INTEGRATIONS

Works with Your Existing Security Stack

RedEye connects seamlessly with 24+ security tools across SIEM, EDR, cloud security, ticketing, and SOAR platforms.

Log Sources

Ingest security alerts from your existing monitoring tools

SIEM Platforms

Splunk

SIEM
REST API / HEC

Microsoft Sentinel

SIEM
REST API / Logic Apps

IBM QRadar

SIEM
REST API / Syslog
EDR / XDR Platforms

CrowdStrike Falcon

EDR / XDR
REST API / Webhooks

SentinelOne

EDR / XDR
REST API / Webhooks

Microsoft Defender for Endpoint

EDR / XDR
REST API / Logic Apps

Palo Alto Cortex XDR

EDR / XDR
REST API / Webhooks
Cloud Security

AWS GuardDuty

Cloud Security
REST API / EventBridge

Microsoft Defender for Cloud

Cloud Security
REST API / Logic Apps

Google Cloud Security Command Center

Cloud Security
REST API / Webhooks

Proofpoint TAP

Email Security
REST API

Mimecast

Email Security
REST API / Logic Apps
Network Security

Palo Alto Networks Firewall

Network Security
REST API / Syslog

Fortinet FortiGate

Network Security
REST API / Syslog

Cisco Secure Firewall

Network Security
REST API / Syslog
Identity & Access Management

Okta

Identity
REST API / Webhooks

Microsoft Entra ID

Identity
REST API / Graph API

Alert Destinations

Route triaged alerts to your incident response and ticketing systems

Ticketing Systems

Jira Service Management

Ticketing
REST API

ServiceNow

Ticketing
REST API
Incident Management

PagerDuty

Incident Management
REST API / Webhooks

Opsgenie

Incident Management
REST API / Webhooks
Communication Platforms

Slack

Communication
Webhooks

Microsoft Teams

Communication
Webhooks / Connectors
Security Orchestration (SOAR)

Palo Alto Cortex XSOAR

SOAR
REST API

Splunk SOAR (Phantom)

SOAR
REST API

Swimlane

SOAR
REST API