Anvilogic
Anvilogic is a multi-data platform SIEM designed to enhance detection engineering processes. It offers pre-built detection rules and a detection-as-code builder to improve detection accuracy and optimize lifecycle management. The platform allows teams to use existing SIEM solutions like Splunk or Azure while adopting cost-effective data lake solutions such as Snowflake. Anvilogic aims to reduce SIEM licensing costs by decoupling logging from security analytics. It provides features for building, deploying, and maintaining detections, potentially saving time in these processes. The tool includes capabilities for improving ATT&CK coverage and closing detection gaps for high-priority threats. It offers a low/no-code builder and AI chatbot to assist in the detection engineering process. Anvilogic includes features for allowlisting, version control, and easy rollout of detections.
FEATURES
ALTERNATIVES
Repository of default playbooks and custom functions for Splunk SOAR instances with content migration to Splunk's GitHub.
Fast Intercept is a security automation platform that empowers users to maximize their existing security products and automate routine tasks.
A Serverless Security Orchestration Automation and Response (SOAR) Framework for AWS GuardDuty with various supported actions.
WALKOFF is an automation framework for integrating capabilities and devices to streamline tasks.
Detect signed malware and track stolen code-signing certificates using osquery.
A Sysmon configuration repository for customizing Microsoft Sysinternals Sysmon configurations with modular setup.
A framework for improving detection strategies and alert efficacy.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.