Corelight Bright Ideas Blog

Featured

Modernize threat detection and SOC efficiency with integrated Corelight Threat Intelligence

Enhanced anomaly detection and east-west visibility improve evasive threat detection, reduce false positives, and help SOC teams focus on critical...

Allen Marin Oct 30, 2025

cybersecurity

Dual Defenses: 9 Reasons Why Open NDR Is Essential Alongside NGFW

Learn why adding Corelight to your cybersecurity arsenal, alongside existing NGFWs, is a strategic necessity.

Ed Smith Mar 1, 2024

cybersecurity

Inside the Mind of a Cybersecurity Threat Hunter Part 2: Identifying Persistence Techniques

Learn how threat hunters can identify MITRE ATT&CK persistence techniques.

Allen Marin Feb 26, 2024

network detection response

Dual Defenses: 10 Reasons Why NDR Is Essential Alongside EDR

Learn how the kill web concept can be applied to cybersecurity, and how it addresses some of the concerns with the kill chain.

Ed Smith Jan 10, 2024

NDR

Black Hat NOC USA 2023: Leveraging Corelight’s Open NDR Platform for Network Operations (NetOps)

Recapping our learnings from being in the Black Hat NOC at Black Hat USA 2023

Eldon Koyle Dec 4, 2023

SOC

Inside the Mind of a Cybersecurity Threat Hunter Part 1: Confronting Initial Access Techniques

Learn how Corelight’s integration with CrowdStrike helps threat hunters detect signs of Initial Access, one of the tactics and techniques outlined in...

Allen Marin Nov 27, 2023

NDR

How Corelight Uses AI to Empower SOC Teams

Learn how Corelight is using AI in its NDR products to help SOC teams be even more productive.

Vince Stoffer Nov 15, 2023

Zeek

The Art of Team Building: Blueprints from the Black Hat NOC

Here are my learnings from participating in NOCs at Black Hat Asia and Black Hat Las Vegas in 2023.

Dustin Lee Oct 31, 2023

Zeek

Writing a Zeek package in TypeScript with ZeekJS

In this article we'll share some useful guidance for writing a real-world Zeek package in JavaScript or TypeScript.

Simeon Miteff Oct 26, 2023

Zeek

Turning the tables on the infiltrator

Learn how the kill web concept can be applied to cybersecurity, and how it addresses some of the concerns with the kill chain.

Ben Reardon Oct 16, 2023

< 1 2 3 ... 9 ... 29 30 >

Corelight announces cloud enrichment for AWS, GCP, and Azure

The Corelight Partner Program

10 considerations for implementing an XDR strategy

Don't trust. Verify with evidence

Network Detection & Response

Corelight Bright Ideas Blog

Modernize threat detection and SOC efficiency with integrated Corelight Threat Intelligence

Dual Defenses: 9 Reasons Why Open NDR Is Essential Alongside NGFW

Inside the Mind of a Cybersecurity Threat Hunter Part 2: Identifying Persistence Techniques

Dual Defenses: 10 Reasons Why NDR Is Essential Alongside EDR

Black Hat NOC USA 2023: Leveraging Corelight’s Open NDR Platform for Network Operations (NetOps)

Inside the Mind of a Cybersecurity Threat Hunter Part 1: Confronting Initial Access Techniques

How Corelight Uses AI to Empower SOC Teams

The Art of Team Building: Blueprints from the Black Hat NOC

Writing a Zeek package in TypeScript with ZeekJS

Turning the tables on the infiltrator

Have questions?

Sign up for our newsletter

We’re hiring!