Corelight’s logs are the “Goldilocks” of network data: 100x richer than Netflow and 100x times smaller than PCAP. Covering 50+ data types and protocols and interlinked for lightning-fast search, these logs offer just the right amount of data for security tools and operators. Corelight’s fork, filter, and log data reduction features make it easy to manage log volumes for your SIEM without sacrificing critical network visibility.
Corelight Sensors come preloaded with the Core Collection—a curated set of Zeek / Bro packages for detection, data enrichment, and operations.
The Core Collection delivers actionable insights like cryptomining and port scanning detections. It also offers operational controls like tuning log export volumes to manage SIEM costs.
Corelight Announces Full Support for Elastic Common Schema for Simplified Search and Analytics Capabilities
Corelight Raises $50 Million Series C Led by Insight Partners and Accel
Corelight Expands Executive Team with New Vice President of Engineering and Vice President of People
Carahsoft Expands Availability of Network Security Solutions With Addition of Corelight to GSA Schedule and CDM Tools SIN
Corelight Launches New Corelight Cloud Sensor for Amazon Web Services, Ingests Traffic via New Amazon Virtual Private Cloud Traffic Mirroring
Corelight Enhances Detection Capability with Support for MITRE ATT&CK Package
Washington Post: The Cybersecurity 202: Disinformation threat pushes Doomsday Clock closer to midnight
Tahawultech: How partners and MSSPs can optimise Corelight’s offerings
Wired: Meet the Mad Scientist Who Wrote the Book on How to Hunt Hackers
Dark Reading: Intel Issues Fix for 'Plundervolt' SGX Flaw
SC Magazine UK: An attack or just a game?
Washington Post: The Cybersecurity 202: The Sony hack ushered in a dangerous era in cyberspace