

When: October 9 at 10 AM PT | 1 PM ET | October 10 at 10 AM BST
Join Corelight and GigaOm to discuss key trends shaping the future of NDR.
At Corelight, we are thrilled to be recognized as a Leader and an Outperformer in the most recent GigaOm Radar for Network Detection and Response (NDR). This recognition is based on our scores across the decision criteria evaluated as well as the pace of innovation seen from Corelight compared to the industry in general. This is your opportunity to learn directly from industry experts about the latest advancements in NDR and how to leverage them for robust cybersecurity.
Why Attend?
In today's complex threat landscape, traditional security measures are no longer enough. NDR provides the crucial insights you need to detect, investigate, and respond to advanced threats that bypass other defenses. This webinar will provide actionable strategies and a deep dive into how Corelight’s Open NDR can help you close cases faster, with more accuracy and greater efficiency.
What you’ll learn:
In this webinar, we will be joined by GigaOm Field CTO Chris Ray to talk about current requirements and future trends that buyers need to consider when choosing an NDR solution. Chris will be joined by Corelight’s Ashish Malpani for a deeper dive into Corelight OpenNDR with a focus on capabilities such as:
• Deep packet inspection: Deep packet inspection (DPI) allows NDR solutions to analyze both packet headers and payloads, providing granular visibility into network traffic. This capability is crucial for detecting sophisticated threats hidden within seemingly benign traffic.
• Encrypted traffic analysis: Encrypted traffic analysis allows NDR solutions to detect threats within encrypted network traffic without decrypting it. This capability is essential for maintaining data privacy while still identifying potential security risks in an increasingly encrypted network landscape.
• Historical forensics: Historical forensics capabilities enable NDR solutions to store and analyze historical network data for post-incident investigation and threat hunting. This feature is crucial for understanding the full scope of security incidents and identifying long-term patterns of malicious activity.
The discussion will also take a deeper look at key purchase considerations and the use cases that NDR can address. This session will also be an opportunity for you to get your pressing questions answered by a GigaOm analyst and Corelight’s security specialists.
Corelight's platform identifies sophisticated attacks that evade endpoint detection, provides comprehensive visibility from cloud to edge environments, and enables deep forensic investigations with its ability to store network evidence for up to seven years while maintaining query performance.
- Ivan McPhee, GigaOm
Why our customers choose Corelight
The GigaOm Radar evaluates vendors based on several criteria, including technical capabilities and business impact. Corelight's strengths in the Innovation/Platform Play quadrant of the NDR Radar are reflected in several key capabilities:
- Deep Packet Inspection: Corelight Open NDR utilizes Zeek and Suricata to transform raw packet data into structured network evidence, exposing subtle indicators of compromise such as command-and-control channels.
- Encrypted Traffic Analysis: Employs JA3 and JA3S TLS fingerprinting to detect encrypted threats without decryption, with integration options for selective decryption through partner products.
- Historical Forensics: Innovative SmartPCAP technology captures investigation-relevant packets for extended forensic windows, supporting up to seven years of historical data storage and fast querying.
Corelight natively integrates with your existing solution

.png?width=250&name=Mandiant_lockup_H_rgb%20(1).png)




Corelight provides security teams with network evidence so they can protect the world's most critical organizations and companies.