Corelight Delivers Integration with Elasticsearch for More Powerful Incident Response and Threat Hunting with the Elastic Stack


SAN FRANCISCO, Feb. 21, 2018 (GLOBE NEWSWIRE) -- Corelight, provider of the most powerful network visibility solution for cybersecurity, today announced product integration with Elasticsearch, the world’s most popular distributed and real time search engine. Now organizations can import Corelight network logs directly to Elasticsearch, which makes the Elastic Stack a much more powerful platform for incident response and threat hunting. Corelight will showcase the Elasticsearch integration at Elastic{ON} in booth B2 and during a presentation at the conference’s Spotlight Theater at 10:00 a.m. PT on Wednesday, February 28.

“As a network traffic analysis solution, Corelight is focused on turning high-volume network traffic into high-fidelity data for incident response, intrusion detection, and forensics,” said Vince Stoffer, Director of Customer Solutions at Corelight. “Making it easy for companies adopting Elasticsearch to ingest Bro logs is really important. Whether they ingest data into Elasticsearch directly, or into Logstash, the depth and granularity that Bro provides about network traffic can be a real game changer for cybersecurity forensics.”

The integration is part of Corelight’s latest software release, version 1.13 and delivers native integration with the Elasticsearch API, offering a streamlined Corelight log export option that gives customers the choice to export directly to Elasticsearch or into Logstash.

This follows last month’s news that Corelight reported strong growth in 2017 with 10 of the Fortune 200 as customers and was included as a Vendor to Watch in Gartner’s January 2018 Magic Quadrant for Intrusion Detection and Prevention: https://www.globenewswire.com/news-release/2018/01/22/1298650/0/en/Corelight-Reports-Strong-Growth-in-2017-Listed-as-a-Vendor-to-Watch-in-Gartner-s-January-2018-Magic-Quadrant-for-Intrusion-Detection-and-Prevention-Systems.html.

About Corelight
Corelight delivers the most powerful network visibility solutions for information security professionals, helping them understand network traffic to detect, stop and remediate cyber attacks. Corelight built its first solution incorporating Bro, the powerful and widely-used open source framework that provides wide-ranging real-time understanding of the traffic on the network. Its first product, the Corelight Sensor, is an appliance that provides detailed information organized in ways to help users understand network traffic deeply and take action to stop and prevent cyber attacks. The company has been supported by an SBIR grant, and the Bro project was initially funded by the National Science Foundation (NSF) at the International Computer Science Institute (ICSI). Corelight is based in San Francisco, CA. For more information, visit https://www.corelight.com or follow @corelight_inc.

[Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.]

Media and Analyst Contact:
Amber Rowland
amber@therowlandagency.com
+1-650-814-4560