Partners & Integrations
Effective security programs require integrated solutions. Break down silos, augment existing security tools and make smarter decisions with integrated threat intelligence.
101domains
101domain is an established worldwide leader in domain management with over fifteen years of experience providing international domain name solutions for tens of thousands of clients. Their suite of services is designed to assist website owners of all sizes with domain management, trademark protection, DNS management, and more domain services.
Alibaba
ZeroFox's Alibaba Marketplace data source provides comprehensive protection and monitoring for brand infringement and the unauthorized resale of counterfeit goods. Monitor for counterfeit goods related to your brand and quickly identify fake products and malicious posts. Counterfiets and stolen goods can lead to lost customer trust and reputation damage.
Alibaba Cloud Computing (Beijing) Co., Ltd.
Alibaba Cloud is a leading global provider of domain names in China marketplace, and includes a comprehensive suite of global cloud computing services to business.
AlienVault - AT&T Cybersecurity
Add the ZeroFox AlienApp to your AT&T Cybersecurity solutions to broaden your visibility into threats targeting your organization from public attack surfaces.
AliExpress
ZeroFox's AliExpress Marketplace data source provides comprehensive protection and monitoring for brand infringement and the unauthorized resale of counterfeit goods. Monitor for counterfeit goods related to your brand and quickly identify fake products and malicious posts. Counterfiets and stolen goods can lead to lost customer trust and reputation damage.
Amazon
ZeroFox's Amazon Marketplace data source provides comprehensive protection and monitoring for brand infringement and the unauthorized resale of counterfeit goods. Monitor for counterfeit goods related to your brand and quickly identify fake products and malicious posts. Counterfeits and stolen goods can lead to lost customer trust and reputation damage.
Amazon Registrar, Inc.
Amazon Registrar, Inc. is an Amazon company that is accredited by ICANN to register domains. AWS resells domain names that are registered with ICANN-accredited registrars.
Amazon s3 Buckets
ZeroFox's Amazon s3 data source provides advanced detection to discover unprotected Amazon S3 buckets & files, identify potential vulnerabilities and protect sensitive information and company data.
Anomali
The ZeroFox for Anomali app extends social media visibility across the cyber threat landscape into the Anomali Threat Platform. Identify threats outside the firewall on the platforms where you do business everyday: such as social media and digital platforms. Within a single view of threats across a wide range of data sources in the Anomali Threat Platform, streamline your security program quickly and effectively. ZeroFox provides alert and IoC integration.
AppChina
ZeroFox's AppChina Store data source provides comprehensive protection and monitoring for apps on the AppChina Store. Monitor for apps using your brand name for phishing, scams, or other forms of brand abuse. Fraudulent mobile apps can be used to trick customers into downloading malware onto their devices.
Apple App Store
ZeroFox's Apple App Store data source provides comprehensive protection and monitoring for apps on the Apple Store. Monitor for apps using your brand name for phishing, scams, or other forms of brand abuse. Fraudulent mobile apps can be used to trick customers into downloading malware onto their devices.
ArcSight Enterprise Security Manager
Connect ZeroFox to ArcSight Enterprise Security Manager (ESM) for real-time threat detection and response backed by a powerful, open and intelligent Security Information and Event Management (SIEM).
ArcticWolf
Arctic Wolf Networks is a cybersecurity company that provides security monitoring to detect and respond to cyber threats.
Axonius
Axonius manages and secure devices, users, cloud assets, software, and SaaS apps.
BAIDU Beijing Baidu Netcom Science and Technology Co., Ltd., CN
Beijing Baidu Netcom Science Technology Co. Ltd. offers internet based services. The company provides internet access, internet technology promotion, internet technology development, and other services.
BitBucket
Bitbucket is a Git-based source code repository hosting service owned by Atlassian. Bitbucket offers both commercial plans and free accounts with an unlimited number of private repositories. ZeroFox provides comprehensive protection and monitoring for information leakage of proprietary company data and customer credentials and monitors for sensitive information such as leaked keys or secrets, pre-release initiatives, or private code across Bitbucket's public repositories.
