Our network detection and response (NDR) technology helps defend some of the world's most sensitive, mission-critical organisations.

About Company


Corelight is a cyber security vendor that provides an open network and detection platform. This is based on the open source Zeek tool, as well as Suricata IDS and SmartPCAP for efficient and highly flexible network traffic capture (packet captures). Zeek data has become the "gold standard" for incident response, threat hunting and forensics in large enterprises and government agencies worldwide. Corelight offers a family of network sensors - both physical and virtual, at any scale - that simplify the use of open source Zeek by adding integrations and features that large organizations need.

Most recently, the SaaS-based Corelight Investigator was also launched in EMEA in August 2022. Investigator is a network detection and response (NDR) solution that combines the comprehensive network evidence of Corelight sensors with machine learning (ML) and advanced analytics in a fast, intuitive search platform that accelerates security operations and consolidates legacy toolsets.
Investigator is easy to deploy, highly scalable, and available 24/7 globally to your Security Operations Center (SOC). In addition, the Corelight Labs team continuously develops new ML-based threat detections and automatically delivers them to Investigator, giving users instant access to the latest analytics content.

Why Corelight and NEXTGEN?

With a highly specialised team - including Australian ex-military cyber security professionals - the NEXTGEN Cyber team alongside Corelight helps you navigate the evolving and complex IT security landscape.

Together, NEXTGEN Cyber and Corelight help partners grow their business by enabling them to provide end-customers with a range of security solutions and better-together plays, including:

  • Attack Surface Vulnerability

  • Threat Management

  • Firewall Optimisation

  • Change Management

  • End-to-end Network Assurance

  • Integrated Security Management

  • Network Security and Visibility

  • Advanced Threat Detection and Ransomware Containment

  • Zero Trust Network Access (ZTNA)

  • Incident Response



  • Investigator
  • Zeek
  • Suricata IDS
  • Smart PCAP
  • Compare To Zeek


  • Appliance Sensors
  • Cloud Sensors
  • Software Sensor
  • Virtual Sensors
  • Fleet Manager


  • C2 Collection
  • Encrypted Traffic Collection
  • Core Collection

Become A Partner With
Corelight Today

Mask Group 305