Anvilogic is a multi-data platform SIEM designed to enhance detection engineering processes. It offers pre-built detection rules and a detection-as-code builder to improve detection accuracy and optimize lifecycle management. The platform allows teams to use existing SIEM solutions like Splunk or Azure while adopting cost-effective data lake solutions such as Snowflake. Anvilogic aims to reduce SIEM licensing costs by decoupling logging from security analytics. It provides features for building, deploying, and maintaining detections, potentially saving time in these processes. The tool includes capabilities for improving ATT&CK coverage and closing detection gaps for high-priority threats. It offers a low/no-code builder and AI chatbot to assist in the detection engineering process. Anvilogic includes features for allowlisting, version control, and easy rollout of detections.
FEATURES
ALTERNATIVES
jimi is an orchestration automation tool for multi-team collaboration and automation in IT/Security operations, Development, and CI/CD pipelines.
Templates for incident response run-books tailored for AWS environments based on NIST guidelines.
Repository of default playbooks and custom functions for Splunk SOAR instances with content migration to Splunk's GitHub.
Catalyst is a SOAR system that automates alert handling and incident response processes, adapting to your workflows and being open source.
Tool to bypass endpoint solutions blocking known 'malicious' signed applications by obtaining valid signed files with different hashes.
A collection of incident response methodologies for various security incidents, providing easy-to-use operational best practices.
A collection of Cyber Incident Response Playbook Battle Cards (PBC) for combating cyber threats and attacks, following a prescriptive approach inspired by CERT Societe Generale's IRM.
PINNED

InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.