BMC Remedy ARS
The BMC Remedy Action Request System, also know as Remedy or ARS, is a client-server trouble ticketing application produced by BMC and used by organizations to track internal problems and customer-reported issues. ZeroFox provides alert and IoC integration.
Cloudflare, Inc.
Cloudflare is a registrar, in addition to an authoritative DNS provider, that provides one-click secure domain registration and hosting services.
CLOUDFLARENET, US
Cloudflare is a web host and registrar, in addition to an authoritative DNS provider, that provides one-click secure domain registration and hosting services.
CNNIC-ALIBABA-US-NET-AP Alibaba (US) Technology Co., Ltd., CN
Alibaba Cloud is a global and number one provider of domain names in China marketplace, and includes a comprehensive suite of global cloud computing and web hosting services to business.
COGENT-174, US
Cogent Communications, Inc. is a provider of internet services. They offer internet, ethernet, and co-location services.
COMCAST-7922, US
The Comcast Corporation is the biggest cable television company, the second biggest Internet service provider and the third biggest telephone company in the United States. Comcast also offers web hosting provider services, providing web servers on which customers can place their website files for people to access via the Internet.
Crowdstrike Falcon
Falcon is the CrowdStrike platform purpose-built to stop breaches via a unified set of cloud-delivered technologies that prevent all types of attacks — including malware and much more. Integrate ZeroFox with Crowdstrike Falcon to share data between the platforms and extend threat investigation and intelligence solutions.
Cyware
Cyware provides a threat response automation platform that combines cyber fusion, advanced orchestration, and automation to stay ahead of increasingly sophisticated cyber threats affecting enterprises in real-time. ZeroFox integrates with Cyware to provide orchestration of social media and digital platform threat detection and investigation, and provide alert and IoC integration.
D3 Security
D3 SOAR integrates seamlessly with 300+ security solutions in order to act as a centralized hub for your entire infrastructure. ZeroFox integrates with the D3 Platform to provide orchestration of social media and digital platform threat detection and investigation, and provide alert and IoC integration.
Databricks
Databricks is an enterprise software company founded by the original creators of Apache Spark. They develop a web-based platform for working with Spark, that provides automated cluster management and IPython-style notebooks. ZeroFox integrates with Databricks to share data between the platforms and visualize possible vulnerability indicators.
MN Domain Registry, Datacom
MN Domain Registry, Datacom is the first ISP in Mongolia. Datacom Co.,Ltd for TLD MN has been performing naming authority functions under MN since 1996, including domain registration policy development, and accrediting registrars for MN top-level domains.
Datadog
Datadog provides cloud scale application monitoring and log management for cloud applications to help businesses secure their systems, avoid downtime, and improve user experience.
DigitalOcean
DigitalOcean provides developers cloud services that help to deploy and scale applications that run simultaneously on multiple computers. ZeroFox integrates with Digital Ocean to share data between the platforms and visualize possible vulnerability indicators.
DIGITAL PACIFIC-AU Digital Pacific Pty Ltd Australia, AU
Digital Pacific is an Australian provider of web hosting, dedicated servers and domain registration services with 24x7 Australian support.
Discord
ZeroFox's Discord data source provides comprehensive protection and monitoring for malicious content and sensitive data leakage. Monitor chats for malicious links, risky file uploads, information leakage, and other threats on the dark web that could put your brand, executives or customers at risk.
DocuSign
DocuSign offers eSignatures, a way to sign electronically on different devices, through the cloud. Integrate ZeroFox with DocuSign to share data between the platforms for custom business solutions that require electronic signatures.
DomainTools
DomainTools Iris is a proprietary threat intelligence and investigation platform that combines enterprise-grade domain and DNS-based intelligence with an intuitive web interface. Integrate ZeroFox with DomainTools to share data between the platforms and extend threat investigation and intelligence solutions.
