Artificial Intelligence | News | Insights | AiThority
[bsfp-cryptocurrency style=”widget-18″ align=”marquee” columns=”6″ coins=”selected” coins-count=”6″ coins-selected=”BTC,ETH,XRP,LTC,EOS,ADA,XLM,NEO,LTC,EOS,XEM,DASH,USDT,BNB,QTUM,XVG,ONT,ZEC,STEEM” currency=”USD” title=”Cryptocurrency Widget” show_title=”0″ icon=”” scheme=”light” bs-show-desktop=”1″ bs-show-tablet=”1″ bs-show-phone=”1″ custom-css-class=”” custom-id=”” css=”.vc_custom_1523079266073{margin-bottom: 0px !important;padding-top: 0px !important;padding-bottom: 0px !important;}”]

Endace and Corelight Partnership Delivers Comprehensive Network Insights

Integration allows SecOps teams to respond with better speed and accuracy

Endace announced a strategic partnership with Corelight, provider of the industry’s first open network detection and response (NDR) platform, that will provide security teams with rich insights and detailed forensic data that accelerate the process of detecting, analyzing and responding to network security threats.

Corelight sensors produce rich, protocol-specific logs for incident response and threat-hunting workflows within any SIEM. When integrated with EndaceProbe Analytics Platforms these logs include “Pivot-to-Vision” links which connect SIEM events to the related packet data recorded by the EndaceProbes on the network. Security analysts can quickly investigate incidents from their SIEM using a single click drill-down to analyze recorded network history and investigate a threat event’s packet data in granular detail.

Recommended AI News: Unbxd Collaborates With Google Cloud to Offer AI-Powered Commerce Search on Google Cloud for Retail Store

Additionally, Corelight’s Software Sensor can be hosted directly on the EndaceProbe platform in Application Dock, the EndaceProbe’s powerful analytics hosting environment. This allows joint customers to simplify deployments and extend Corelight sensor coverage by deploying sensors wherever they have an EndaceProbe deployed. New Corelight virtual sensors can be deployed at any time in minutes on EndaceProbe, providing much needed agility in the fight to defend the network.

Related Posts
1 of 7,116

“Security analysts are in desperate need of faster, more accurate incident response workflows. They have a tough job closing out security incidents when evidence such as system logs may have been modified or wiped by an attacker. However, what attackers can’t change is the packet record of what happened on the network and the vast majority of attacks happen across the network,” said Cary Wright, Endace VP of Product Management.

Recommended AI News: Boston Startup Resultably Helps Businesses Understand and Predict Workforce Efficiency

“The combination of rich Zeek logs from Corelight sensors and Endace always-on packet capture provides the critical evidence needed to more quickly identify potential threats and preserve all the network evidence for fast, accurate security investigations,” Wright says.

“The power of this integration is having one click access to all this network data right from within the SIEM,” said Vijit Nair, senior director of product management at Corelight. “Security teams need fast access to rock-solid evidence so they can remediate threats before they progress to more serious stages and analysts don’t have time to learn lots of different tools. Having both Corelight logs and Endace packet data accessible right from within the SIEM means all the data needed to identify, investigate and remediate threats is right at their fingertips.”

Recommended AI News: BitBoss Announces Integration With Dotwallet to Offer Native Igaming Experience Using Bitcoin SV Blockchain

Leave A Reply

Your email address will not be published.