The Corelight Cloud Sensor deploys in AWS and brings the powerful network security monitoring capabilities of Zeek/Bro to Amazon VPC traffic, ingested directly via Amazon VPC traffic mirroring or via 3rd party packet brokers.

fleet manager auth

Corelight Fleet Manager

Corelight Fleet Manager streamlines the deployment, configuration, and administration of Corelight Sensors across an organization from a single management dashboard with RBAC, customizable configuration templates, and sensor health and performance monitoring.

Download specifications
Select product

Just the right amount of data.

a screenshot of log rates graph

100x richer than Netflow / 100x smaller than PCAP / 50+ data types and protocols.

Corelight’s logs are the “Goldilocks” of network data: 100x richer than Netflow and 100x times smaller than PCAP. Covering 50+ data types and protocols and interlinked for lightning-fast search, these logs offer just the right amount of data for security tools and operators. Corelight’s fork, filter, and log data reduction features make it easy to manage log volumes for your SIEM without sacrificing critical network visibility.

Core Collection packages:

Corelight Sensors come preloaded with the Core Collection—a curated set of Zeek packages for detection, data enrichment, and operations.

The Core Collection offers out-of-the-box behavioral threat insights such as cryptomining, port scanning, and long connection detection, fingerprinting connections, and useful operational info such as notification of soon-to-expire SSL certificates.

bitcoin fingerprint depiction of data transfer

July 11, 2019

Carahsoft Expands Availability of Network Security Solutions With Addition of Corelight to GSA Schedule and CDM Tools SIN

Read press release.

Corelight Expands Executive Team with New Vice President of Engineering and Vice President of People

grey right arrow

Corelight Launches New Corelight Cloud Sensor for Amazon Web Services, Ingests Traffic via New Amazon Virtual Private Cloud Traffic Mirroring

grey right arrow

Corelight Enhances Detection Capability with Support for MITRE ATT&CK Package

grey right arrow

Corelight Launches Corelight Fleet Manager for Seamless, Multi-Sensor Support and Administration for Enterprises with Large Deployments

grey right arrow

Corelight Expands Global Sales and Operations Footprint to Europe

grey right arrow

Corelight and Exabeam Partner to Deliver Best of Breed Security Solution 
to Detect Advanced Threats and Accelerate Incident Response Time

grey right arrow

Verdict: A third of experts predict cybersecurity won’t need human decision-makers within a decade

grey right arrow

InformationSecurity Buzz: Attackers Use Backdoor And RAT Cocktail To Target The Balkans

grey right arrow

Washington Post: The Cybersecurity 202: Trump administration did right thing with cyberattack against Iran, say experts

grey right arrow

CRN: 2019 Partner Program Guide

grey right arrow

Security Boulevard: Real-Time Threat Detection Is the Key to Minimizing Fallout from Cyber Attacks

grey right arrow

Business Insider: VCs say these 19 startups for open-source software developers will blow up in 2019

grey right arrow

Splunk .conf19

October 21–24, 2019
Las Vegas, NV

Talk security with our team at Splunk .conf19.

Event details