DREAMHOST
DreamHost is a Los Angeles-based web hosting provider and domain name registrar. The company hosts in excess of one million domains.
easyDNS Technologies, Inc.
easyDNS Technologies Inc. is a Toronto, Ontario-based Canadian Internet service provider which supplies DNS and web hosting services and operates a mail service called EasyMail.
eBay
ZeroFox's Ebay Marketplace data source provides comprehensive protection and monitoring for brand infingement and the unauthorized resale of counterfeit goods. Monitor for counterfeit goods related to your brand and quickly identify fake products and malicious posts. Counterfiets and stolen goods can lead to lost customer trust and reputation damage.
Elastic (ELK)
Integrate ZeroFox alert data with the Elastic (ELK) SIEM, to leverage its data storage, enrichment, correlation and visualization of threats identified across your public attack surface. Add operational efficiencies using ELK's powerful investigation UI and embedded case management capabilities.
Elastic Search
Elasticsearch is a search engine based on the Lucene library that provides a distributed, multitenant-capable full-text search engine with a HTTP web interface and schema-free JSON documents
EMIRATES-INTERNET Emirates Internet, AE
Emirates Internet has been the Middle East's first and foremost Internet Service since 1995, from Etisalat - the premier ISP in the Middle East. It provides Internet registration, web hosting and other provider services.
Exabeam
Exabeam provides a cloud-native architecture for rapid data ingestion, hyper-quick query performance, powerful behavioral analytics for next-level insights that other tools miss, and automation that changes the way analysts do their jobs.
FACEBOOK, US
Facebook, Inc., is an American technology conglomerate based in Menlo Park, California known for its flagship social media platform. Facebook offers other products and services beyond social networking, including Facebook Messenger and hosts millions of user pages and content.
Forcepoint
Forcepoint, an American multinational corporation software company headquartered in Austin, Texas, that develops computer security software and data protection, cloud access security broker, firewall and cross-domain solutions. Forcepoint was founded in 1994 as an information technology reseller called NetPartners. ZeroFox coverage of the surface, deep and dark web provides additional context and IOCs that traditional threat data feeds cannot.
FortiManager
FortiManager from Fortinet provides tools to help network administrators centrally manage security devices such as firewalls, switches, wireless WAN and access points, VPNs, etc. from a single console, including ability to simplify deployment, provisioning, and connection monitoring. ZeroFox coverage of the surface, deep and dark web provides additional context and IOCs that traditional threat data feeds cannot.
FreshService
Github
ZeroFox's Github data source provides comprehensive protection and monitoring for information leakage of proprietary company data and customer credentials. Monitor for sensitive information such as leaked keys or secrets, pre-release initiatives, or private code across github's public repositories.
Gitlab
GitLab is a web-based DevOps lifecycle tool that provides a Git-repository manager providing wiki, issue-tracking and continuous integration/continuous deployment pipeline features, using an open-source license, developed by GitLab Inc. ZeroFox's Gitlab data source monitors for information leakage of proprietary company data and customer credentials across code repositories.
Glassdoor
ZeroFox's Glassdoor data source provides comprehensive protection and monitoring for offensive or malicious content targeting your employees, recruits and brand. Monitor and remove inappropriate, spam or scam reviews targeting our corporate Glassdoor Pages, as well as fake job listings impersonating your organization, before they reach potential candidates and current employees.
GoDaddy.com, LLC
GoDaddy.com, LLC provides web hosting and domain registration services. They offer email management, web development, website security, and other business solutions.
Google LLC is an American multinational technology company that specializes in Internet-related services and products. It offers web hosting services via its Google Cloud Platform.
Google Chronicle
Chronicle, powered by Google infrastructure, enables cost-effective use of security telemetry to improve SOC productivity and combat modern threats.
Google Chronicle w/Cydres
Google Data Studio
Google Data Studio is a web-based data visualization tool that helps users build customized dashboards and easy-to-understand reports.
Google Domains
Google Domains is a domain registration service launched by Google in January 2015. Unlike a lot of other popular domain registrars, Google Domains does not offer any type of hosting.
