Security Operations

Exabeam Security Operations Platform is a cloud-native security platform that applies AI and automation to security operations workflows for threat detection, investigation, and response.

AI-driven SOC platform with unified data lake, threat intel, and automation

Managed threat hunting service detecting evasive threats in network environments

AI security solution protecting models, agents, data, and prompts

AI-powered security assistant for autonomous threat detection and response

Security operations platform combining SIEM, UEBA, and SOAR capabilities

AI-powered security operations platform for automated threat analysis and response

GenAI-powered malware analysis tool for unknown & zero-day threats

Continuous security control validation platform using adversary emulation

A CLI program that simplifies cybersecurity solution management through automated deployment, configuration, monitoring, and lifecycle operations across multiple hosts.

A Splunk application that processes honeypot data from hpfeeds channels to generate clustered meta-events and visualizations for security analysis.

Cloud Sniper is a centralized cloud security operations platform that provides incident response, threat correlation, and automated security actions for cloud infrastructure protection.

A general cybersecurity news site providing discussions and news on various cybersecurity topics.

A panic button application that triggers coordinated emergency responses across multiple connected security applications and systems.

Tenzir is a data pipeline solution that provides security data management capabilities through pipelines, nodes, and a centralized platform for analytics and detection operations.

SALO is a framework that generates synthetic log events for security testing and research without requiring actual infrastructure or triggering real events.

Automate security incident handling and facilitate real-time activities of incident handlers.

An open source repository of plugins for Rapid7 InsightConnect that enables security orchestration and automation through integrations with various security tools and services.

DetectionLab is a pre-configured Windows domain environment with security tooling and logging designed for cybersecurity training and detection capability development.

A collection of automation workflows for the Shuffle security orchestration platform that covers common cybersecurity use-cases and can be customized for organizational needs.

RedEye is a visual analytic tool that provides enhanced situational awareness and operational insights for both Red and Blue Team cybersecurity operations.

SCOT is a cybersecurity incident tracking and management platform that enables security operations centers to document, analyze, and coordinate responses to security events through collaborative workflows.

SOAR platform for orchestrating security products and automating SOC workflows

A Certificate Transparency log monitor that alerts users when SSL/TLS certificates are issued for their domains, helping detect unauthorized certificate issuance and potential security threats.