Integrations

Anomali detects adversaries and tells you who they are. Organizations rely on the Anomali Threat Platform to detect threats, understand the adversary, and respond effectively. Anomali arms security teams with machine learning optimized threat intelligence and identifies hidden threats targeting their environments. Anomali enables organizations to collaborate and share threat information among trusted communities and is the most widely adopted platform for ISACs worldwide.

Cisco helps seize the opportunities of tomorrow by proving that amazing things can happen when you connect the unconnected. An integral part of our DNA is creating long-lasting customer partnerships, working together to identify our customers' needs and provide solutions that fuel their success. They have preserved this keen focus on solving business challenges since our founding in 1984. Len Bosack and wife Sandy Lerner, both working for Stanford University, wanted to email each other from their respective offices, but technological shortcomings did not allow such communication. A technology had to be invented to deal with disparate local area protocols, and as a result of solving their challenge, the multiprotocol router was born.

Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life. We help address the world's greatest security challenges with continuous innovation that seizes the latest breakthroughs in artificial intelligence, analytics, automation, and orchestration. By delivering an integrated platform and empowering a growing ecosystem of partners, we are at the forefront of protecting tens of thousands of organizations across clouds, networks, and mobile devices. Our vision is a world where each day is safer and more secure than the one before.

DomainTools helps security analysts turn threat data into threat intelligence. We take indicators from your network, including domains and IPs, and connect them with nearly every active domain on the Internet. Those connections inform risk assessments, help profile attackers, guide online fraud investigations, and map cyber activity to attacker infrastructure.

EclecticIQ enables intelligence-powered cybersecurity for government organizations and commercial enterprises. We develop analyst-centric products and services that align our clients’ cybersecurity focus with their threat reality. The result is intelligence-led security, improved detection and prevention, and cost-efficient security investments.

HYAS enables enterprises to detect and mitigate cyber risks before attacks happen and identify the adversaries behind them. HYAS Insight is a threat intelligence and attribution platform that improves visibility and productivity for analysts, researchers and investigators while vastly increasing the accuracy of their findings. HYAS Insight enables analysts to connect specific attack instances and campaigns to billions of historical and real-time indicators of compromise faster than ever before, bringing invaluable new intelligence and visibility to security efforts. Threat and fraud response teams use HYAS Insight to hunt, find, and identify adversaries, often down to their physical doorsteps.

King & Union is outsmarting cyber adversaries by uniting security professionals and amplifying the power of the cybersecurity analyst. The company’s flagship product, Avalon, is a threat analytics platform built with collaboration at its core. Avalon provides a dynamic workspace where security operators and analysts can lean in, cut through the noise, and reduce the time to address threats from hours to minutes. The platform provides access to truly unique and exclusive data sources, automating repetitive workflows, and leveraging real-time collaboration to deliver unparalleled insight and full context based on facts.

Maltego focuses on providing a library of transforms for discovery of data from open sources, and visualizing that information in a graph format, suitable for link analysis and data mining. The first commercial offering of Maltego became available in May 2008. Today Maltego has over 500 000 registered community users and a range of commercial clients in industries ranging from law enforcement and intelligence agencies to finance and banking.

See and stop threats before they cause harm, with a SIEM reinvented for a modern world. Microsoft Sentinel is your birds-eye view across the enterprise. Put the cloud and large-scale intelligence from decades of Microsoft security experience to work. Make your threat detection and response smarter and faster with artificial intelligence (AI). Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing costs as much as 48 percent compared to traditional SIEMs.

The MISP threat sharing platform developed and maintained by CIRCL — Computer Incident Response Center Luxembourg – is a free and open source software, helping information sharing of threat intelligence including cybersecurity indicators.

Recorded Future delivers the only complete threat intelligence solution powered by patented machine learning to lower risk. They empower organizations to reveal unknown threats before they impact business, and enable teams to respond to alerts 10 times faster. To supercharge the efforts of security teams, their technology automatically collects and analyzes intelligence from technical, open, and dark web sources and aggregates customer-proprietary data. Recorded Future delivers more context than threat feeds, updates in real time so intelligence stays relevant, and centralizes information ready for human analysis, collaboration, and integration with security technologies. 91 percent of the Fortune 100 use Recorded Future.

Farsight DNSDB and IBM Security SOAR enable security analysts to automatically contextualize incidents and add to their existing workflows to measurably reduce the number of unknown domain names, IP addresses, name servers, mail exchanger records and other DNS-related assets, in seconds.

Splunk is the world’s first Data-to-Everything Platform. Now organizations no longer need to worry about where their data is coming from, and they are free to focus on the business outcomes that data can deliver. Innovators in IT, Security, IoT and business operations can now get a complete view of their business in real time, turn data into business outcomes, and embrace technologies that prepare them for a data-driven future.

ThreatConnect believes that intelligence should flow through every aspect of a security program. To enable constant, sound decision-making, analytics need to be constantly evaluated. Their founders started this company with the mission of making security analysts more efficient, while providing real-time insights to security leaders to make business decisions.

Whether it is the intelligence and analytics they put at your fingertips or the way they simplify and automate workflows, every member of your security team, including leadership, benefits from using the same platform. Then, they put the ThreatConnect community, service, and support behind you to ensure success.

ThreatQuotient™ understands that the foundation of intelligence-driven security is people. The company’s open and extensible threat intelligence platform, ThreatQ™, empowers security teams with the context, customization and prioritization needed to make better decisions, accelerate detection and response and advance team collaboration. Leading global companies use ThreatQuotient solutions as the cornerstone of their security operations and threat management system.

TruSTAR is an intelligence platform that helps enterprises leverage multiple sources of intelligence and fuse it with their own event data to prioritize and enrich investigations. Built for security and fraud teams, TruSTAR uses machine learning and automation to operationalize data throughout an analyst's workflow, freeing up time for higher-priority events. The most valuable security data is often locked inside silos in and across companies. TruSTAR breaks down these silos with its Enclave knowledge management architecture. Enclaves give complex teams customization, integration, and granular access controls that enable collaboration. TruSTAR powers many of the largest Finance, Retail, Healthcare, Aerospace, and IT companies as well as many of the U.S.'s largest ISACs and ISAOs.