM, your way: Corelight’s open SIEM strategy empowers SOCs with a unified experience

How Corelight's anomaly detection enhances network security

Leveraging map-reduce and LLMs for enhanced cybersecurity network detection

Recent Posts

Sign up for our newsletter

Locations

1 (888) 547-9497

We're hiring!