Data verified Jun 2026
ADYour product here. Reach security decision-makers.Launch a campaignDorothy Description
Created by David French (@threatpunter) at Elastic Security, Dorothy is a tool designed to help security teams test their monitoring and detection capabilities for their Okta environment. It offers modules to simulate attacker actions and security audit actions in an Okta environment, mapped to relevant MITRE ATT&CK® tactics like persistence, defense evasion, and discovery. Elastic Security's free detection rules for Okta can be found in their detection-rules repository. It is recommended to use Dorothy in a test environment to avoid any impact on the production environment.
Dorothy FAQ
Common questions about Dorothy including features, pricing, alternatives, and user reviews.
Dorothy is Dorothy is a tool to test monitoring and detection capabilities for Okta environments, with modules mapped to MITRE ATT&CK® tactics. It is a Security Operations solution designed to help security teams with MITRE Attack, Detection Rules.
Dorothy is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/elastic/dorothy/ for download and installation instructions.
Popular alternatives to Dorothy include:
1.LogCraft Detection Engineering - Detection-as-code platform for managing detection rules across SIEM/EDR/XDR (Commercial)
2.detections.ai Detections - Community platform for sharing and creating detection rules with AI (Commercial)
3.SOC Prime Threat Detection Marketplace - Threat detection marketplace with Sigma rules for SIEM and shift-left detection (Commercial)
4.SOC Prime Uncoder AI - IDE for detection engineering with cross-platform translation for 65+ SIEM/EDR/XDR (Commercial)
5.Sesame IT HOSHI - Curated attack use case platform that feeds threat scenarios into Jizô AI. (Commercial)
Compare all Dorothy alternatives at https://cybersectools.com/alternatives/dorothy
Dorothy is for security teams and organizations that need MITRE Attack, Detection Rules. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations
Have more questions? Browse our categories or search for specific tools.
