TheHive is a scalable 3-in-1 open source and free Security Incident Response Platform designed to make life easier for SOCs, CSIRTs, CERTs and any information security practitioner dealing with security incidents that need to be investigated and acted upon swiftly. It is the perfect companion to MISP. You can synchronize it with one or multiple MISP instances to start investigations out of MISP events. You can also export an investigation's results as a MISP event to help your peers detect and react to attacks you've dealt with. Additionally, when TheHive is used in conjunction with Cortex, security analysts and researchers can easily analyze tens if not hundreds of observables. Multiple analysts from one organization can work together on the same case simultaneously. For example, an analyst may deal with malware analysis while another may work on tracking C2 beaconing activity on proxy logs as soon as IOCs have been added by their coworker.

Features

  • Collaboration is at the heart of TheHive
  • Multi-tenancy and fine grained user profiles
  • Work and collaborate on a same case
  • Within TheHive, every investigation corresponds to a case
  • Cases can be created from scratch or from MISP events, SIEM alerts, etc.
  • Each case can be broken down into one or more tasks

Project Samples

Project Activity

See All Activity >

Categories

Security, SIEM

License

Affero GNU Public License

Follow TheHive

TheHive Web Site

You Might Also Like
MongoDB Atlas runs apps anywhere Icon
MongoDB Atlas runs apps anywhere

Deploy in 115+ regions with the modern database for every enterprise.

MongoDB Atlas gives you the freedom to build and run modern applications anywhere—across AWS, Azure, and Google Cloud. With global availability in over 115 regions, Atlas lets you deploy close to your users, meet compliance needs, and scale with confidence across any geography.
Start Free
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of TheHive!

Additional Project Details

Programming Language

Scala

Related Categories

Scala Security Software, Scala SIEM Tool

Registered

2022-03-17