Tidal Cyber Sandbox

Tidal Cyber Sandbox is a SaaS platform that enables organizations to implement threat-informed defense strategies by analyzing adversary tradecraft and technology. The platform helps security teams assess their defensive capabilities, identify security gaps, and optimize their cybersecurity posture based on relevant threats. The platform provides access to a knowledge base of threat intelligence content including adversary software, campaigns, techniques, and analytics. It integrates MITRE ATT&CK framework data and includes content from community projects like LOLBAS (Living-off-the-Land Binaries and Scripts). Users can research threats through curated tags applied to thousands of knowledge base objects, enabling pivoting around threat types, reporting sources, and relevant detections. The platform includes an analytics library with detection rules from sources like The DFIR Report. The platform offers both a Community Edition and Enterprise Edition. Community users can create and share technique sets and matrices documenting specific threat scenarios, such as zero-day vulnerabilities and APT campaigns. The platform maps security products and solutions against adversary techniques to help organizations understand their defensive coverage. Tidal Cyber Sandbox supports continuous assessment of security programs by aligning defenses with evolving threats and adversaries, helping organizations make data-driven decisions about security investments and gap remediation.