Corelight Bright Ideas Blog

Featured

Inside the mind of a cybersecurity threat hunter part 3: hunting for adversaries moving inside your network

Learn how to use Corelight’s rich network telemetry in CrowdStrike’s Next-Gen SIEM to expose defense evasion and lateral movement inside your network.

Allen Marin Dec 22, 2025

Corelight

Corelight reconnects visibility across the entire AWS cloud environment

Corelight’s Flow Monitoring Sensor enriches AWS Flow Logs, expands VPC visibility, accelerates investigations, and cuts SIEM costs.

Muzzafer Pasha Oct 14, 2025

Corelight

It all comes down to the data: unlocking the potential of AI in the SOC

An AI-powered SOC must leverage exceptional best-in-class data quality to succeed. Corelight pursues three strategies to deliver it.

Gregory Bell Oct 3, 2025

Corelight

Back in the Black Hat NOC: A familiar mission, a new crew

What stood out this year was the sheer volume of insecure application traffic. Corelight uncovered an unsecured corporate messaging app leaking...

Blake Cahen Sep 29, 2025

Corelight

Hunting GTPDOOR: The case of the "Black Hat Positive"

Recapping our learnings from the Black Hat NOC, using packet captures and Zeek scripting to decode threat payloads.

Ben Reardon Sep 29, 2025

Corelight

Black Hat USA 2025: A grab bag and a half

From plaintext chat leaks to unencrypted SIP and LLM jailbreaks, the Black Hat USA 2025 NOC saw it all.

Mark Overholser Sep 29, 2025

Corelight

How to level up your technical documentation with Microsoft's style guide and LLMs

Speed up technical documentation with the open-source llm-styleguide-helper. It pairs Vale linting and AI to fix Microsoft Style Guide violations in...

Keith J. Jones Sep 16, 2025

Corelight