Cybereason   Connector

Active Directory API Connector

The Cybereason Defense Platform combines endpoint prevention, detection, and response all in one lightweight agent. The Cybereason Defense Platform moves beyond endless alerting to instead recognize, expose, and end malicious operations before they take hold. The result: Defenders can end attacks in minutes.

Qualys API Connector

Example widgets from the Cybereason Defense Platform:

Qualys API Connector


EDR: Detection in Seconds, Remediation in Minutes

Cybereason EDR consolidates intelligence about each attack into a contextualized view of the full attack narrative to deliver correlated attack data in an easy-to-read, interactive graphical interface called a Malop (malicious operation) which allows implementation of remediation actions automatically or manually with a click of the mouse.


Listening Connections

ENDPOINT CONTROLS: Securely Manage the Endpoint

Cybereason Endpoint Controls delivers efficient management of specific policies, personal firewalls, and whole disk encryption across a range of device types to satisfy the strictest compliance requirements and protect sensitive data in the case of an incident or lost device.

Unprotected Devices

Malicious Drivers

THREAT INTELLIGENCE: Over the Horizon Threat Visibility

The Cybereason Nocturnus team continuously monitors the globe to proactively uncover the latest malicious operations, sophisticated threat actors, new attack methodologies and exploitable vulnerabilities so your team is prepared for emerging threats as well as provides the technical expertise for rapid containment and incident response.

Cloud Protection

Network Interfaces

CWPP: Secure the Cloud

The Cybereason Cloud Workload Protection Platform solution enables your development and security teams to protect critical workloads against emerging threats and undiscovered vulnerabilities with a lightweight agent that protects your organization's public, private and hybrid cloud deployments along with on-premises data centers all managed through a single console.



Cybereason Prevention employs a multi-layered approach that includes intelligence-based convictions to block known threats and machine learning algorithms that analyze behavioral and static attributes to instantly block fileless attacks, new malware and ransomware variants, and other novel threats.

Example chart types from the Cybereason Defense Platform

Chart types are an enhancement beyond what would be available in the native Cybereason platform and are an example Stratiam value-added features. Actual platform visualisations may differ to what is demonstrated in the concepts below. All charts have linked drill-paths for further data-exploration.

Cross Correlate

Monitor devices in Cybereason alongside other platforms in your IT Monitoring suite of tools. Then use the combined signals from both to cross-correlate and surface completely unique views.

Threat Explorer

Explore threats in Cybereason, combined with other platforms (e.g. Cylance) Use the combined signals from both to cross-correlate and surface completely unique views.

Connecting to Cybereason via our API connector is easy, you simply need to request a trial, after which we'll help set you up with your API credentials, select visualisation types and relevant permissions to get started. If you have other data-services you are interested in connecting to, we'd recommend checking out our other data-connectors.