Google Play
ZeroFox's Google Play Store data source provides comprehensive protection and monitoring for apps on the Google Play Store. Monitor for apps using your brand name for phishing, scams, or other forms of brand abuse. Fraudulent mobile apps can be used to trick customers into downloading malware onto their devices.
Google Workspace (formerly GSuite)
Google Workspace (formerly GSuite) is a collection of cloud computing, productivity and collaboration tools, software and products developed and marketed by Google. Integrate ZeroFox with Google Workspace to share data between the platforms for custom email, file management and collaborative solutions.
Google Workspaces - Compromised Credential Validation
GOOGLE, US
Google LLC is an American multinational technology company that specializes in Internet-related services and products. It offers web hosting services via its Google Cloud Platform.
HINET Data Communication Business Group, TW
HiNet is the brand name for the internet services provided by the Chunghwa Telecom's Data Communications Business Group (CHT-D), the largest telecommunications company in the Republic of China (Taiwan). It provides web hosting, domain registration, telecom services and more.
HK Domain Name Service
HKDNR is a wholly owned subsidiary of HKIRC. HKDNR is administered by the Hong Kong Internet Registration Corporation (HKIRC), the only organization endorsed by the Hong Kong Government to undertake the administration of 'hk' domain names.
Hunters
Hunters Security Operations Center (SOC) Platform Empower security teams to automatically detect, investigate & respond to real incidents better than SIEM.
I2P
ZeroFox's I2P data source provides comprehensive protection and monitoring for sensitive information leakage, fraud and other threats facing your organization on the dark web. Monitor for credentials, credit card information, sensitive corporate data, cyber threats, scams, or fraud related to your organization on .i2p sites.
IBM® QRadar®
ZeroFox integration with IBM® QRadar® Security Information and Event Management (SIEM) helps security teams accurately detect and prioritize threats across the enterprise, to respond quickly to reduce the impact of incidents. Correlate different information and aggregate related events into single alerts to accelerate incident analysis and remediation.
IBM Security SOAR (formerly IBM® Resilient®)
IBM Security SOAR, formerly known as IBM Security Resilient®, is a SOAR tool that introduces efficiency into your Security Operations Center (SOC). It maximizes your security tools by integrating with them, guides your team through the incident response (IR) process with playbooks, and leverages automation to reduce repetitive tasks and allow your team to focus on the tasks that matter the most. Organizations use IBM Security SOAR to consume alerts generated by ZeroFox, initiate takedown processes, track requests, extract IOCs and pass them to their TIP or other security platforms.
IRC
ZeroFox's IRC data source provides comprehensive protection and monitoring for sensitive information leakage, fraud and other threats facing your organization on IRC chat rooms Monitor for credentials, credit card information, sensitive corporate data, cyber threats, scams, or fraud related to your organization in these chat rooms.
Jira
Jira is a proprietary issue tracking product developed by Atlassian that allows bug tracking and agile project management. ZeroFox provides alert and IoC integration.
LogMeIn
LogMeIn, Inc. is a provider of software as a service (SaaS) and cloud-based remote work tools for collaboration, IT management and customer engagement. The company's products give users and administrators access to remote computers.
LogRhythm
Leverage ZeroFox alerts from within LogRhythm unified solution for Threat Lifecycle Management (TLM) to minimize time to detect and respond to cyberthreats.
MailGun
Mailgun is an email automation service built for developers. It offers a complete cloud-based email service for sending, receiving and tracking emails sent through your websites and applications. Integrate ZeroFox with MailGun to share data between the platforms for custom business and customer communications solutions.
Maltego
Maltego is software used for open-source intelligence and forensics. It focuses on providing a library for discovery of data from open sources, and visualizing that information in a graph format, suitable for link analysis and data mining. Integrate ZeroFox alert data into Maltego to monitor and map malicious activity targeting brands, executives and customers.
