Act quickly in the face of the threat

Quickly block cyber threats with SOAR technology built into SEKOIA.IO SOC platform

Faced with an attack, the first minutes count!

In the event of a proven attack, the first minutes represent the most crucial periods for limiting the damage to the company’s information system. It requires from your SOC, CERT/CSIRT team: spontaneity and responsiveness in order to circumscribe the attack perimeter (identify the workstations/terminals concerned, the indicators at the origin of the alert, have information on the procedure, the TTPs) and activate the appropriate responses.

Without a real connection between your security equipment and the use of automated processes, this coordination of tasks can, however, turned out to be time-consuming for your team.

Discover our XDR solution

Automate your defense strategy

At Sekoia.io, we provide teams in charge of IT security with a single platform from which they can:

Interconnect their entire ecosystem cyber on-premise or cloud.
Correlate and enrich all the alerts raised by the equipment in order to confirm malicious behavior.
Propose emergency response actions depending on the type of threat.

They can also set up playbooks that will allow automated and without intervention of:

Blocking IoCs on your security tools.
Isolate infected workstations in the event of alerts.
Directly block malicious domains.

Discover our XDR solution

Relieve your SOC team

Our all-in-one SOC platform integrates SOAR technology. It promotes the automation of the standard and most repetitive daily activities of a SOC team.
Your analysts can create playbooks capable of automating, at a specific time or continuously, their triage, pre-qualification, and enrichment actions around the alerts raised.

Discover our XDR solution

Increase the operational capacity of your CSIRT team

For incident response teams, this natively integrated SOAR function brings guarantee, speed and a certain peace of mind when it comes to the execution of security responses.

Increase the operational capability of your CSIRT with SOAR technology built into SEKOIA.IO SOC tool.

Concretely, CSIRT teams can rely on SEKOIA.IO’s library of ready-to-use integrations to:

Ask cybersecurity tools to block malware
Isolate workstations.
Disable Internet access.
Retrieve the results of the remediation.
Inform by email or on Slack his manager (RSSI, DSI) of the progress of the remediation.
Create a ticket with all the elements of context likely to help analysts pursue their investigations.

Take advantage of our catalog of playbooks

Within our SOC platform, you have a catalog of playbooks (automated actions) created, maintained by our teams and freely accessible to all of our users.

This catalog is regularly enriched in order to make it operational and efficient for all your activities:

Collection, sorting, and pre-qualification of alerts.
Investigation and resolution of incidents.
Triggers, responsible for establishing your criteria for automatic execution.
The actions (processes or business logics) to be implemented.
The operators that allow you to articulate your different actions or business logics.

Take advantage of the catalog of ready-to-use playbooks in SEKOIA.IO SOC platform.

Prochain use case

Lire

Chat with our team !

Would you like to know more about our solutions?
Do you want to discover our XDR and CTI products?
Do you have a cyber security project in your organization?
Make an appointment and meet us!

Contact us

Cookie	Duration	Description
__hssrc	session	This cookie is set by Hubspot. According to their documentation, whenever HubSpot changes the session cookie, this cookie is also set to determine if the visitor has restarted their browser. If this cookie does not exist when HubSpot manages cookies, it is considered a new session.
cookielawinfo-checkbox-advertisement	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Advertisement".
cookielawinfo-checkbox-analytics	1 year	This cookies is set by GDPR Cookie Consent WordPress Plugin. The cookie is used to remember the user consent for the cookies under the category "Analytics".
cookielawinfo-checkbox-necessary	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".

Cookie	Duration	Description
__hssc	30 minutes	This cookie is set by HubSpot. The purpose of the cookie is to keep track of sessions. This is used to determine if HubSpot should increment the session number and timestamps in the __hstc cookie. It contains the domain, viewCount (increments each pageView in a session), and session start timestamp.
bcookie	2 years	This cookie is set by linkedIn. The purpose of the cookie is to enable LinkedIn functionalities on the page.
lang	session	This cookie is used to store the language preferences of a user to serve up content in that stored language the next time user visit the website.
lidc	1 day	This cookie is set by LinkedIn and used for routing.
pll_language	1 year	This cookie is set by Polylang plugin for WordPress powered websites. The cookie stores the language code of the last browsed page.

Cookie	Duration	Description
__hstc	1 year 24 days	This cookie is set by Hubspot and is used for tracking visitors. It contains the domain, utk, initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session).
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gat_gtag_UA_152945562_1	1 minute	This cookie is set by Google and is used to distinguish users.
_gcl_au	3 months	This cookie is used by Google Analytics to understand user interaction with the website.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.
hubspotutk	1 year 24 days	This cookie is used by HubSpot to keep track of the visitors to the website. This cookie is passed to Hubspot on form submission and used when deduplicating contacts.

Cookie	Duration	Description
bscookie	2 years	This cookie is a browser ID cookie set by Linked share Buttons and ad tags.
Inbound Converter	2 ans	This script communicates back to TechTarget which accounts, based on reverse IP lookup, have visited this website. The information that is transmitted includes: URL of page landed on, Timestamp of visit, IP Address
test_cookie	15 minutes	This cookie is set by doubleclick.net. The purpose of the cookie is to determine if the user's browser supports cookies.

Cookie	Duration	Description
AnalyticsSyncHistory	1 month	No description
cookielawinfo-checkbox-functional	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-others	1 year	No description
li_gc	2 years	No description
UserMatchHistory	1 month	Linkedin - Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.