We use the solution for packet capture sampling. We offer it as part of our managed service. It's so we can identify east-west traffic on a customer's network.
Corelight is a network traffic analysis product. It is an extensive solution in Zeek and Suricata, virtual sensors, physical sensors, and cloud sensors.
What is NTA? Network Traffic Analysis is a type of security product that uses network communications to detect and investigate security threats and malicious or anomalous behaviors within the network. NTA uses a combination of behavioral modeling, machine learning, and rule-based detection to create a baseline reflecting what the organization’s normal network behavior looks like. They then continuously analyze flow records and/or network telemetry, and alert your security team to a...
We use the solution to monitor Internet traffic, the data center, and LAN traffic.
We use the solution for packet capture sampling. We offer it as part of our managed service. It's so we can identify east-west traffic on a customer's network.
We're not using it for our organization. We use it for our customers. We provide a service for incident response, and we use it through that service.
Corelight is a network traffic analysis product. It is an extensive solution in Zeek and Suricata, virtual sensors, physical sensors, and cloud sensors.
It is mainly being used for security purposes, and to increase cyber visibility.