Endace and Corelight step in to enhance incident response workflows>
Security Brief – Asia – Catherine Knowles
When integrated with EndaceProbe Analytics Platform, these logs include Pivot-to-Vision links which connect SIEM events to the related packet data recorded by the EndaceProbes on the network.

Security analysts can quickly investigate incidents from their SIEM using a single click drill-down to analyse recorded network history and investigate a threat events packet data in granular detail.

This allows joint customers to simplify deployments and extend Corelight sensor coverage by deploying sensors wherever they have an EndaceProbe deployed, the companies state.
Link: https://securitybrief.co.nz/story/endace-and-corelight-step-in-to-enhance-incident-response-workflows