Corelight Bright Ideas Blog

Featured

Inside the mind of a cybersecurity threat hunter part 3: hunting for adversaries moving inside your network

Learn how to use Corelight’s rich network telemetry in CrowdStrike’s Next-Gen SIEM to expose defense evasion and lateral movement inside your network.

Allen Marin Dec 22, 2025

network detection response

Corelight Investigator accelerates threat hunting

This morning we announced Corelight Investigator, an open NDR platform that enables security teams with next-level evidence. Here is how it works.

Nick Hunter May 25, 2022

What makes evidence uniquely valuable?

Learn about the attributes of high-quality evidence. What should evidence look like, in order to be useful to defenders when the next security event...

Gregory Bell May 18, 2022

network detection response

Network evidence for defensible disclosure

What do I say if my team discovers a breach of our digital assets? This is a question that requires understanding “defensible disclosure.”

Richard Bejtlich May 5, 2022

network detection response

Sidecars for network monitoring

Sniffing and mirroring network traffic from containers can be complicated. This post explores one approach to achieve this by injecting a sniffer...

Al Smith Apr 21, 2022

network detection response

Explore Corelight evidence in Humio Community Edition

Our new collaboration with CrowdStrike and Humio allows our customers and the community to experience the value of evidence.

Ed Smith Apr 19, 2022

Deeper visibility into Kubernetes environments with network monitoring

This post explores the need, different approaches and pros and cons of monitor traffic in Kubernetes environments.

Vijit Nair Apr 12, 2022

network security

Application Layer Infrastructure Visibility in IaaS

Application layer infrastructure visibility in IaaS using a recent Log4Shell example.

Ricky Lin Feb 10, 2022

Security strategy for the next Log4Shell

Here are four elements of the security strategy for the next Log4Shell.

Brian Dye Dec 22, 2021

Tagged With: APT, BIRT, BlackHat, Business Inciden

Corelight & Microsoft Defender for IoT: Through an XDR lens

What is the XDR paradox? It’s the hottest term in security but there is no consensus yet on the right definition. Why is that?

Brian Dye Nov 16, 2021

< 1 2 3 ... 6 7 8 >