Security Operations for Threat Analysis
Security operations tools for SIEM, SOAR, threat hunting, incident response, and security operations center (SOC) management. Task: Threat Analysis
Browse 17 security tools
FEATURED
USE CASES
AI security analyst tool that guides teams through security investigations.
AI-driven autonomous security investigation agent by Legion Security.
Managed SOC service providing outsourced 24/7 security monitoring & incident response.
Federated SecOps platform for threat hunting across SIEMs, EDRs & data lakes.
Cloud-based bare-metal malware analysis lab for SOC, CERT & CIRT teams.
AI-driven threat detection & hunting platform with MITRE ATT&CK analytics
Natural language threat hunting and investigation platform for SOC teams
AI-driven deception tech creating cyber clones to trap attackers & detect threats
Cybersecurity platform with SOC, EDR, WAF, PAM, pentest & compliance modules
MDR service combining EDR and SIEM monitoring with threat analysis and response
Proactive threat hunting platform for detecting adversary infrastructure
Managed service providing expert threat detection, analysis, and response
Capa is a malware analysis tool that detects capabilities in executable files by analyzing PE, ELF, .NET modules, shellcode, and sandbox reports to identify potential malicious behaviors with ATT&CK framework mapping.
A tool that generates Yara rules for strings and their XOR encoded versions, as well as base64-encoded variations with different padding possibilities.
A community-driven informational repository providing resources and guidance for hunting adversaries in IT environments.
CAPA is a static analysis tool that detects and reports capabilities in executable files across multiple formats, mapping findings to MITRE ATT&CK tactics and techniques.