Security Orchestration Automation Response Tools (SOAR)

Swimlane is a security orchestration, automation, and response (SOAR) platform designed to help businesses in banking, healthcare, insurance, energy, retail, and other industries manage alerts and automate incident response processes by collecting security data from various sources. The platform exposes false positives and lets supervisors map... Read more about Swimlane

IncMan SOAR is a cloud-based and on-premise platform, which enables enterprises to manage, evaluate, and plan various security operation tasks such as threat hunting and investigation, triage and escalation, incident qualification, and more using machine learning and automation capabilities. Read more about IncMan SOAR

ArcSight is a vulnerability scanning software that helps businesses utilize machine learning technology to detect threats, handle investigations, create prioritized event lists, and more on a centralized platform. It enables staff members to extract entities from log files and observe events and behavior across users, IP addresses, servers, and... Read more about ArcSight

ManageEngine Log360 is a log management and SIEM (security information and event management) platform which helps businesses to monitor and manage network security, audit Active Directory changes, log devices, and gain visibility into cloud infrastructures. Read more about ManageEngine Log360

LogPoint's SIEM platform helps businesses secure data from threats & respond to cyberattacks in compliance with regulatory norms. Read more about LogPoint

FortiSIEM is a security Information and event management (SIEM) platform with user and entity behavior analytics (UEBA), which helps businesses prevent breaches, identify anomalies, aggregate security events, detect threats, and more through automated response and remediation. Supervisors can configure dashboards in real-time and track key... Read more about FortiSIEM

Reveelium helps users reduce the impact of incidents by responding quickly to threats with behavioral analysis, threat Intelligence, correlation and alert prioritization. Read more about Reveelium

DNIF HYPERCLOUD is a cloud-based security information and event management (SIEM) solution, which assists small to large organizations with threat detection and incident response. Key features include data parsing, user behavior analysis, workflow automation, data recovery, and performance metrics. Read more about DNIF HYPERCLOUD

Cortex XSOAR is a cloud security software that helps businesses generate threat intelligence, automate incident response, handle remediation processes and more from within a centralized platform. It allows staff members to utilize automated playbooks to parse, aggregate, manage, and de-duplicate daily indicators across multiple sources. Read more about Cortex XSOAR

PhishER is a web-based Security Orchestration, Automation and Response (SOAR) platform designed to help security teams automate the prioritization of emails and respond to various threats. It groups and categorizes emails based on rules, tags and actions, allowing users to process user-reported suspicious and phishing emails in mailboxes across... Read more about PhishER

D3 SOAR is a cybersecurity software that is designed for businesses in several industry segments, such as healthcare, manufacturing, energy, utilities, finance, media, and the public sector. It helps organizations manage cases, respond to incidents, build workflows, and more on a centralized platform. Read more about D3 SOAR

ThreatConnect is a cybersecurity software designed to help businesses identify and prevent potential threats using security orchestration, automation and response (SOAR) capabilities. Supervisors can use the dashboard to perform risk assessments, identify threats via actionable analytics, and generate operational reports. Read more about ThreatConnect Threat Intelligence Platform (TIP)

SOAR tools are mostly used for incident response, orchestration of workflows, and automation. Threat intelligence management is a vital SOAR Tool functionality. Read more about SOAR Tools

ORNA is a SaaS cyber incident response platform, designed to take old-fashioned PDF-based plans and playbooks, with seamless workflow management, process automation, instant reporting and risk management capabilities. Read more about Orna

Teleport lets you manage your infrastructure from your laptop, tablet or phone. It provides secure SSH and SFTP access to any server from your browser or the command line. You can use Teleport to securely manage any server, anywhere in the world. Read more about Teleport

STORM is a cloud-based IT security management system designed to assist cyber security teams within organizations with tracking and management of network issues. Key features include workflow automation, message authentication, secure digital signatures, resource planning, and reporting. Read more about STORM

S.O.A.R is a cybersecurity and security information and event management (SIEM) software designed to help businesses protect cloud, physical, virtual, and container environments. Administrators can utilize cross-generational protection techniques to identify and protect systems against vulnerabilities. Read more about S.O.A.R

Siemplify is an independent SOAR platform designed to help security teams manage case creation, investigation, remediation, and response processes to drive continuous improvement. It lets engineers automate repetitive processes related to the prevention, detection, and remediation of cyber threats using machine learning technology. Read more about Siemplify

Intezer Protect is a security orchestration, automation, and response (SOAR) software that provides businesses with tools to identify potential threats across public/private cloud environments. Supervisors can use the dashboard to gain an overview of asset performance or identified vulnerabilities via actionable analytics. Read more about Intezer Protect

Security automation for the entire threat lifecycle. Read more about SOAR+

SIRP is a SOAR software that helps security operations centers and threat intelligence, incident response, and vulnerability management teams calculate risk scores for incidents and alerts based on various internal and external factors. The platform enables administrators to define security practices and automatically allocate steps to relevant... Read more about SIRP

Cyware pioneered the industry's first virtual cyber fusion platform for next-generation SOAR, situational awareness, and actionable threat intelligence for modern cyber security teams. Read more about Cyware

Cybersprint is a security platform that allows companies to visualize their digital footprint and identify online access points to their business systems. The software searches all possible public entrances via the internet: social media, IoT, mobile apps, and the dark web. Read more about Cybersprint

DTonomy leverage AI and automation to help the security team - automate repetitive tasks - reduce false positives - recover attack stories Read more about DTonomy AIR

Proactively identify threat campaigns, streamline security operations, reduce false positives, and impore MTTD and MTTR. Read more about UnderDefense MAXI