Corelight Bright Ideas Blog

Featured

Modernize threat detection and SOC efficiency with integrated Corelight Threat Intelligence

Enhanced anomaly detection and east-west visibility improve evasive threat detection, reduce false positives, and help SOC teams focus on critical...

Allen Marin Oct 30, 2025

Corelight

Back in the Black Hat NOC: A familiar mission, a new crew

What stood out this year was the sheer volume of insecure application traffic. Corelight uncovered an unsecured corporate messaging app leaking...

Blake Cahen Sep 29, 2025

Corelight

Hunting GTPDOOR: The case of the "Black Hat Positive"

Recapping our learnings from the Black Hat NOC, using packet captures and Zeek scripting to decode threat payloads.

Ben Reardon Sep 29, 2025

Corelight

Black Hat USA 2025: A grab bag and a half

From plaintext chat leaks to unencrypted SIP and LLM jailbreaks, the Black Hat USA 2025 NOC saw it all.

Mark Overholser Sep 29, 2025

Corelight

Black Hat Asia 2025 NOC: Headfirst into the (Un)Known

Four days in the Black Hat Asia 2025 NOC showed me why the network is “the source of truth”—and why even powerful tools need smart tuning to cut...

Stan Kiefer May 19, 2025

Corelight

Dispatch from Black Hat Asia 2025: To err is (still) human

Recapping findings from the Black Hat Asia 2025 NOC: location data, plain text logins, and self-hosted apps without TLS.

Mark Overholser May 19, 2025

Network Security Monitoring

Thrown in the deep end: My first time hunting in the Black Hat NOC

Step into the Black Hat NOC as I recount my first experience with real-time threat hunting.

Matt Ellison Jan 28, 2025

network security

Tales from the Black Hat NOC (USA 2024) - speed to detect SSHAMBLE

Recapping our learnings from the Network Operations Center (NOC) at Black Hat USA 2024. Using historical network logs to detect threats during the...

Ben Reardon Nov 27, 2024

network security

Want better network visibility? Don't just go with the (net)flow

Learn how Corelight logs provide deep network visibility for incident response and threat hunting in the Black Hat NOC.

Mark Overholser Sep 23, 2024

NDR

Black Hat NOC: Zero Trust…but Verify | Corelight

Our experience in the Black Hat NOC has made us into adherents for “Zero Trust…but verify.”

Mark Overholser Jul 8, 2024

< 1 2 3 >

Corelight announces cloud enrichment for AWS, GCP, and Azure

The Corelight Partner Program

10 considerations for implementing an XDR strategy

Don't trust. Verify with evidence

Network Detection & Response

Corelight Bright Ideas Blog

Modernize threat detection and SOC efficiency with integrated Corelight Threat Intelligence

Back in the Black Hat NOC: A familiar mission, a new crew

Hunting GTPDOOR: The case of the "Black Hat Positive"

Black Hat USA 2025: A grab bag and a half

Black Hat Asia 2025 NOC: Headfirst into the (Un)Known

Dispatch from Black Hat Asia 2025: To err is (still) human

Thrown in the deep end: My first time hunting in the Black Hat NOC

Tales from the Black Hat NOC (USA 2024) - speed to detect SSHAMBLE

Want better network visibility? Don't just go with the (net)flow

Black Hat NOC: Zero Trust…but Verify | Corelight

Have questions?

Sign up for our newsletter

We’re hiring!