Currently Available
General
- Cloud & On-Premises deployment
- Clients management
- Teams collaboration
- SSO (Single Sign-On)
- SOC2 compliance
- Custom branding
- Support
- Documentation
Detection
- Manage rules
- Detection engine
- Efficacy validation
- AI detections
- Sigma detections
- One-click filtering
- Sync-to-VCS
- Simulated attacks
Alerting
- Sublime UI
- Aggregations
- Correlations
- Notifications
- Enrichments
- Real-time case management
- Timeline view
Response
- Automation builder
- Form pages
- Webhooks
- Phishing response workflows
- Notifications
- Explore interface
- Threat hunting
Metrics
- Dashboards
- Reports
- SLA calculations
Integrations
- XDR platforms
- SIEM (Splunk Cloud, Splunk Enterprise, Elasticsearch, Elastic Cloud)
- SOAR platforms
- Threat Intelligence feeds
- Incident Management Platforms
- Phish Report integrations
- Microsoft Defender
- Slack and Microsoft Teams
- Custom webhook support