Skip to content
  • There are no suggestions because the search field is empty.

RSA NetWitness® Orchestrator Supported Interoperabilities

  • Vendor Name: Active Directory Authentication
  • Interoperablity Description: Query active directory for user and system details using different attributes like email, username, system name etc.

  • Vendor Name: Active Directory Query
  • Interoperablity Description: Query active directory for user, computer and other objects in real time from RSA NetWitness Orchestrator's automated playbooks.

  • Vendor Name: AlgoSec
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with AlgoSec BusinessFlow, Firewall Analyzer, and FireFlow.

  • Vendor Name: AlienVault OTX
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with AlienVault OTX to enable data enrichment and IOC hunting.

  • Vendor Name: Amazon Web Services
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with AWS for managing images, snapshots, and instances.

  • Vendor Name: Anomali
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with ThreatStream for forensics and malware analysis.

  • Vendor Name: Blockade
  • Interoperablity Description: Blockade brings antivirus-like capabilities to users who run the Chrome browser, blocking malicious resources from being viewed or loaded inside of the browser.

  • Vendor Name: Blue Turtle
  • Interoperablity Description: Blue Turtle is one of South Africa’s leading enterprise technology management companies, focused on IT and Service Management solutions.

  • Vendor Name: BMC RemedyOnDemand
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with RemedyOnDemand for ticket management.

  • Vendor Name: Box
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Box to manage Box users.

  • Vendor Name: Carbon Black Defense
  • Interoperablity Description: Next-generation antivirus + EDR in one cloud-delivered platform that stops range of malware and non-malware attacks.

  • Vendor Name: Carbon Black Enterprise Protection
  • Interoperablity Description: Reduced risk and exposure by automating response to security incidents and using rich endpoint data from Carbon Black and automated playbooks from RSA NetWitness Orchestrator.

  • Vendor Name: Carbon Black Enterprise Response
  • Interoperablity Description: Query and take action across your enterprise using Carbon Black Live Response from RSA NetWitness Orchestrator's playbooks.

  • Vendor Name: Censys
  • Interoperablity Description: Censys lets researchers find specific hosts and create aggregate reports on how devices, websites, and certificates are configured and deployed.

  • Vendor Name: Check Point Firewall
  • Interoperablity Description: Automatically update IOC blacklist and change firewall policy from RSA NetWitness Orchestrator Enterprise based on the incident investigation data.

  • Vendor Name: Check Point SandBlast
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Check Point SandBlast to help prevent malware and zero-day attacks.

  • Vendor Name: Check Point SandBlast Appliance
  • Interoperablity Description: This integration allows you to query, upload and download data using Check Point Sandblast on a local gateway.

  • Vendor Name: Cisco AMP
  • Interoperablity Description: AMP continuously analyzes file activity across your extended network, so you can quickly detect, contain, and remove advanced malware.

  • Vendor Name: Cisco CloudLock
  • Interoperablity Description: Cloudlock is a cloud-native CASB that helps protect your cloud users, data, and apps.

  • Vendor Name: Cisco Email Security
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Cisco Email Security to protect against ransomware, business email compromise, spoofing, and phishing.

  • Vendor Name: Cisco Meraki
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Cisco Meraki for device and firewall management.

  • Vendor Name: Cisco Spark
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with messaging platform Cisco Spark for user and team management.

  • Vendor Name: Cisco Threat Grid
  • Interoperablity Description: Threat Grid combines advanced sandboxing with threat intelligence into one unified solution to protect organizations from malware.

  • Vendor Name: Cisco Umbrella Investigate
  • Interoperablity Description: Cisco Umbrella Investigate provides a complete view of Internet domains, IP addresses, and systems to pinpoint attackers’ infrastructures and predict future threats.

  • Vendor Name: Confer
  • Interoperablity Description: Collect alerts from Confer and create incidents inside of RSA NetWitness Orchestrator.

  • Vendor Name: Credence Security
  • Interoperablity Description: Cyber and IT security technologies and solutions that protect organisations against advanced persistent threats, malicious adversaries and internal malpractice.

  • Vendor Name: CrowdStrike Falcon Host
  • Interoperablity Description: Automatically check reputation of files, URL and IP addresses, query endpoint for rich forensics data and take actions back via RSA NetWitness Orchestrator playbooks and from investigation war-room.

  • Vendor Name: CrowdStrike Falcon Intel
  • Interoperablity Description: Automatically check reputation of files, URL and IP addresses, query endpoint for rich forensics data and take actions back via RSA NetWitness Orchestrator playbooks.

  • Vendor Name: CrowdStrike Falcon Streaming
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with the Falcon Streaming API to provide a constant source of information for real-time threat detection and prevention.

  • Vendor Name: Cuckoo
  • Interoperablity Description: Analyze malware using the open source Cuckoo sandbox via automated playbooks.

  • Vendor Name: CVE Search
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with CVE Search for vulnerability management.

  • Vendor Name: CyberArk
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with CyberArk Application Identity Manager for accounts and credentials.

  • Vendor Name: Cybereason
  • Interoperablity Description: This integration enables search for connections and processes on Cybereason.

  • Vendor Name: Cylance
  • Interoperablity Description: Automatically check the threat intelligence of files and hashes with the Cylance Inifinity API.

  • Vendor Name: Cylance
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Cylance Infinity for threat intelligence.

  • Vendor Name: Cysec Cyber Security
  • Interoperablity Description: Cysec specializes in information security and data communication, providing integration and consulting for a range of technologies.

