Corelight Bright Ideas Blog

Featured

Inside the mind of a cybersecurity threat hunter part 3: hunting for adversaries moving inside your network

Learn how to use Corelight’s rich network telemetry in CrowdStrike’s Next-Gen SIEM to expose defense evasion and lateral movement inside your network.

Allen Marin Dec 22, 2025

Watch over DNS traffic with Corelight and Splunk

Learn about the benefits of Corelight DNS logs, and how Splunk Enterprise Security can reach a new level of functionality through integration with...

Roger Cheeks Apr 1, 2020

Zeek

Countering network resident threats

Anyone worrying about detecting and responding to network resident threats would benefit from the data that Corelight provides.

Richard Bejtlich Feb 20, 2020

Zeek

New Corelight app for Splunk: Making network-based threat hunting easier

Here's how the new Corelight app for Splunk makes network-based threat hunting easier.

Ed Smith Nov 19, 2019

Zeek

Don’t delay – Corelight today!

While I have used log collection and SIEM platforms to review Zeek transaction logs, it is not necessary to wait for a SIEM before collecting...

Richard Bejtlich Aug 1, 2019

Corelight

Hello, my name is??

Corelight just released our v17 software. Here are the details about how these new features can enhance your data, speed up your IR workflow, and...

Vince Stoffer Jun 11, 2019

Zeek

The Elephant in the SIEM War Room

We look at the main angles of innovation that are playing out across form factors (on-prem, MSSP, and SaaS) and the elephant in the room that goes...

Brian Dye Mar 12, 2019

Zeek

Astronomers and Chemists

Now that our largest customers are approaching hundreds of deployed sensors, our mission is broadening. It has led us to develop Corelight Fleet...

Brian Dye Feb 28, 2019

Zeek

Log enrichment with DNS host names

With Corelight’s 1.15 release, we help figure out the host names associated with an IP address in prior network activity. Here's how it works.

Christian Kreibich Oct 25, 2018

Zeek

Databricks + Corelight – A powerful combination for cybersecurity, incident response and threat hunting

Here's why Databricks plus Corelight is a powerful combination for cybersecurity, incident response and threat hunting.

Alan Saldich Jul 17, 2018

< 1 2 3 3 4 >

Corelight announces cloud enrichment for AWS, GCP, and Azure

The Corelight Partner Program

10 considerations for implementing an XDR strategy

Don't trust. Verify with evidence

Network Detection & Response

Corelight Bright Ideas Blog

Inside the mind of a cybersecurity threat hunter part 3: hunting for adversaries moving inside your network

Watch over DNS traffic with Corelight and Splunk

Countering network resident threats

New Corelight app for Splunk: Making network-based threat hunting easier

Don’t delay – Corelight today!

Hello, my name is??

The Elephant in the SIEM War Room

Astronomers and Chemists

Log enrichment with DNS host names

Databricks + Corelight – A powerful combination for cybersecurity, incident response and threat hunting

Have questions?

Sign up for our newsletter

We’re hiring!