Logo of Corelight

Corelight

Website LinkedIn Twitter

Last updated on

Company health

Employee growth
23% increase in the last year
Web traffic
2% increase in the last quarter
Financing
November 2023 - $309M

Ratings

G2
4.7/5
(20)
Glassdoor
4.3/5
(42)

Corelight description

Corelight is a cybersecurity platform that helps you detect and respond to threats on your network. It provides detailed information about the activity happening on your network, making it easier to spot and stop attacks. What sets Corelight apart is its focus on providing clear evidence of what happened, rather than just alerts. This helps your IT team investigate and resolve incidents more efficiently. Corelight works well with other security tools you may already use, improving their effectiveness. It's available as a physical or virtual appliance, software, or cloud service.

Who is Corelight best for

We find that Corelight is ideal for medium to large businesses that have advanced security operations centers. Users highlight Corelight's excellent threat detection and detailed information. Its open-source nature allows for creating custom Zeek packages. Keep in mind that some users find it complex to set up and manage and that the cost can be high, especially when integrated with SIEMs.

  • Perfect for mid-sized to large companies (100+ employees) seeking robust network security and detailed threat intelligence.

  • Great for industries like healthcare, finance, and IT that need strong network security and quick incident response.

Corelight features

Supported

Network Visibility: Provides comprehensive network visibility, allowing security teams to monitor and analyze network traffic for threats.

Supported

Evidence-based Security: Offers detailed evidence of security incidents rather than just alerts, enabling more efficient investigation and response.

Supported

Security Tool Integration: Integrates with existing security tools to enhance their effectiveness and improve overall security posture.

Supported

Threat Hunting: Provides threat hunting capabilities to proactively search for and identify hidden threats on the network.

Supported

Network Detection and Response (NDR): Includes network detection and response (NDR) capabilities to detect, analyze, and respond to network threats effectively.

Supported

Faster Incident Investigation: Facilitates faster incident investigation and reduces mean time to resolution (MTTR) with detailed evidence and analysis.

Supported

Flexible Deployment Options: Supports various deployment options including physical and virtual appliances, software, and cloud services.

Qualities

We evaluate the sentiment that users express about non-functional aspects of the software

Ease of Use

Strongly positive
+1

Reliability and Performance

Strongly positive
+1

Corelight pricing

The commentary is based on 4 reviews from Corelight G2 reviews.

We find that Corelight's pricing is generally considered fair for the value it provides, especially for larger organizations. However, some users express concern about potential future price increases and the cost of SIEM ingestion. Less advanced SOCs may find the overall cost higher due to the learning curve and potential need for additional tools.

Users sentiment

Neutral
+0

See the Corelight pricing page.

Corelight alternatives

  • Logo of Bitdefender Network Traffic Security Analytics
    Bitdefender Network Traffic Security Analytics
    Spots hidden network threats, managed 24/7 for peace of mind.
    Read more
  • Logo of Darktrace/Detect
    Darktrace/Detect
    Finds hidden cyber threats with AI, protecting your business.
    Read more
  • Logo of Sensato Nightingale
    Sensato Nightingale
    Automated cybersecurity platform simplifies threat detection and response.
    Read more
  • Logo of Kaspersky Anti Targeted Attack Platform
    Kaspersky Anti Targeted Attack Platform
    Stops advanced cyberattacks before they disrupt your business.
    Read more
  • Logo of OnSecurity
    OnSecurity
    Finds and fixes security holes, keeping your business safe.
    Read more
  • Logo of InsightIDR
    InsightIDR
    Cloud threat detection and response built for speed and scale.
    Read more

Corelight FAQ

  • What is Corelight and what does Corelight do?

    We find that Corelight is a powerful cybersecurity platform specializing in network detection and response. It offers deep network visibility, helps investigate incidents effectively, and integrates with existing security tools. In our experience, this makes it a valuable asset for threat hunting and faster incident response.

  • How does Corelight integrate with other tools?

    We find that Corelight integrates with existing security tools to enhance their effectiveness and improve overall security posture. It works well with other tools you might already have.

  • What the main competitors of Corelight?

    We find Corelight's main competitors include Bitdefender Network Traffic Security Analytics, Darktrace/Detect, Sensato Nightingale, Kaspersky Anti Targeted Attack Platform, OnSecurity, and InsightIDR. They offer similar network security and threat detection capabilities.

  • Is Corelight legit?

    Yes, Corelight is a legitimate and well-regarded cybersecurity platform. We find that users praise its threat detection and detailed network information. It integrates well with existing security tools and offers flexible deployment options.

  • How much does Corelight cost?

    We couldn't find any pricing details for Corelight. Contact their sales team directly to get a quote tailored to your specific needs.

  • Is Corelight customer service good?

    We find that Corelight's customer service is generally considered excellent. Users praise the helpful and efficient support team, highlighting their prompt responses and effective troubleshooting. The readily available technical assistance and proactive support contribute to a positive customer experience.

Reviewed by

MK
Michal Kaczor
CEO at Gralio

Michal has worked at startups for many years and writes about topics relating to software selection and IT management. As a former consultant for Bain, a business advisory company, he also knows how to understand needs of any business and find solutions to its problems.

TT
Tymon Terlikiewicz
CTO at Gralio

Tymon is a seasoned CTO who loves finding the perfect tools for any task. He recently headed up the tech department at Batmaid, a well-known Swiss company, where he managed about 60 software purchases, including CX, HR, Payroll, Marketing automation and various developer tools.

NEW: Introducing Gralio Screen Buddy

An AI tool that observes your work, finds inefficiencies, and suggests smarter ways to do things. Maybe you can use your tools better, automate tasks, or switch software.

For Individuals
Streamline your daily tasks, get helpful AI tips, and find the right tools for your workflow.
For Businesses
See how your team really works, uncover automation opportunities, and get software recommendations tailored to your processes.