ManageEngine ServiceDesk Plus
ServiceDesk Plus is a service management solution that combines IT service management, IT asset management, and CMDB with enterprise service management capabilities for departments including HR, facilities, and finance
MarkMonitor Inc.
MarkMonitor Inc., part of parent company Clarivate Analytics (which merged with Churchill Capital Corp), develops and markets brand protection software and services to combat counterfeiting, piracy, cybersquatting and paid search scams in four categories; domain management, anti-fraud software, brand protection, and anti-piracy.
MercadoLibre
ZeroFox's Mercadolibra Marketplace data source provides comprehensive protection and monitoring for brand infingement and the unauthorized resale of counterfeit goods. Monitor for counterfeit goods related to your brand and quickly identify fake products and malicious posts. Counterfiets and stolen goods can lead to lost customer trust and reputation damage.
MIcro Focus Arcsight
Micro Focus ArcSight is a cyber security product, first released in 2000, that provides big data security analytics and intelligence software for security information and event management (SIEM) and log management.
Microsoft 365
Microsoft 365 (formerly Microsoft Office 365) subscription services allows use of the Microsoft Office cloud-based software-as-a-service products for business environments. Integrate ZeroFox with Microsoft 365 to share data between the platforms for custom email, file management and collaborative solutions. ZeroFox can provide phishing and BEC protection for this solution.
Microsoft Active Directory
Microsoft Active Directory (AD) is a directory service that runs on Microsoft Windows Server. The main function of AD is to enable administrators to manage permissions and control access to network resources. The ZeroFox Active Directory Integration allows automated remediation actions to be taken on Active Directory users with known found instances of credential compromise and allows additional functionality to synchronize Active Directory users.
Microsoft Active Directory - User Sync
Microsoft Azure
ZeroFox's Microsoft Azure data source provides advanced detection to discover unprotected Azure buckets & files, identify potential vulnerabilities and protect sensitive information and company data.
Microsoft Azure AD
Azure AD Connect is a tool for connecting on premises identity infrastructure to Microsoft Azure AD.
Microsoft Azure Sentinel
ZeroFox integration with Microsoft's Azure Sentinel helps security teams quickly find and prioritize threats across their public attack surface. ZeroFox alert information is streamed to Sentinel via our data connector so that security professionals can accelerate incident analysis and remediation.
Microsoft Sentinel: Alerts
Microsoft Teams
ZeroFox's Microsoft Teams integration allows customers to receive alert notifications from the ZeroFox Platform in a designated channel in their Teams workspace. Microsoft Teams is a proprietary business communication platform as part of Microsoft 365, offering workspace chat and videoconferencing, file storage, and application integration. Monitor for insecure team configurations, malicious actors messaging your team, and non-compliant communication. ZeroFox ensures secure meeting settings and can alert to improper/insecure configuration settings.
MICROSOFT-CORP-MSN-AS-BLOCK, US
Microsoft is an American multinational technology corporation that develops, manufactures, licenses, supports, and sells computer software, consumer electronics, personal computers, and related services. It offers web hosting services via its Microsoft Azure Cloud Platform.
Mimecast
Mimecast provides a set of cloud services designed to provide protection against advanced email-borne threats such as malicious URLs, malware, impersonation attacks, as well as internally generated threats. ZeroFox coverage of the surface, deep and dark web provides malicious domains and additional context and IOCs that traditional threat data feeds cannot.
MISP
MISP is a powerful open source threat intelligence platform organisations can use to store, share and receive information about malware, threats, and vulnerabilities in a structured way
Nessus
Nessus is an open source network security scanner created by Tenable's co-founder. Nessus scans cover a wide range of technologies including operating systems, network devices, hypervisors, databases, web servers, and critical infrastructure.
NESSUS, AT
NESSUS GmbH is an Austrian-based web hosting and internet services company founded in 1999. Over the years, NESSUS has evolved from a web hosting service provider to a server housing and Internet business ISP for organizations of all sizes.
