The antidote to security erosion is monitoring your traffic. I’ve learned you have to "peep those packets" to catch the leaks and make response a...
At Black Hat Europe 2025, we used agentic AI to autonomously decode messy traffic and uncover sensitive leaks that standard hunts missed.
During Black Hat Europe 2025, I had the honor to join our team of “firefighters” at the Black Hat NOC and feel the heat for real.
Working the Black Hat NOC is finding a "needle in a needle stack." I learned that alerts are only one part of the equation; context is what really...
Defending the SCinet network is critical work. See how we handled orders of magnitude more traffic using Corelight’s Open NDR Platform.
Learn why adding Corelight to your cybersecurity arsenal, alongside existing NGFWs, is a strategic necessity.
Learn how threat hunters can identify MITRE ATT&CK persistence techniques.
Learn how Corelight’s integration with CrowdStrike helps threat hunters detect signs of Initial Access, one of the tactics and techniques outlined in...
Announcing the Corelight Cloud Sensor, deployable in AWS and capable of ingesting traffic directly from the new Amazon VPC traffic mirroring feature.