Catalogue d'intégrations
Profitez d'une plateforme cyber ouverte et flexible.
Toutes les intégrations
Merci ! Votre soumission a bien été reçue !
Oups ! Une erreur est survenue lors de l'envoi du formulaire.
0
résultats
Palo Alto Cortex XSOAR (CTI integration)
On Sekoia XDR, you need to create an API key with the following a specific permission.
F5 NGINX
NGINX is an HTTP and reverse proxy server, a mail proxy server, and a generic TCP/UDP proxy server.
Netskope
Netskope is a cybersecurity company that provides solutions to protect data in cloud apps and network security while applying zero trust principles.
Microsoft Sentinel (CTI integration)
Microsoft Sentinel is a cloud-native, security information and event management (SIEM) and security orchestration, automation, and response (SOAR) solution.
Google Cloud Audit Logs
Google Cloud Logging centralizes logs from Google Cloud products.
Cortex Analyzer
Collect Sekoia.io CTI feed in an existing Cortex instance self-managed, for any operational purpose such as CTI aggregation, dissemination, hunting...
Cloudflare HTTP requests
Cloudflare is a global network designed to make everything you connect to the Internet secure, private, fast, and reliable.
Censys
Censys is Cybersecurity company discovering and inventoring assets exposed on Internet.
One Identity Safeguard for Privileged Sessions (SPS)
One Identity Safeguard for Privileged Sessions (SPS) is a core module of the One Identity Safeguard suite that focuses on securing, monitoring, and auditing privileged access to critical systems.
CyberArk Vault
CyberArk Vault is a secure digital repository designed to protect and manage sensitive information, particularly privileged account credentials and secrets.
OpenCTI - Import external IoCs to Sekoia Defend
The OpenCTI Sekoia.io Intel Stream Connector allows organizations to automatically feed their Sekoia.io IOC collections with threat intelligence from OpenCTI.
Okta - Asset connector (Users)
Okta is a cloud-based identity and access management platform that provides secure authentication, authorization, and user management services.
Forcepoint Next-Generation Firewall
Forcepoint Next-Generation Firewall provide advanced threat protection and network security, utilizing a blend of cloud and on-premises security solutions.
Netskope Log Streaming - Transaction Events
Netskope Log Streaming allows you to access all Netskope-generated logs directly within your preferred cloud storage and further SIEM tools without additional infrastructure.
Microsoft Entra ID - GraphAPI
Microsoft Entra ID (Graph API) is a cloud-based Identity and Rights management service developed and managed by Microsoft Corp.
Crowdstrike Falcon Discover - Asset connector (Devices)
CrowdStrike Falcon is an Endpoint Detection and Response solution.
Tenable Vulnerability Management - Asset connector (Vulnerabilities)
Tenable.io is a cloud-based exposure and vulnerability management platform that provides continuous visibility across on-prem, cloud, container, and web application assets.
WatchGuard Endpoint Protection Detection and Response (EPDR)
WatchGuard EPDR (Endpoint Protection Detection and Response) is a robust cybersecurity solution designed to protect against advanced threats.
Olfeo SAAS
Olfeo SaaS is a suite of cybersecurity features for analyzing, filtering and securing your web flows.
Trellix ePO
Trellix ePO (ePolicy Orchestrator) is a centralized security management console that acts as the main dashboard for an organization's entire security network.
Jizo AI
Jizo AI / Sesame it NDR is a network observability platform that enables decision-makers to anticipate, identify and block cyber-attacks.
Check Point Harmony Mobile
Check Point Harmony Mobile is the industry's first unified security solution for users devices and access.
ArubaOS switch
Aruba OS-S is the operating system developed by Aruba Networks, designed for their networking devices and infrastructure.
Sophos Threat Analysis Center
The Sophos Threat Analysis Center (STAC), is a dedicated tool for research and analysis of cybersecurity threats.
Splunk (CTI integration)
Sekoia is providing an application for Splunk to detect threats in your logs based on Sekoia.io CTI feed.
Sekoia.io playbooks
An Action helps you execute specific tasks depending on your needs. There are 5 main types of actions in the playbooks.
Cisco Secure Web Appliance
The Cisco Web Security Appliance is a security device that analyzes HTTP(S) traffic with malware detection and reputation filtering.
Check Point NGFW
Check Point's Next Generation Firewalls (NGFWs) are trusted by customers for their highest security effectiveness and their ability to keep organizations protected from sophisticated fifth-generation cyber-attacks.
Vectra Respond UX
Vectra Respond UX delivers an intuitive, AI-driven interface for seamless threat investigation and response.