Correlation, or a correlation engine is an engine which based on findings from different other engines (SAST, KICS, SCA, etc.) correlates between their findings in order to discover things which cannot be found by any engine alone. For example, a correlation between an IaC scan and a SAST scan to add context to the SAST scan and then mark it as “not-exploitable”
