📋 SIEM & Security Operations
109 tools compared
📂 Subcategories
🔧 Tools in SIEM & Security Operations
Tines
A no-code automation platform for security teams.
Torq
A no-code automation platform that helps security teams create and manage workflows.
Fortinet FortiSOAR
A SOAR platform that helps SOC teams improve efficiency and reduce response times.
Swimlane
A low-code security automation platform for enterprise security teams.
SIRP
A no-code SOAR platform that helps security teams automate and orchestrate their workflows.
Panther
A cloud-native security analytics platform focused on speed, scale, and flexibility.
CrowdStrike Falcon XDR
Unifies detection and response across multiple security layers, including endpoint, cloud, identity, and network.
Panther Labs
A security data lake platform that provides real-time threat detection and investigation at scale.
Huntress Managed EDR & SIEM
A managed security platform that combines EDR, SIEM, and a 24/7 SOC to protect small and mid-sized businesses.
Panther
A cloud-native SIEM that uses a security data lake architecture to provide flexible and scalable threat detection and response.
Palo Alto Networks Cortex XSIAM
A modern SIEM alternative that uses AI and automation to radically improve security outcomes and transform the SOC.
Palo Alto Networks Cortex XSOAR
A comprehensive SOAR platform with integrated threat intelligence management.
Rapid7 InsightConnect
A SOAR solution that enables security teams to automate workflows and connect their tools.
D3 Security
A SOAR platform that helps enterprises and MSSPs automate and orchestrate security operations.
Anvilogic
A security operations platform that helps teams detect, hunt, and automate response to threats.
Palo Alto Networks Cortex XSIAM
An AI-driven platform that unifies SIEM, XDR, and SOAR to automate the SOC.
Hunters SOC Platform
A security operations platform that ingests data from multiple sources to detect real threats.
Uptycs
A security analytics platform that unifies CNAPP, CWPP, CSPM, and XDR.
Palo Alto Networks Cortex XDR
Integrates network, endpoint, and cloud data to stop sophisticated attacks.
SentinelOne Singularity XDR
Unifies prevention, detection, and response in a single platform.
Trend Micro Vision One
Provides visibility and response across email, endpoints, servers, cloud workloads, and networks.
Cynet 360 AutoXDR
An autonomous breach protection platform that unifies XDR, response automation, and MDR.
CrowdStrike Falcon
A cloud-native endpoint protection platform that unifies next-generation antivirus, EDR, and managed threat hunting.
Hunters AI-Driven SIEM
An AI-driven SIEM alternative that automates threat detection and response.
CrowdStrike Falcon LogScale
A centralized log management and security information and event management (SIEM) solution designed for high-speed data ingestion and real-time search.
SentinelOne Singularity Data Lake
A security data lake that unifies data from endpoints, cloud workloads, and identity sources for comprehensive visibility and threat hunting.
Microsoft Sentinel
A cloud-native SIEM solution that delivers scalable, cost-efficient security across multicloud and multiplatform environments.
Exabeam Fusion SIEM
A cloud-native SIEM platform that combines SIEM, UEBA, and SOAR capabilities.
Rapid7 InsightIDR
A cloud-native SIEM and Extended Detection and Response (XDR) solution.
Datadog Cloud SIEM
A cloud-native SIEM that provides real-time threat detection and investigation for dynamic, cloud-scale environments.
Gurucul Security Analytics and Operations Platform
A unified platform that combines next-gen SIEM, XDR, UEBA, and identity and access analytics.
Splunk SOAR
A security orchestration, automation, and response (SOAR) solution that helps security teams work smarter.
Microsoft Sentinel
A scalable, cloud-native solution that provides SIEM and SOAR capabilities.
Exabeam
A security operations platform that combines SIEM, UEBA, and SOAR.
LogicHub
A SOAR platform that uses AI and machine learning to automate security operations.
Microsoft Sentinel
A scalable, cloud-native SIEM and SOAR solution from Microsoft Azure.
Rapid7 InsightIDR
A cloud-native XDR and SIEM solution for threat detection and response.
Gurucul
A security analytics platform focused on UEBA, identity analytics, and threat detection.
Microsoft Defender XDR
Natively coordinates detection, prevention, investigation, and response across endpoints, identities, email, and applications.
Fortinet FortiXDR
Automates security operations with AI-driven investigation and response.
Cybereason XDR
Delivers operation-centric detection and response to end cyber attacks.
Sophos XDR
Provides a holistic view of an organization's security posture with deep analysis capabilities.
Elastic Security
A unified solution for threat prevention, detection, and response.
Rapid7 InsightIDR
A cloud SIEM and XDR solution that unifies data from across the attack surface.
Secureworks Taegis XDR
A cloud-native XDR platform that combines advanced analytics with human expertise.
Exabeam Fusion XDR
A cloud-native platform that combines SIEM and XDR capabilities.
Gurucul Security Analytics and Operations Platform
A unified platform for SIEM, XDR, UEBA, and identity analytics.
Rapid7 InsightIDR
A cloud-native SIEM and XDR solution that provides unified visibility and accelerated threat detection and response.
Vectra AI Platform
An AI-driven threat detection and response platform for hybrid and multi-cloud environments.
Check Point Infinity SOC
A unified SOC platform that combines threat prevention, detection, investigation, and remediation.
Gurucul Security Analytics and Operations Platform
A unified security analytics and operations platform that combines SIEM, XDR, UEBA, and Identity Analytics.
Splunk Enterprise Security
A SIEM solution that provides real-time insights into security events across an organization's IT infrastructure.
LogRhythm SIEM
A comprehensive security solution designed to consolidate log management, security analytics, and endpoint monitoring/forensics.
Graylog Security
A centralized log management and SIEM solution that enables you to collect, store, and analyze large volumes of data in near real-time.
