New Corelight App for Splunk: Making network-based threat hunting easier

By Ed Smith, Senior Product Marketing Manager, Corelight Want to use Zeek (formerly Bro) network data in Splunk ES, but don’t know how to start or where to look? Need to quickly narrow down Zeek logs from a mountain, to a hill, to a handful? Want to avoid hours of work mapping Corelight key-value pairs […]

Securing the Corelight Sensor

By Steve Smoot, VP Customer Success @ Corelight Have you ever considered how security tools can be a source of risk? They process untrusted data 24/7, have access to sensitive flows, and (like everything on the Internet) can be exploited if not patched regularly.   At Corelight, we want our products to be a source […]

What’s the riskiest part of your Bro deployment? It may be you.

What’s the riskiest part of your Bro deployment? Don’t overlook the obvious: the answer may be you. Corelight helps mitigate that risk by providing enterprise-grade solutions built on Bro. This post describes one example of how that can help you reduce your risk when deploying Bro.