SOC.OS Compatible Tools List
Don’t see your security tool? We’re constantly integrating with new security solutions. If you don’t find your security tool on the list, don’t worry, as long as it produces alerts in machine-readable format, we’ll be able to integrate with it. If you think something is missing from SOC.OS’ tools list, let us know and we’ll look into integrating!
COMPATIBLE TOOLS
AWS GuardDuty
Amazon GuardDuty offers continuous monitoring of your AWS accounts and workloads to protect against malicious or unauthorized activities.
Fortinet FortiAnalyzer
Fortinet FortiAnalyzer is an integrated security architecture with analytics and automation capabilities can address and dramatically improve visibility and automation.
Sonicwall
Complete Security Portfolio: SonicWall deliver one of the most comprehensive selection of SME security products in the market.
Azure Defender for Servers
Safeguard Windows servers and clients with Microsoft Defender for Endpoint (servers) and protect Linux servers with behavioural analytics.
Azure Active Directory Identity Protection
Identity Protection is a tool that allows organizations to automate the detection and remediation of identity-based risks and export risk detection data to third-party utilities for further analysis.
Microsoft Cloud App Security
Microsoft Cloud App Security is a comprehensive cross-SaaS solution bringing deep visibility, strong data controls, and enhanced threat protection to your cloud apps.
Microsoft Defender Advanced Threat Protection
Microsoft Defender Advanced Threat Protection (ATP) is a Microsoft security product that is designed to help enterprise-class organizations detect and respond to security threats.
Office 365 Cloud App Security
Office 365 Cloud App Security includes threat detection based on user activity logs, discovery of Shadow IT for apps, control app permissions to Office 365, and apply access and session controls.
Azure Information Protection
Azure Information Protection (AIP) is a cloud-based solution that enables organizations to classify and protect documents and emails by applying labels.
Azure Sentinel
Azure Sentinel provides intelligent security analytics across your enterprise. The data for this analysis is stored in an Azure Monitor Log Analytics workspace.
Mimecast
Mimecast cloud cybersecurity services for email, data, and web provides your organization with archiving and continuity needed to prevent compromise.
Palo Alto / PanOS
PAN-OS® is the software that runs all Palo Alto Networks® next-generation firewalls.
Sophos Firewall
XG Firewall provides an elegant and effective web-based management console that offers quick access to all the features you need.
Fortinet Fortigate
FortiGate NGFWs enable security-driven networking and consolidate industry-leading security capabilities.
Cisco Firepower
This is your administrative nerve center for managing critical Cisco network security solutions. It provides complete and unified management over firewalls
Malwarebytes
Malwarebytes protects you against malware, ransomware, malicious websites, and other advanced online threats that have made traditional antivirus obsolete.
Sophos
Sophos Endpoint is an endpoint protection product that combines antimalware, web and application control, device control and much more.
Trend Micro
Trend Micro Deep Discovery is an advanced threat protection platform that enables you to detect, analyze, and respond to today’s stealthy, targeted attacks.
Microsoft Defender for Identity
Microsoft Defender for Identity helps protect your organization’s identities from multiple types of advanced targeted cyberattacks.
CALM
A comprehensive Security Information and Events Management (SIEM) solution that enables organisations to log all their IT infrastructure events to a single platform.
Thinkst Canary
Most companies discover they’ve been breached way too late. Thinkst Canary fixes this: just 3 minutes of setup, no ongoing overhead, nearly 0 false positives, and you can detect attackers long before they dig in.
Proofpoint
Proofpoint provides software as a service and products for inbound email security, outbound data loss prevention, social media, mobile devices, digital risk, email encryption, electronic discovery, and email archiving.
Darktrace
Cloud-native, Darktrace offers coverage of your entire enterprise, from workforce devices and IoT, to SaaS and email.
Forcepoint
Forcepoint offers user and data protection cybersecurity, safeguarding organizations while driving digital transformation and growth.
McAfee™
McAfee integrates native controls with machine-learning technology, providing protection for hybrid environments.
Auth0
Auth0 is an authentication and authorization management platform available for the web, IoT, mobile devices and legacy apps.
Azure ATP
Azure Advanced Threat Protection (ATP) solution is used to detect advanced attacks in hybrid environments.
CISCO Meraki
Cisco Meraki offers tools allowing administrators to maximize the security of their network deployments, providing optimal protection, visibility, and control over your Cisco Meraki network.
Azure Security Center
Azure Security Center is a unified infrastructure security management system that strengthens the security posture of your data centers, providing advanced threat protection across hybrid workloads.
Microsoft Office 365 Security & Compliance
Provides a centralised portal for controlling governance and mitigating threats within Office 365.