Best Cyber Defense & Intelligence Tools
Cybersecurity and intelligence platforms
Security Onion
Security Onion is a free and open-source Linux distribution for intrusion detection, network security monitoring, and log management. It includes tools like Suricata and Elasticsearch to monitor security events.
CrowdStrike (Pro)
Cybersecurity and threat intelligence platform
Expleo
Expleo delivers engineering, quality assurance, and cybersecurity services to help organizations navigate the complexities of digital transformation.
Security Onion
Security Onion is a free and open-source Linux distribution for intrusion detection, network security monitoring, and log management that provides a comprehensive suite of tools for cyber defense.
OpenVAS
OpenVAS is a free and open-source vulnerability scanner and management solution that helps identify security vulnerabilities in systems and networks, providing reports and recommendations for remediation.
Senseon
Senseon provides an AI-powered cybersecurity platform that automatically detects and responds to threats across the organization’s digital environment.
Webroot
Webroot offers cloud-based cybersecurity solutions including endpoint protection and threat intelligence to safeguard businesses from cyber attacks.
ThreatConnect
ThreatConnect offers a free tier of its threat intelligence platform, helping organizations to manage and collaborate on cyber threat data effectively.
Palo Alto Networks Cortex XSOAR
Cortex XSOAR is a security orchestration, automation, and response (SOAR) platform that helps organizations streamline security operations and incident management.
OpenVAS
OpenVAS is a free vulnerability scanner and management tool that helps organizations identify security vulnerabilities in their systems to enhance overall cyber defense.
Cisco Umbrella
Cisco Umbrella is a cloud-delivered security service that provides protection against online threats and helps organizations secure their internet access and data.
MISP
MISP (Malware Information Sharing Platform) is an open-source threat intelligence platform designed to improve the sharing of structured threat information and automate the exchange of cyber threat data.
Systancia
Systancia offers solutions for secure remote access and application virtualization, focusing on cybersecurity and compliance for businesses.
CybelAngel
CybelAngel specializes in digital risk protection, monitoring the deep and dark web to identify potential data breaches and threats to organizations.
OSSEC
OSSEC is an open-source host-based intrusion detection system (HIDS) that performs log analysis, integrity checking, and real-time alerting to help organizations enhance their cybersecurity posture.
Alsid
Alsid provides an Active Directory security solution that helps businesses protect against advanced threats and vulnerabilities in their identity infrastructure.
Darktrace
Darktrace uses AI to provide autonomous cyber defense solutions, allowing organizations to detect and respond to potential cyber threats before they escalate.
Proofpoint Email Protection
Proofpoint Email Protection safeguards organizations from advanced email threats, including phishing, malware, and business email compromise, with robust filtering and threat intelligence.
HackerOne
HackerOne is a vulnerability coordination and bug bounty platform that connects organizations with ethical hackers to find and fix security vulnerabilities.
Forcepoint
Forcepoint offers a human-centric cybersecurity platform that combines advanced threat protection, data security, and user behavior analytics to protect organizations from insider and external threats.
Splunk Enterprise Security
Splunk Enterprise Security is a security information and event management (SIEM) solution that provides real-time visibility into security threats and helps organizations respond to incidents effectively.
Cymulate
Cymulate provides a free tier for its security validation platform, allowing users to simulate cyber attacks and assess their defense capabilities.
ProCheckUp
ProCheckUp offers a suite of cyber risk assessment and compliance tools, helping organizations to identify vulnerabilities, manage risks, and ensure regulatory compliance in the cybersecurity landscape.
SIRP
SIRP is a Security Incident Response Platform that streamlines the incident response process, enabling teams to respond to threats effectively and efficiently with real-time data and collaboration tools.
ThreatConnect
ThreatConnect offers a free tier that provides threat intelligence and cyber defense capabilities, allowing users to collect, analyze, and act on threat data effectively.
CrowdStrike Falcon
CrowdStrike Falcon is a cloud-native endpoint protection platform that provides advanced cyber threat intelligence and protection against attacks in real-time.
Check Point CloudGuard
CloudGuard is a comprehensive cloud security solution that protects cloud applications and workloads from threats while ensuring compliance and visibility.
Cisco SecureX
Cisco SecureX is a unified security platform that integrates Cisco security products and third-party solutions, providing visibility and automation to enhance an organization's security posture.
Palo Alto Networks Cortex XDR
Cortex XDR is an extended detection and response platform that integrates data from endpoints, networks, and cloud services to provide a unified approach to threat detection and response.
Cymatic
Cymatic provides automated threat detection and response solutions, allowing organizations to monitor their systems for vulnerabilities and security breaches, with a free tier for small teams.
Recorded Future
Recorded Future provides real-time threat intelligence and analytics to help organizations make informed decisions about cybersecurity risks and defenses.
FireEye (Cyber Defense & Intelligence)
Cybersecurity and threat detection - Cyber Defense & Intelligence