Integrations catalog
Take advantage of an open and flexible cyber platform.
All integrations
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
0
results
Vectra Cognito Detect
Vectra provides AI-powered incident detection and resolution support for native and hybrid clouds.
Microsoft Always On VPN
This guide will explain how to forward Network Policy Server (NPS) logs to Sekoia.io.
Trend Micro Cloud One / Deep Security
Trend Micro Deep Security / Workload Security detect malware, vulnerabilities and some other threats.
TAXII
The Intelligence Center also exposes a TAXII 2.1 server that conforms to the specification.
The Hive playbooks
TheHive is a scalable, open source and free Security Incident Response Platform.
Vade for M365
Vade for M365 offers AI-based protection against dynamic, email-borne cyberattacks targeting Microsoft 365.
Unbound
This setup guide will show you how to forward logs produced by your Unbound server to Sekoia.io by means of an rsyslog transport channel.
TEHTRIS EDR
TEHTRIS EDR is a security product to monitor, detect and mitigate threats on endpoints.
Suricata / Stamus Networks
Suricata is a free and open source, mature, fast and robust network threat detection engine.
Stormshield SNS
Stormshield Network Security firewalls provides comprehensive security and high performance network protection.
Symantec / Broadcom Endpoint
Symantec Endpoint Protection is a client-server solution that protects laptops, desktops, and servers in your network against malware, risks, and vulnerabilities.
STIX
STIX is a cybersecurity serialization format used to represent cyber threat intelligence, directed by the OASIS Cyber Threat Intelligence Technical Committee.
Splunk (CTI integration)
Sekoia is providing an application for Splunk to detect threats in your logs based on Sekoia.io CTI feed.
Sophos Firewall
Sophos firewalls offer an integrated software solution that provides superior performance in an all-in-one firewall.
Slack playbooks
This use case describes how to send a notification to a third party system like Slack or Microsoft Teams using webhooks and a playbook.
ServiceNow playbooks
ServiceNow is an IT company allowing creating workflow to empower employees productivity and to improve customers experience.
Sekoia.io Activity Logs
Sekoia activity logs collect operations done, on Sekoia.io, by the members of the community. It helps to monitor activities and detect malicious behavior.
RSS playbooks
RSS Playbooks is a strategic framework used primarily by cybersecurity teams to automate and standardize their response to security threats.
RiskIQ / Microsoft MDTI
RiskIQ is a cyber security company providing software as a service to detect phishing, fraud, malware, and other online security threats.
Sekoia.io playbooks
An Action helps you execute specific tasks depending on your needs. There are 5 main types of actions in the playbooks.