An Intellyx Brain Candy Brief

Bro is an open source network monitoring framework that originated in the public-sector worlds of academia, national research laboratories, and various government agencies, and to this day is still best known within these communities.

Bro gives both ops and SecOps personnel the ability to inspect and glean information from network traffic independent of any particular protocol or detection approach.

Bro is especially useful for uncovering the tracks of bad actors as they seek to infiltrate organizations with malware or execute other illicit actions on the Cyber Kill Chain, like lateral movement or establishing command and control links.

Corelight hopes to bring Bro to a broader commercial audience. Its first commercial product: a precisely configured hardware appliance that gives customers a rapidly deployable, high performance Bro capability. An all-software virtual appliance alternative is in the works.

Copyright © Intellyx LLC. Intellyx publishes the Agile Digital Transformation Roadmap poster, advises companies on their digital transformation initiatives, and helps vendors communicate their agility stories. As of the time of writing, none of the organizations mentioned in this article are Intellyx customers. To be considered for a Brain Candy article, email us at

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Subscribe to our Cortex & Brain Candy Newsletters!

Thank you for reading Intellyx thought leadership!

Please sign up for our biweekly Cortex and Brain Candy newsletters.

The Cortex features thought leadership on Agile Digital Transformation topics, and Brain Candy highlights disruptive vendors in enterprise IT.

We won't spam you and you can unsubscribe at any time.