%term

Exposing Salt Typhoon on the network using the PEAK Threat Hunting Framework

Oct 20, 2025 By David Burkett In Corelight

How do you find an adversary who lives where you can't easily look? A recent CISA advisory on the state-sponsored actor "Salt Typhoon" highlights this exact challenge. These actors aren't just breaking in; they're moving in. They persist on network edge devices like routers and firewalls—critical infrastructure that often sits outside the view of traditional endpoint security. From this vantage point, they capture traffic, steal credentials, and plan their next move.

Read Post

Corelight

Read more about Exposing Salt Typhoon on the network using the PEAK Threat Hunting Framework

Corelight Named a Leader in NAV Solutions by Forrester

Oct 15, 2025 By Ashish Malpani In Corelight

We are proud to announce that Corelight has been recognized as a Leader in The Forrester Wave: Network Analysis And Visibility (NAV) Solutions, Q4 2025. We believe this recognition reflects our focused innovation and the expanding capabilities of our Open NDR platform.

Read Post

Corelight

Read more about Corelight Named a Leader in NAV Solutions by Forrester

Corelight reconnects visibility across the entire AWS cloud environment

Oct 14, 2025 By Muzzafer Pasha In Corelight

Today, we are pleased to announce the launch of Corelight’s new AWS Flow Monitoring Sensor, a new addition to Corelight’s flow monitoring capabilities. This new sensor was purpose-built to address the longstanding visibility challenges that have frustrated security teams running their most critical workloads in AWS. AWS provides one of the world’s most popular cloud platforms, hosting applications and sensitive data for some of the largest organizations.

Read Post

Corelight

Read more about Corelight reconnects visibility across the entire AWS cloud environment

It all comes down to the data: unlocking the potential of AI in the SOC

Oct 3, 2025 By Gregory Bell In Corelight

This is a fascinating moment. Whether you think Generative AI is over-hyped or not, our technology landscape has been shocked by capabilities we couldn’t imagine a few years ago. And I do mean shocked. What’s underway is too rapid and uncanny to describe in terms of evolution. We are living through something different.

Read Post

Corelight

Read more about It all comes down to the data: unlocking the potential of AI in the SOC

Detecting EDR Evasion with Corelight Open NDR

Sep 29, 2025 By Corelight In Corelight

This video walks through how Corelight Open NDR helps security teams detect EDR evasion by delivering complete visibility across all network assets. Using a real-world scenario, the video demonstrates how anomaly detection uncovers suspicious activity, mapping events directly to MITRE ATT&CK techniques. The investigation process highlights the detection of an anomalous user agent, which ultimately reveals a Linux privilege escalation toolkit.

View Video

Corelight

Read more about Detecting EDR Evasion with Corelight Open NDR

Black Hat USA 2025: A grab bag and a half

Sep 29, 2025 By Mark Overholser In Corelight

I’ve been to several Black Hat conferences (seven in the last two and a half years, alone) to be a threat hunter in the Network Operations Center (NOC), so I didn’t expect to be surprised by much at this year’s Black Hat USA.

Read Post

Corelight

Read more about Black Hat USA 2025: A grab bag and a half

Hunting GTPDOOR: The case of the "Black Hat Positive"

Sep 29, 2025 By Ben Reardon In Corelight

Ben Reardon, Lead Researcher Corelight Labs / NOC crew I'm a researcher on the Labs team at Corelight and, for me, working in the Black Hat Network Operations Center (NOC) at the USA show in Las Vegas is up there as one of the most interesting and intense activities on the calendar.

Read Post

Corelight

Read more about Hunting GTPDOOR: The case of the "Black Hat Positive"

The Network Detection & Response (NDR) platform trusted by top cybersecurity teams

Sep 19, 2025 By Corelight In Corelight

Proven in the world’s most demanding environments, Corelight’s Open NDR Platform illuminates network blind spots and uncovers hidden threats to disrupt attacks before they escalate. Get unified visibility, multi-layered AI-driven threat detections, AI-powered triage workflows, and industry-leading forensic capabilities in one unified platform. Elite defense, now within reach of the enterprise.

View Video

Corelight

Read more about The Network Detection & Response (NDR) platform trusted by top cybersecurity teams

How to level up your technical documentation with Microsoft's style guide and LLMs

Sep 16, 2025 By Keith J. Jones In Corelight

How AI can transform even Microsoft's own documentation to meet its style standards.

Read Post

Corelight

Read more about How to level up your technical documentation with Microsoft's style guide and LLMs

How to enable Corelight's Anomaly Detection

Sep 5, 2025 By Corelight In Corelight

In this video, we walk through the steps to enable Corelight's Anomaly Detection engine on a Corelight Sensor, and show what a sensor looks like after the baselining (learning) period has completed.

View Video

Corelight

Read more about How to enable Corelight's Anomaly Detection

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Exposing Salt Typhoon on the network using the PEAK Threat Hunting Framework

Corelight Named a Leader in NAV Solutions by Forrester

Corelight reconnects visibility across the entire AWS cloud environment

It all comes down to the data: unlocking the potential of AI in the SOC

Detecting EDR Evasion with Corelight Open NDR

Black Hat USA 2025: A grab bag and a half

Hunting GTPDOOR: The case of the "Black Hat Positive"

The Network Detection & Response (NDR) platform trusted by top cybersecurity teams

How to level up your technical documentation with Microsoft's style guide and LLMs

How to enable Corelight's Anomaly Detection

Monthly Archive

Follow Us