Arcanna

    INTEGRATIONS & ECOSYSTEM

    Arcanna integrates seamlessly within SIEM, SOAR, EDR, NDR, XDR, Agentic Systems, and LLM-enabled SOC workflows.

    Chronicle

    Chronicle

    Uses Chronicle detections and context to power governed decisions and workflows.

    SIEMSOAR
    Read integration case study
    QRadar

    QRadar

    Connects QRadar events and offenses to Arcanna for faster, higher-quality triage.

    SIEM
    Read integration case study
    Splunk

    Splunk

    Brings Splunk alerts, fields, and context into Arcanna for consistent, governed decisions.

    SIEM
    Read integration case study
    CrowdStrike Falcon

    CrowdStrike Falcon

    Enriches Arcanna decisions with Falcon detections and endpoint insights.

    SIEMSOAREDR
    Read integration case study
    Swimlane

    Swimlane

    Executes safe, governed actions in Swimlane based on Arcanna's decisions.

    SOAR
    Read integration case study
    AlienVault

    AlienVault

    Enriches alerts with AlienVault OTX threat indicators for better triage outcomes.

    Threat Intelligence
    Snort

    Snort

    Uses Snort signatures and alerts as additional signal for decision accuracy.

    Threat Intelligence
    MalwareBazaar

    MalwareBazaar

    Provides malware intelligence to strengthen Arcanna's decision rationale.

    Threat Intelligence
    Cortex XSOAR

    Cortex XSOAR

    Orchestrates XSOAR actions with Arcanna's human-aligned decision outputs.

    SOAR
    FortiSOAR

    FortiSOAR

    Executes FortiSOAR playbooks using Arcanna's explainable, governed decisions.

    SOAR
    Read integration case study
    Microsoft Sentinel

    Microsoft Sentinel

    Feeds Sentinel with decision outputs and orchestrates SOAR actions safely.

    SOAR
    VirusTotal

    VirusTotal

    Adds file, URL, and hash intelligence to support explainable SOC decisions.

    Threat Intelligence
    DFIR-IRIS

    DFIR-IRIS

    Pushes evidence and decision context to DFIR-IRIS for streamlined investigations.

    Ticketing
    OTOBO

    OTOBO

    Automates case creation and updates in OTOBO based on Arcanna decisions.

    Ticketing
    Rapid7

    Rapid7

    Triggers Rapid7 automation workflows using Arcanna's high-confidence decisions.

    SOAR
    Sumo Logic

    Sumo Logic

    Ingests alerts and context from Sumo Logic to drive accurate, explainable SOC decisions.

    SIEM
    ThreatConnect

    ThreatConnect

    Passes enriched context and decisions into ThreatConnect for coordinated actions.

    Ticketing
    Slack

    Slack

    Sends decision summaries and investigation context directly into Slack channels.

    Ticketing
    TheHIVE

    TheHIVE

    Creates and updates TheHIVE cases based on Arcanna's governed decisions.

    Ticketing
    Cisco Umbrella

    Cisco Umbrella

    Adds Umbrella DNS and network insights to strengthen decision context.

    SIEM
    Elasticsearch

    Elasticsearch

    Pulls normalized Elasticsearch events to support accurate SOC decisioning.

    SIEM
    Abuse.ch

    Abuse.ch

    Enriches decisions with Abuse.ch threat feeds for faster, safer triage.

    Threat Intelligence
    OpenSearch

    OpenSearch

    Uses OpenSearch logs and queries as decision context across SOC workflows.

    Other