THE HIVE AND CORTEX for ELASTICSEARCH

251d9cf1b2bbf705d23f4aa7496b1704.png

Empowering Cyber First Responders to Triage Alerts. Investigate Incidents. Automate Analysis & Response.

TheHive & Cortex, are beloved solutions trusted by the world's leading cyber security teams.

While our foundation is rooted in open-source, StrangeBee’s corporate mission is to provide demanding organisations with enterprise-grade solutions both on-premise and in the cloud.

Hundreds of SOC, CERT & CSIRT teams woldwide rely daily on it to handle their security incidents.

What’s TheHive?

A 4-IN-1 SECURITY INCIDENT RESPONSE PLATFORM

A scalable, open source and free Security Incident Response Platform, tightly integrated with MISP (Malware Information Sharing Platform), designed to make life easier for SOCs, CSIRTs, CERTs and any information security practitioner dealing with security incidents that need to be investigated and acted upon swiftly.

What’s Cortex?

POWERFUL OBSERVABLE ANALYSIS AND ACTIVE RESPONSE ENGINE

Thanks to Cortex, observables such as IP and email addresses, URLs, domain names, files or hashes can be analyzed using a Web interface. Analysts can also automate these operations and submit large sets of observables from TheHive or through the Cortex REST API from alternative SIRP platforms, custom scripts or MISP. When used in conjunction with TheHive, Cortex largely facilitates the containment phase thanks to its Active Response features.

BVyomx8OVAhXZI0Rp4eWV3vrPYFE3S5P2hpvri4p.png
8FNDlDs7udZN3jVBxcBrPj7CXL5SGekSga5R62Uy.png