Skip to main content

SIEM & EDR Integrations

Pre-built connectors for the most widely deployed security platforms.

SIEM Integrations

Microsoft SentinelGA
Type: SIEM/SOAR
Setup: 15 min
Method: Log Analytics API + Azure AD OAuth2
Splunk Enterprise SecurityGA
Type: SIEM
Setup: 10 min
Method: Splunk HTTP Event Collector (HEC)
IBM QRadarGA
Type: SIEM
Setup: 20 min
Method: QRadar REST API + DSM connector
Google ChronicleGA
Type: SIEM
Setup: 12 min
Method: Chronicle Ingestion API
Elastic SIEMGA
Type: SIEM
Setup: 8 min
Method: Elasticsearch REST API

EDR Integrations

CrowdStrike FalconFalcon Connect API — streaming telemetry
GA
SentinelOneSentinelOne REST API — deep visibility feed
GA
Microsoft DefenderMicrosoft Graph Security API + Streaming
GA
Carbon BlackCarbon Black Cloud REST API
GA

Related

→ API Reference→ AI Models→ Getting Started→ Contact Support