Cisco-backed startup Corelight raises $150M to expand network security services

Today, Zeek is considered the gold standard for network security monitoring and network traffic analysis. It’s used by thousands of large organizations, from U.S. government agencies such as the U.S. Department of Energy to research universities like Indiana University, Ohio State, and Stanford, according to Parthasarathi. 

Zeek is part of Corelight’s open network detection and response (NDR) platform, which has as its goal to help enterprises bolster cybersecurity attack detection coverage, speed incident response, and offer overall network visibility, Parthasarathi stated.  

The architecture also utilizes another open source package – Suricata – to further its network analysis and threat detection abilities.

It is information and data gathered from systems such as Zeek, which has been evolving publicly for over 25 years, that lets the large language models training Corelight’s AI technology invaluable.

“On one hand, it provides out-of-the-box support for an abundance of practical LLM use cases that are natively available in products such as Investigator—a SaaS version of Corelight’s platform. These include using LLMs to translate alerts into English, give stock investigation guidance, and so on,” Parthasarathi stated.  

“More importantly, the company is jointly supporting the development of multiple security-centric LLMs in an effort to drive compatibility across the ecosystem so that customers and partners have choice and flexibility in their still-evolving LLM strategies,” Parthasarathi stated.