Corelight Moves Toward Open NDR Platform with Powerful Suricata IDS/IPS Integration and Enhancements to Encrypted Traffic Collection

favicon_y19_32x32.icoCorelight Moves Toward Open NDR Platform with Powerful Suricata IDS/IPS Integration and Enhancements to Encrypted Traffic Collection>
Yahoo – Finance – Cision PR Newswire
SAN FRANCISCO, June 16, 2020 /PRNewswire/ –Â Corelight, provider of the most powerful network traffic analysis (NTA) solutions for cybersecurity, today announced its first major steps toward offering an open network detection and response (NDR) platform that will bring a proven open-source design pattern into one unified product for customers. Corelight has integrated two powerful open-source projects, Zeek and Suricata, into a seamless solution that enables rapid pivoting from Suricata alerts into the rich network metadata extracted by Zeek. Corelight’s new integrated Suricata log includes the Unique ID (UID) familiar to Zeek users, which means an analyst can pivot directly from a Suricata alert directly into any of the Zeek logs to leverage powerful evidence about email, web traffic, SSL, DHCP, DNS and dozens of other data types inherent to Zeek.
Link: https://finance.yahoo.com/news/corelight-moves-toward-open-ndr-130000376.html


Tags: