Tool Selection

Splunk Enterprise Security

Splunk

Microsoft Sentinel

Microsoft

IBM QRadar

IBM

Elastic Security (SIEM)

Elastic

LogRhythm SIEM

LogRhythm

Exabeam Fusion SIEM

Exabeam

ArcSight ESM

OpenText

Securonix SNYPR

Securonix

Devo Platform

Devo

Rapid7 InsightIDR

Rapid7

Google Chronicle

Google

FortiSIEM

Fortinet

AlienVault USM Anywhere

AT&T Cybersecurity

ManageEngine Log360

ManageEngine

Palo Alto Networks PAN-OS

Palo Alto Networks

Fortinet FortiGate

Fortinet

Check Point Quantum

Check Point

Cisco Firepower / FTD

Cisco

Juniper SRX Series

Juniper Networks

Sophos XGS Firewall

Sophos

WatchGuard Firebox

WatchGuard

SonicWall NSsp

SonicWall

Barracuda CloudGen Firewall

Barracuda Networks

pfSense / OPNsense

Netgate / Deciso

CrowdStrike Falcon

CrowdStrike

Microsoft Defender for Endpoint

Microsoft

SentinelOne Singularity

SentinelOne

VMware Carbon Black EDR

VMware / Broadcom

Cybereason Defense Platform

Cybereason

Trend Micro Vision One

Trend Micro

ESET Inspect

ESET

Malwarebytes EDR

Malwarebytes

Sophos Intercept X

Sophos

Elastic Endpoint Security

Elastic

HarfangLab EDR

HarfangLab

BlackBerry Cylance

BlackBerry

Cortex XDR

Palo Alto Networks

Bitdefender GravityZone

Bitdefender

Microsoft Active Directory / Entra ID

Microsoft

Okta Workforce Identity

Okta

CyberArk Privileged Access Manager

CyberArk

BeyondTrust Privileged Remote Access

BeyondTrust

SailPoint IdentityNow

SailPoint

Ping Identity PingOne

Ping Identity

OneLogin (Unified Access Management)

OneLogin

JumpCloud Directory Platform

JumpCloud

ForgeRock Identity Platform

ForgeRock

HashiCorp Vault

HashiCorp

Saviynt Security Manager

Saviynt

Tenable Nessus / Tenable.io

Tenable

Qualys VMDR

Qualys

Rapid7 InsightVM

Rapid7

OpenVAS / Greenbone

Greenbone Networks

Wiz Cloud Security

Wiz

Orca Security

Orca Security

Lacework

Lacework

Darktrace Enterprise

Darktrace

Vectra AI

Vectra

Corelight Network Sensor

Corelight

Zeek (Bro)

Zeek Project (OSS)

Suricata IDS/IPS

OISF (OSS)

Snort

Cisco / OSS

Arkime (Moloch)

OSS

NetWitness Platform

RSA / NetWitness

ExtraHop Reveal(x)

ExtraHop

Gigamon ThreatINSIGHT

Gigamon

MISP

CIRCL / OSS

Anomali ThreatStream

Anomali

Recorded Future

Recorded Future

ThreatConnect Platform

ThreatConnect

OpenCTI

Filigran (OSS)

VirusTotal Enterprise

Google

AlienVault OTX

AT&T Cybersecurity

Mandiant Advantage

Google / Mandiant

Proofpoint Email Protection

Proofpoint

Mimecast Email Security

Mimecast

Microsoft Defender for Office 365

Microsoft

Abnormal Security

Abnormal Security

Barracuda Email Security Gateway

Barracuda Networks

Cofense PhishMe

Cofense

AWS Security Hub + GuardDuty

Amazon

Microsoft Defender for Cloud

Microsoft

Google Security Command Center

Google

Prisma Cloud

Palo Alto Networks

Lacework Polygraph

Lacework