VMRay Analyzer has integration partnerships with leading technology providers to ensure a seamless holistic solution for threat detection and prevention. VMRay has a powerful REST/JSON API with STIX/CYBOX support for custom integration with any other solution.
Ayehu technology helps IT professionals to identify and resolve critical incidents, simplify complex workflows and maintain greater control over IT infrastructure through automation. Ayehu solutions have been deployed by major enterprises worldwide and currently support thousands of IT processes across the globe. Read the VMRay Solution Brief.
The Malware Information Sharing Platform (MISP) tool facilitates the exchange of Indicators of Compromise (IOCs) about targeted malware and attacks within a community of trusted members. MISP is a distributed IOC database containing technical and non-technical information. Exchanging such information can result in faster detection of targeted attacks and improve the detection ratio, whilst also reducing the number of false positives.
Splunk Inc. provides the leading platform for Operational Intelligence. Splunk® software searches, monitors, analyzes and visualizes machine-generated big data from websites, applications, servers, networks, sensors and mobile devices. More than 12,000 organizations use Splunk software to deepen business and customer understanding, mitigate cybersecurity risk, improve service performance and reduce costs. Download the VMRay Analyzer Add-On from Splunkbase.
ThreatConnect, Inc. helps security analysts increase their productivi
Carbon Black delivers the industry’s most complete endpoint security platform. Whatever your endpoint security needs and goals, and wherever you’re starting, we can help. VMRay Analyzer integrates seamlessly with CarbonBlack via our API and downloadable connector. Combined, customers have complete endpoint visibility, and automated analysis and IOC generation from new threats as they are seen.
OPSWAT is a global cyber security company providing solutions for enterprises since 2002 to identify, detect, and remediate advanced security threats from data and devices coming into and out of their networks. Trusted by over 1,000 organizations worldwide for this secure data flow, OPSWAT prevents advanced security threats across multiple channels of file transfer and data flow with flexible options of Metadefender solutions and API-based development and threat intelligence platforms. With over 30 anti-malware engines, 100+ data sanitization engines and more than 25 technology integration partners, OPSWAT is a pioneer and leader in data sanitization (Content Disarm and Reconstruction), vulnerability detection, multi-scanning, device compliance, and cloud access control.
Phantom is the first community-powered security automation & orchestration platform. Phantom’s open and extensible architecture helps you work smarter, respond faster, and strengthen your defenses.
LogicHub improves threat detection tenfold by prioritizing high-risk threats organizations face with the accuracy of experienced security analysts, at 1,000 times the speed. Its Security Intelligence Automation platform captures and automates security analysts’ intelligence, knowledge and expertise to prioritize threats more effectively than rule-based SIEM or pure AI-based approaches.
Swimlane is a leader in security automation and orchestration (SAO). Our platform empowers organizations to manage, respond to and neutralize cyber threats with the adaptability, efficiency and speed necessary to combat today’s rapidly evolving cyber threats. By automating time-intensive, manual processes and operational workflows and delivering powerful, consolidated analytics, real time dashboards and reporting from across your security infrastructure, Swimlane maximizes the incident response capabilities of over-burdened and understaffed security operations.
Demisto Enterprise is the first security operations platform to combine intelligent automation and collaboration into a single ChatOps interface. Demisto’s automation is provided by DBot which interacts with users via ChatOps for playbook-based workflows, cross-correlation, and information sharing, helping security teams scale while learning how humans are wired together.
InQuest offers an on-premise network-based security solution that inspects application content over the most commonly used network protocols and performs Deep File Inspection (DFI) capable of detecting malware as it passes through your traditional security defenses.
The InQuest team works with real-world, high profile networks on a daily basis and draws influences from actual attacks to publish new signatures and intelligence feeds on a regular weekly basis or as needed.
Thanks to Cortex, observables such as IP and email addresses, URLs, domain names, files or hashes can be analyzed using a Web interface. Analysts can also automate these operations and submit large sets of observables from TheHive or through the Cortex REST API from alternative SIRP platforms, custom scripts or MISP.
Siemplify provides a holistic Security Operations Platform that empowers security analysts to work smarter and respond faster. Siemplify uniquely combines security orchestration and automation with patented contextual investigation and case management to deliver intuitive, consistent and measurable security operations processes. Leading enterprises and MSSPs leverage Siemplify as their SOC Workbench, tripling analyst productivity by automating repetitive tasks and bringing together disparate security technologies.
ReversingLabs is an In-Q-Tel portfolio company that provides an automated static analysis engine and industry-leading file reputation repository (now with over 4 Billion malware and goodware samples). The static analysis engine can recursively unpack and deobfuscate network file traffic or large file stores at about 5ms per file and compare results with their curated file reputation corpus to aid triage and remediation. The engine can identify malware families based on functional similarity. This is critical for dealing with polymorphic attacks routinely used by hackers to make ‘otherwise unique’ hashes from known malware. ReversingLabs content and technologies are leveraged by and/or integrate with most major security vendor solutions.
Sophos is a leader in next-generation endpoint and network security, and as the pioneer of synchronized security develops its innovative portfolio of endpoint, network, encryption, web, email and mobile security solutions to work better together. More than 100 million users in 150 countries rely on Sophos solutions as the best protection against sophisticated threats and data loss. Sophos products are exclusively available through a global channel of more than 26,000 registered partners. Sophos is headquartered in Oxford, UK and is publicly traded on the London Stock Exchange under the symbol “SOPH.”
VMRay is a Microsoft Bizspark partner. We leverage the resources of the Bizspark program and the Microsoft Developer Network (MSDN) to deliver comprehensive support for analysis of Microsoft Windows environments.
LOT Network (short for License on Transfer) is a non-profit community of companies committed to protecting themselves long-term against PAEs and their patent lawsuits. LOT Network members partner with other like-minded companies who believe good corporate citizens don’t monetize patents through patent trolls. Members include global brands, Silicon Valley startups and many smaller companies that could otherwise be wiped out by a single patent-troll lawsuit.