EDR focuses on monitoring and preventing endpoint attacks and most organisations have an EDR solution in place.
NDR is vital as it creates full visibility across the network in real-time. Yet it remains largely unaddressed within businesses – typically due to the costs associated with analysing the enormous amount of data that NDR generates.
NDR data has to be sent to a SIEM but it makes no sense to pay twice for analysis (once in the NDR tool and again in the SIEM). To address this Corelight created Open NDR where NDR doesn’t need to do the analysis that the SIEM will do and where any SIEM technology can be used giving you the flex to change as your business evolves. Corelight is the gold standard NDR solution that we offer to our customers.