Netskope
Netskope is a security platform that offers cloud-native solutions to businesses for data protection and defense against threats in cloud applications, cloud infrastructure, and the web. Integrate ZeroFox with Netskope to share data across the platforms and extend advanced threat detection across endpoints and their associated cloud applications.
Network Solutions, LLC
Network Solutions, LLC is an American-based subsidiary of Web.com, the 4th largest .com domain name registrar with over 6.7 million registrations as of August 2018. In addition, Network Solutions provides web services such as web hosting, website design and online marketing, including search engine optimization and pay per click management.
NEUSTAR-AS6, US
NeuStar, Inc. is a provider of real-time information and analysis. The company operates in three segments: carrier services, enterprise services and information services including web hosting.
Norton Lifelock
Norton Lifelock is a cloud software platform that helps individuals secure their identities across the internet, website web services and devices. The ZeroFox Norton Lifelock Integration allows automated remediation actions to be taken on Norton Lifelock users with known found instances of credential compromise.
Nuix
Nuix builds and markets software for eDiscovery, digital forensic investigation, security, intelligence, governance, risk and compliance based on the Nuix Engine. Nuix compliance and information governance solutions help to make sense of unstructured content, classify it for records, protect and secure it, answer difficult questions about it, and transform it to maximize its value. Integrate ZeroFox with Nuix to enable in-platform indicators shared from detected threat data.
Okta
Okta is a cloud software platform that helps companies manage and secure user authentication into applications, and for developers to build identity controls into applications, website web services and devices. The ZeroFox Okta Integration allows automated remediation actions to be taken on Okta users with known found instances of credential compromise.
Okta
Okta is the leading independent identity provider. The Okta Identity Cloud enables organizations to securely connect people to technologies. With more than 7,000 pre-built integrations to applications and infrastructure providers, Okta provides simple and secure access to people and organizations everywhere for more than 10,000 organizations to help protect the identities of their workforces and customers.
OpenBazaar
ZeroFox's OpenBazaar data source provides comprehensive protection and monitoring for unauthorized resale and counterfeit goods and brand infringement on the popular decentralized, peer-to-peer e-commerce site, OpenBazaar. Monitor for counterfeit goods related to your brand and search for specific terms across the dark web.
OpenDNS/Cisco Umbrella
Proactive threat intelligence demands real-time web filter enforcement. ZeroFox APIs integrate with Cisco Umbrella (formerly OpenDNS) to provide increased security. Users can input their server information into the ZeroFox platform for a seamless integration.
ORACLE-BMC-31898, US
Oracle Cloud is a cloud computing service offered by Oracle Corporation providing servers, storage, network, applications and services through a global network of Oracle Corporation managed data centers. The company allows these services to be provisioned on demand over the Internet.
Palo Alto - Cortex XSOAR
ZeroFox integrates with Palo Alto Networks Cortex XSOAR Platform (formerly Demisto) to provide orchestration of social media and digital platform threat detection and investigation, and provide alert and IoC integration via ZeroFox Threat Feed API. Install from Cortex XSOAR App Library.
Palo Alto MineMeld
MineMeld, by Palo Alto Networks, is an extensible Threat Intelligence processing framework and a 'multi-tool' for threat indicator feeds. MineMeld can be used to collect, aggregate and filter indicators from a variety of sources and make them available for consumption to peers.
Pastebin
ZeroFox's Pastebin data source provides comprehensive protection and monitoring for information leakage, counterfeit goods, scams and more as they are shared. Monitor for credentials, credit card information, sensitive corporate data, cyber threats, scams, or fraud related to your organization on pastebin.com.
PingFederate
PingFederate, from Ping Identity, is an enterprise federation server that enables user authentication and single sign-on by leveraging open standards such as SAML and OAuth. It serves as a global authentication authority that allows employees, customers and partners to securely access all the applications they need from any device.
PingOne
PingOne is a cloud-based multi-factor authentication (MFA) service from Ping Identity, enabling customers to embed MFA directly into mobile applications for easy and secure authentication.
