Corelight Bright Ideas Blog

Featured Post

Corelight’s GenAI Accelerator Pack features the industry's first Model Context Protocol (MCP) server, specifically designed to facilitate easier access to detailed network data and alerts for cybersecurity AI agents and enhance the analysis of network security information. Read more »

Additional Posts

It’s Typhoon Season: Attackers are deliberately evading EDR. What can you do about it?

By Vince Stoffer – December 6, 2024

Introduction Over the past year, several sophisticated cyber-espionage campaigns have grabbed the attention of our industry and challenged defenders and vendors alike with advanced tactics, techniques, and procedures (TTPs). One of the most visible... Read more »

Tales from the Black Hat NOC (USA 2024) - speed to detect SSHAMBLE

By Ben Reardon – November 27, 2024

Another big day in the NOC Welcome to the Mandalay Bay Convention Center in Las Vegas. I've finished another morning shift in the Black Hat NOC, where the Corelight team has been working with the other NOC partners as part of our ongoing commitment... Read more »

Detecting Quasar Windows RAT

By Tillson Galloway – November 22, 2024

Welcome to Corelight Labs' latest hunt! This blog continues our tradition of analyzing trending threat groups and TTPs on Any.Run and writing detectors for them, providing the community with open-source threat intelligence, and acting as a tutorial... Read more »

Reduce time to triage by up to 50% with Corelight's new Guided Triage capability

By David Getman – November 12, 2024

Security Operations Centers (SOCs) are under immense pressure to ensure no attack goes unnoticed. At Corelight, we’re being approached daily to help bring in network visibility. For many though, visibility isn’t enough. SOCs are already overloaded... Read more »

Streamlining security investigations with real-time enrichment of Corelight Open NDR and SentinelOne Singularity

By Allen Marin – October 15, 2024

In today’s threat landscape, security teams face mounting challenges in maintaining a robust security posture. Legacy tools often fall short of defending against increasingly sophisticated adversaries, especially with the complexity of modern,... Read more »

Feed me!

By Vince Stoffer – September 25, 2024

Corelight has strengthened the Suricata integration within its Open NDR Platform, empowering customers with a custom ruleset, the Corelight Feed, designed to swiftly detect and help respond to emerging threats. With a new monthly update cycle,... Read more »

Want better network visibility? Don't just go with the (net)flow

By Mark Overholser – September 23, 2024

In the Black Hat Network Operations Center (NOC), the conference’s leadership team must assemble best-in-class technologies that complement each other to build and harden an enterprise-grade network in just a few days. Then, the NOC must... Read more »

Stronger Security with Corelight and Mandiant Managed Defense

By Allen Marin – September 18, 2024

At Corelight, we’re thrilled when a respected cybersecurity leader like Mandiant introduces a new offering based on our solution. This week, Mandiant Managed Defense unveiled support for Corelight Open NDR, a move that strengthens our existing... Read more »

Corelight Open NDR Achieves VMware Ready for Telco Cloud Infrastructure Certification

By Lisa Karas – September 17, 2024

Accelerate Your Hybrid Cloud Security with Corelight Open NDR, now in the VMware Marketplace Read more »

Carrefour renforce sa cybersécurité avec Corelight

By Youssef Agharmine – September 11, 2024

Dans le secteur du commerce de détail, en constante évolution, la nécessité d'adopter des mesures de cybersécurité robustes est devenue un impératif stratégique. Carrefour, l'un des leaders mondiaux de la distribution, faisait face au défi de... Read more »

Load Older Posts

Corelight Bright Ideas Blog

Featured Post

Corelight announces industry's first MCP server exposing detailed network data and alerts

Additional Posts

It’s Typhoon Season: Attackers are deliberately evading EDR. What can you do about it?

Tales from the Black Hat NOC (USA 2024) - speed to detect SSHAMBLE

Detecting Quasar Windows RAT

Reduce time to triage by up to 50% with Corelight's new Guided Triage capability

Streamlining security investigations with real-time enrichment of Corelight Open NDR and SentinelOne Singularity

Feed me!

Want better network visibility? Don't just go with the (net)flow

Stronger Security with Corelight and Mandiant Managed Defense

Corelight Open NDR Achieves VMware Ready for Telco Cloud Infrastructure Certification

Carrefour renforce sa cybersécurité avec Corelight

Recent Posts

Sign up for our newsletter

Locations

1 (888) 547-9497

We're hiring!