Elastic Security
A security solution that combines SIEM, endpoint security, and cloud security in a single platform.
ManageEngine Log360
A comprehensive SIEM solution that helps businesses combat security threats and meet compliance requirements.
Devo Security Data Platform
A cloud-native platform that combines SIEM, security analytics, and SOAR capabilities.
IBM Security QRadar SOAR
A SOAR platform designed to help security teams respond to cyber threats with confidence.
ServiceNow Security Operations
A security operations solution that connects security and IT teams on a single platform.
Google Chronicle Security Operations
A cloud-native security operations platform that combines SIEM, SOAR, and threat intelligence.
ThreatConnect
A platform that combines SOAR, TIP, and Risk Quantification.
LogRhythm SIEM
A comprehensive security operations platform with SIEM, SOAR, and UEBA capabilities.
Securonix
A cloud-native security analytics and operations platform with SIEM, UEBA, and SOAR.
Splunk Enterprise Security
A SIEM solution that provides data-driven insights into security posture for businesses.
LogRhythm SIEM
A comprehensive SIEM platform for threat detection, response, and compliance.
Exabeam
A security operations platform that uses AI and machine learning to improve threat detection.
Elastic Security
A security solution built into the Elastic Stack for SIEM, XDR, and threat hunting.
Datadog Security Platform
A security platform that unifies SIEM, cloud security, and application security in one place.
Google Chronicle Security Operations
Google Cloud's security analytics platform for threat detection and response at scale.
Graylog
An open-source and commercial platform for log management and security analytics.
Cisco XDR
Correlates intelligence and telemetry from across the security stack to deliver prioritized, evidence-backed detections.
VMware Carbon Black XDR
Extends network visibility and detection to VMware Carbon Black Enterprise EDR.
LogRhythm Axon
A cloud-native SIEM platform that provides a foundation for XDR.
Devo Security Data Platform
A cloud-native platform for collecting, analyzing, and acting on security data at scale.
Splunk Enterprise Security
A SIEM solution that provides data-driven insights to quickly detect and respond to threats.
Microsoft Sentinel
A scalable, cloud-native SIEM and SOAR solution from Microsoft.
LogRhythm NextGen SIEM
A comprehensive SIEM platform that unifies log management, security analytics, and endpoint monitoring.
Exabeam Fusion SIEM
A cloud-native SIEM platform that combines UEBA, security analytics, and automated investigation.
Graylog Security
A centralized log management and SIEM solution that provides affordable and effective threat detection.
Wazuh
An open-source security platform that provides unified XDR and SIEM capabilities.
Splunk Enterprise Security
A SIEM solution that provides real-time insights into security events to identify, investigate, and respond to threats.
Microsoft Sentinel
A scalable, cloud-native, security information and event management (SIEM) and security orchestration, automation, and response (SOAR) solution.
IBM QRadar SIEM
A threat detection and response solution designed to help security teams manage and respond to incidents more efficiently.
Securonix Unified Defense SIEM
A cloud-native platform that unifies SIEM, UEBA, SOAR, and TIP.
Fortinet FortiSIEM
A SIEM solution that provides visibility, correlation, automated response, and remediation in a single, scalable solution.
Sumo Logic Cloud SIEM
A cloud-native SIEM that helps teams detect, investigate, and respond to threats with faster behavioral analytics and automation.
AT&T Cybersecurity AlienVault USM
A unified security management platform that combines SIEM, endpoint detection and response (EDR), and vulnerability assessment.
SolarWinds Security Event Manager
A SIEM solution that helps you detect and respond to security threats, and demonstrate compliance.
Trellix Helix
A SaaS security operations platform that empowers organizations to take control of any incident, from detection to response.
RSA NetWitness Platform
A threat detection and response solution that provides end-to-end visibility across an entire infrastructure.
Sumo Logic Cloud SOAR
A cloud-native SOAR solution that helps security teams respond faster and more effectively.
Trellix
A cybersecurity company that provides an extended detection and response (XDR) platform.
Devo
A cloud-native security data platform with SIEM, SOAR, and threat intelligence.
IBM Security QRadar SIEM
An enterprise SIEM product that consolidates log source event data from thousands of devices.
Securonix
A cloud-native SIEM platform focused on user and entity behavior analytics (UEBA).
Sumo Logic Cloud SIEM
A cloud-native SIEM that provides security analytics and threat detection for modern applications.
Fortinet FortiSIEM
A SIEM solution that provides visibility, correlation, and analytics across the IT infrastructure.
Devo Security Data Platform
A cloud-native platform for logging, security analytics, and SOAR at scale.
Logz.io
A cloud-native platform based on open-source ELK and OpenSearch for log analytics and SIEM.
Trellix XDR
An open and native XDR platform that helps organizations gain confidence in their protection and resilience.
AT&T Cybersecurity Managed XDR
A managed service that provides 24/7 threat detection and response.
IBM QRadar
A SIEM platform that helps security teams accurately detect and prioritize threats across the enterprise.
Securonix Next-Gen SIEM
A cloud-native SIEM platform that combines log management, UEBA, and SOAR.
Darktrace DETECT & RESPOND
An AI-powered platform that detects and responds to cyber-threats in real time.
FortiSIEM
A SIEM solution that provides unified visibility and analytics across the entire security fabric.
Sumo Logic Cloud SIEM
A cloud-native SIEM that provides real-time security analytics and threat detection for modern applications and cloud environments.
Trellix XDR
An open and integrated XDR platform that provides comprehensive threat detection, investigation, and response.
RSA NetWitness Platform
An evolved SIEM and XDR platform that provides comprehensive threat detection, investigation, and response.
ArcSight Enterprise Security Manager
A comprehensive SIEM platform for collecting, correlating, and reporting on security event information.