Corelight OverviewUNIXBusinessApplication

Corelight is the #9 ranked solution in our list of Network Traffic Analysis tools. It is most often compared to Darktrace: Corelight vs Darktrace

What is Corelight?

Corelight is the most powerful network visibility solution for information security professionals. We provide real-time data that organizations use to understand, detect, and prevent cyber attacks. Our solution is built on Zeek, the powerful and widely-used open source monitoring framework.

Buyer's Guide

Download the Network Traffic Analysis (NTA) Buyer's Guide including reviews and more. Updated: September 2021

Corelight Customers

Education First

Corelight Video

Pricing Advice

What users are saying about Corelight pricing:
  • "It's a yearly fee and depends on what you are looking for."

Filter Reviews

Filter by:
Filter Reviews
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
José Luis Pozo
Pre Sales Technician at DotForce
Real User
Top 5
A basic component for enriching cyber security analysis

What is our primary use case?

Corelight is a network traffic analysis product. It is an enterprise solution of Zeek and Suricata. It is deployed mostly with physical sensors, although cloud, virtual and software sensors are available as well. We deploy it for our customers, and MSSP.

Pros and Cons

  • "Corelight is easy to use."
  • "Machine learning could be a good improvement, but it's very costly."

What other advice do I have?

It depends on the kind of customer, but I would recommend it for most companies that had a SOC. It is instrumental. I would rate this product a 10 out of 10. Corelight, including Zeek (former BRO) and Suricata, is well known by most cyber security analysts. For that reason, we have seen that people liked Corelight and Zeek. It adapts perfectly to the day to day work for people in security analytics.
Olivier Vaugrenard
Chief Executive Officer at NetMetrix
Reseller
Top 10
Easy to install, good technical support that is responsive, and the IDS works well

What is our primary use case?

It is mainly being used for security purposes, and to increase cyber visibility.

Pros and Cons

  • "The most valuable feature is the embedded IDS from Suricata."
  • "In the next release, building a graphical user interface would be helpful."

What other advice do I have?

I don't have enough visibility in the competition in order to give you an accurate response to what could be improved. We are still new to this solution we don't know yet. I would rate this solution an eight out of ten.