Corelight Bright Ideas Blog: NDR & Threat Hunting Blog (6)

Corelight Bright Ideas Blog

Featured Post

December 19, 2024

Cooking up a year of faster, smarter, and tastier security

If there’s one thing I love more than delivering great products, it’s delivering great food. The holidays are my time to channel my inner celebrity chef: I’ll burn a few cookies, over-spice a roast, and then miraculously pull it all together for a meal that leaves everyone asking for seconds (or at least not asking for the takeout menu). This... Read more »

Additional Posts

Detecting Storm-0558 using Corelight evidence

By Chris Brown – August 1, 2023

While there have been many intrusions, compromises, breaches, and incidents that have made news in the IT and InfoSec industries throughout 2022 and into this year, when events or threats like Storm-0558 gain coverage by mainstream media, we often... Read more »

I have trust issues and so does my CISO

By Tim Nolen – July 27, 2023

Trust is hard to earn but necessary for any successful relationship. As organizations build the systems to support Zero Trust, they find themselves balancing security and functionality across their operations. Incident Response and Network... Read more »

How SOCs can level up their PCAP game with Smart PCAP (Part 2)

By Roger Cheeks – July 13, 2023

This is the second in a 2 part series on Corelight Smart PCAP. If you missed Part 1, you can find it here. In terms of unencrypted traffic, several highly used protocols lend themselves to logging and can significantly reduce the burden of packet... Read more »

Extending visibility through our new ICS/OT collection

By Vince Stoffer – June 21, 2023

Increasingly, security teams are tasked with identifying, understanding, and managing risk around devices that may live outside the traditional IT umbrella. Operational Technology (OT) refers to computing systems that are used to manage and process... Read more »

Lessons Learned Deploying Corelight in the Black Hat Asia NOC

By Dustin Lee – June 12, 2023

Last month, Corelight had the distinct privilege of joining Cisco, NetWitness, Palo Alto Networks, Arista, and our internet service provider, MyRepublic, to provide availability and network security overwatch to the Black Hat Asia network in... Read more »

Celebrating CrowdStrike’s New Network Detection Service “Powered by Corelight”

By Allen Marin – June 1, 2023

Several months ago, we announced that our strategic alliance partner CrowdStrike decided to use our Open NDR technology across its professional services portfolio. This wasn’t just a meaningful validation for us—it was also a testament to the... Read more »

Key takeaways from RSA 2023: #BetterTogether and AI in security

By Ed Smith – May 8, 2023

Whether or not you made it to RSA 2023, here are two key themes we saw throughout this year’s conference. Read more »

New Sliver C2 Detection Released - Redteam detected

By Corelight Labs Team – May 4, 2023

We are excited to announce the release of a new detection package “Sliver”, which identifies and raises alerts related to the Sliver C2 framework. This new package joins our industrial-strength C2 Collection and uses a variety of techniques to... Read more »

How SOCs can level up their PCAP game with Smart PCAP

By Roger Cheeks – May 3, 2023

This blog post is the first in a 2 part series on Corelight Smart PCAP. Tune in next week for part two where we’ll take a deep dive look at Corelight’s PCAP functionality and workflows that accelerate security investigations. Read more »

Corelight Open NDR Now Helps Defend Black Hat Events

By John Gamble – April 18, 2023

Load Older Posts