Integrations & Connectors
Native connectors for leading security platforms. Seamless data flow and automated response across your stack.
Native Integrations
Full bi-directional integrations with leading security platforms.
Elastic SIEM
AvailableFull bi-directional integration for log ingestion, detection deployment, and alert management.
Splunk
AvailableLog ingestion, correlation searches, and automated response actions via Splunk Enterprise Security.
Microsoft Sentinel
AvailableCloud-native SIEM integration with KQL-based detections and automated incident response.
CrowdStrike Falcon
AvailableEndpoint telemetry, IOC management, and automated containment actions.
Microsoft Defender
AvailableEndpoint detection and response with automated investigation and threat remediation.
IBM QRadar
AvailableLog source management, offense correlation, and custom rule deployment.
New connectors added regularly.
Custom integrations available via API.
Standards & Frameworks
Built on industry standards for maximum interoperability.
MITRE ATT&CK
Full framework mapping for techniques, tactics, and procedures.
Sigma
Native Sigma rule generation, conversion, and deployment.
YARA
Automated YARA rule creation and malware classification.
STIX/TAXII
Standardized threat intelligence sharing and ingestion.
Need a Custom Integration?
Our API framework makes it easy to connect any security tool.
Talk to Engineering