No one knows more about Bro. We built it.

When our chief scientist created Bro at Lawrence Berkeley National Laboratory in 1995, he never imagined it would be used worldwide more than 20 years later. For over 20 years the founders of Corelight have been building and improving the open source software, and now they've founded a company.


Technology Partners

Corelight Sensors integrate easily into your existing security infrastructure. They deploy out-of-path and send Bro logs directly to your analytics stack, whichever one you prefer.

Interested in working with Corelight? Learn more

  • Splunk takes your machine data and makes sense of it, and that can include Bro logs. Better data will make your Splunk users more effective at incident response and threat hunting.
  • Confluent creates an Apache Kafka-based streaming platform to unite your organization around a single source of truth.
  • Elastic can reliably and securely take data from any source, in any format, and search, analyze, and visualize it in real time. Corelight supports integreation into Logstash or Elasticsearch directly.
  • Humio makes large scale log ingestion and analysis simple and economical.
  • If you're an AWS shop you can send Bro data directly into S3 for storage or later analysis.
  • Gigamon is a poweful packet broker platform powering the security of many enterprises, and a popular choice for Corelight customers.
  • cPacket builds ultra-high performance packet brokers based on custom hardware for the most demanding environments.
  • Arista Networks was founded to pioneer and deliver software-driven cloud networking solutions for large data center storage and computing environments.
  • Founded by the team who originally created Apache Spark™, Databricks provides a Unified Analytics Platform for data science teams to collaborate with data engineering and lines of business to build data products.
  • The McAfee approach to providing orchestrated security has become the de facto standard for enterprise security, with solutions to protect the entire infrastructure: endpoints, network, web, mobile and embedded devices, and cloud.

Channel partner apps

Corelight Splunk® App

Check out the Corelight Splunk® App, pre-configured dashboards to get you up and running with Bro logs quickly. Once you're famliar with Bro data, you can customize them.

Corelight Elastic Connector

If you're an Elastic Stack user, you can export Bro logs into Logstash, or with the Corelight Connector you can ingest them directly into Elasticsearch.

Channel Partners

Corelight is building a global network of resellers, integrators and service providers.

If you’re interested in becoming a Corelight Partner, click here.

  • Adaptive Integration brings best of breed IT solutions to customers up and down the west coast, specializing in Application Delivery, Information Security, Operational Intelligence, and Software-Defined Networking.
  • Blue Ivy Partners is a service-disabled, veteran-owned small business that brings emerging technologies in security, big data, and networking to Federal leaders who require innovation to execute critical missions.
  • Carahsoft is the trusted government IT solutions provider, combining technological expertise with a thorough understanding of the government procurement process to help public sector organizations select and implement the best solution at the best possible value.
  • Clearshark is a small business focused on IT solutions for the Department of Defense and Intelligence Community.
  • FCN is a woman-owned, ISO 9001:2008 certified small business serving the Federal Government worldwide, that provides networking services, storage solutions, enterprise application development, personnel services, consultation services, and products.
  • Garland Technology is an industry leader delivering network products and solutions for enterprise, service providers, and government agencies worldwide. Since 2011, Garland Technology has developed the industry’s most reliable test access points (TAPs), enabling data centers to address IT challenges and gain complete network visibility.

  • Informatique Netherlands sells an extensive range of computers, notebooks, components, network equipment, peripherals, electronics, digital photography, DVD and games, to consumers, companies and governments.
  • Optiv is the largest cyber security solutions provider in North America, providing managed security services, incident response, risk and compliance, security consulting, training and support, integration and architecture services, and security technology.
  • Secure Data Solutions provides expertise and visibility in all aspects of network and cyber-security.
  • SHI is an $8.5 billion global provider of information technology products and services, from software and hardware procurement to deployment planning, configuration, data center optimization, IT asset management and cloud computing.
  • Teneo offers global organizations a powerful mix of next-generation network, storage and security technologies with specialist consultancy and “as-a-service” delivery models.
  • World Wide Technology (WWT) is a technology solution provider with more than $9 billion in annual revenue that provides innovative technology and supply chain solutions to large public and private organizations around the globe.