  • Vendor Name: Dell SecureWorks
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Dell SecureWorks to enable ticket management with Dell's Counter Threat Operations Center.

  • Vendor Name: Digital Shadows
  • Interoperablity Description: Digital Shadows monitors and manages an organization's digital risk across the widest range of data sources within the open, deep, and dark web.

  • Vendor Name: doIT Solutions
  • Interoperablity Description: doIT solutions GmbH offers turnkey IT security and networking solutions and handle IT projects from the early stage to conception, implementation, and operation.

  • Vendor Name: Domain Tools
  • Interoperablity Description: Query cyber threat intelligence data about domains, IP and URLs from DomainTools.

  • Vendor Name: DRS
  • Interoperablity Description: ICT services and solutions provider specialising in providing innovation and agility in security, risk management and governance.

  • Vendor Name: Duo Access
  • Interoperablity Description: Duo is a comprehensive security solution confirms the identity of users and health of their devices before they connect to your applications.

  • Vendor Name: DynTek
  • Interoperablity Description: Optimizing your enterprise through the convergence of business and IT strategy.

  • Vendor Name: Elasticsearch
  • Interoperablity Description: Run custom and pre-defined queries against your Elasticsearch instance to look for IOC, analyze logs or other tasks.

  • Vendor Name: Endgame
  • Interoperablity Description: Endgame enables endpoint protection built to stop advanced attacks before damage and loss occurs.

  • Vendor Name: EWS
  • Interoperablity Description: Search and delete malicious email using EWS API from within RSA NetWitness Orchestrator playbooks.

  • Vendor Name: Exabeam
  • Interoperablity Description: Automatically enrich incident data with user risk score and complete session details from Exabeam and trigger responses to watchlist based on investigation.

  • Vendor Name: F5 Networks
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with F5 for firewall policy management.

  • Vendor Name: Farsight Security
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Farsight Security to access real-time and historical Passive Domain Name System data.

  • Vendor Name: FireEye AX
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with FireEye AX for malware analysis.

  • Vendor Name: FireEye iSight
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with FireEye iSight for threat intelligence.

  • Vendor Name: Forcepoint CASB
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Forcepoint CASB to provide visibility and control over sanctioned and unsanctioned cloud apps.

  • Vendor Name: Forcepoint Triton
  • Interoperablity Description: Automatically whitelist and blacklist web URLs in Forcepoint Triton from within RSA NetWitness Orchestrator playbooks.

  • Vendor Name: Giphy
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Giphy for displaying GIFs in the War Room to enhance discussions.

  • Vendor Name: Google Apps
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with both GSuite and Admin API for authentication and messaging.

  • Vendor Name: GRR
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with GRR to enable Rapid Response framework for investigations.

  • Vendor Name: GuardiCore
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with GuardiCore to provide data center breach detection.

  • Vendor Name: Guidance EnCase
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with EnCase to request scans of specific endpoints.

  • Vendor Name:

  • Vendor Name: Icebrg
  • Interoperablity Description: Icebrg reduces risk by accelerating threat detection, triage, and response to rapidly-evolving breaches across global networks.

  • Vendor Name: iDefense
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with iDefense for contextual, timely, and actionable security intelligence.

  • Vendor Name: Imperva
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Incapsula to manage sites and IPs.

  • Vendor Name: Intsights
  • Interoperablity Description: IntSights delivers rapid, accurate cyberthreat intelligence and incident mitigation in real time.

  • Vendor Name: ipinfo
  • Interoperablity Description: RSA NetWitness Orchestrator  integrates with the ipinfo.io API to get data about an IP address.

  • Vendor Name: IsItPhishing
  • Interoperablity Description: Collaborative web service that provides validation on whether a URL is a phishing page.

  • Vendor Name: Jamf
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Jamf for comprehensive device management.

  • Vendor Name: Jira Software
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Jira for ticket management.

  • Vendor Name: Joe Security Sandbox
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Joe Security Sandbox to automate detonation and malware analysis.

  • Vendor Name: Kafka
  • Interoperablity Description: Kafka is an open-source distributed streaming platform.

  • Vendor Name: Kenna
  • Interoperablity Description: Kenna is a Risk Intelligence & Vulnerability platform that enables InfoSec teams to prioritize and remediate vulnerabilities faster.

  • Vendor Name: Koodous
  • Interoperablity Description: Check Android app samples against the Koodous API using this integration.

  • Vendor Name: Lastline Analyst
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Lastline Analyst for advanced malware isolation and inspection.

  • Vendor Name: Lockpath
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with Keylight, an enterprise GRC platform with tools for managing risk and compliance.

  • Vendor Name: LogRhythm
  • Interoperablity Description: Create incidents from alarms in Logrhythm automatically and search for logs from within RSA NetWitness Orchestrator interface.

  • Vendor Name: Mail Listener
  • Interoperablity Description: Automatically create incidents from the emails in a security mailbox. Custom parsers can trigger different types from same mailbox.

  • Vendor Name: Mail Sender
  • Interoperablity Description: Automatically send notification emails for task assignment, incident assignment or other actions from RSA NetWitness Orchestrator.

  • Vendor Name: Malwr
  • Interoperablity Description: Analyze files using the Malwr sandbox using this integration.

  • Vendor Name: McAfee Active Response
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with McAfee Active Response for comprehensive endpoint detection and response.

  • Vendor Name: McAfee Advanced Threat Defense
  • Interoperablity Description: RSA NetWitness Orchestrator integrates with McAfee Advanced Threat Defense for protection against stealthy