Power BI
Part of the Microsoft Power Platform, Power BI is a business analytics service that aims to provide interactive visualizations and business intelligence capabilities with an interface simple enough for end users to create their own reports and dashboards. Integrate ZeroFox alert data directly into Power BI to help security professionals see and understand threats affecting their organization. Use ZeroFox with Power BI to create rich data visualizations and analytics of threats affecting your attack surface.
RACKSPACE
Rackspace Technology, Inc. is an American managed cloud computing company based in Windcrest, Texas, USA. They offer Cloud Storage ("Cloud Files"), virtual private server ("Cloud Servers"), load balancers, databases, backup, and monitoring services via their Rackspace Cloud platform.
Rapid7 insightOps
The Rapid7 Insight Agent automatically collects data from all your endpoints, even those from remote workers and sensitive assets that cannot be actively scanned, or that rarely join the corporate network.
ZeroFox's Reddit data source provides comprehensive protection and monitoring for customer scams and brand infringement threats. Monitor popular subreddits for threats, scams, and other brand reputation risks that could put your organization, employees or customers at risk online.
RSA Archer GRC Platform
The RSA Archer GRC Platform supports business-level management of enterprise governance, risk and compliance (GRC). The platform allows you to adapt a broad range of solutions to your requirements, build new business processes, and integrate with external systems without touching a single line of code. Integrate ZeroFox with RSA Archer GRC to enable in-platform indicators shared from detected threat data.
RSA Netwitness
RSA Netwitness provides security analysts with advanced capabilities for rapidly detecting and resolving known, unknown and targeted attacks. Core RSA NetWitness Platform capabilities include its common data model, scalability and flexible deployment options, as well as its sophisticated analyst toolset, forensic capabilities and reporting engine.
RSS
ZeroFox's RSS data source provides the ability to collect and analyze data from any publicly available RSS feed and look for threats, scams, and other brand reputation risks that could put your organization, employees or customers at risk online.
Salesforce
Salesforce provides customer relationship management services and also provides a complementary suite of enterprise applications focused on customer service, marketing automation, analytics, and application development. ZeroFox integrates with Salesforce to share data between the platforms and visualize possible CRM vulnerability indicators.
Securonix
Securonix provides a versatile investigation workbench and integrated incident response system that provides security analysts the ability to perform visual link analysis of events, accounts, users, access, activities, systems and even network addresses.
SentinelOne
SentinelOne is a cloud-based solution that helps businesses of all sizes manage processes related to the entire threat lifecycle for providing endpoint security. Integrate ZeroFox with SentinelOne to share data across the platforms and extend advanced threat detection across endpoints and their associated cloud applications.
ServiceNow
ServiceNow (SNOW), based in California, is the leading platform-as-a-service provider of cloud-based IT workflow solutions for management of enterprise operations. ZeroFox provides alert and IoC integration.
Slack
ZeroFox's Slack integration allows customers to receive alert notifications from the ZeroFox platform in a designated channel in their Slack workspace. This data source provides comprehensive protection and monitoring for malicious content and sensitive data leakage across Slack channels. Monitor channels for malicious links, risky file uploads, information leakage, and other threats. Protect internal communications and keep employees safe when engaging using Slack.
Sophos
Sophos endpoint security combines the industry's leading malware detection and exploit protection with endpoint detection and response (EDR). Powerful AI using deep learning along with managed threat detection services will future-proof your organization against both new and old threats. Integrate ZeroFox with Sophos to share data across the platforms and extend advanced threat detection across endpoints and their associated cloud applications.
Splunk Cloud
Splunk® Cloud™ delivers the capabilities of Splunk as Software-as-a-Service (SaaS), enabling confident decisions and decisive action on insights from your data without the need to purchase, manage and deploy additional infrastructure. ZeroFox for Splunk enables organizations to visualize and analyze threats directly from the purpose-built Splunk App. Integrate ZeroFox alerts and intelligence and improve security posture through correlation with other internal IT and security data sources.
Splunk Enterprise
Splunk® Enterprise™ is a software product that enables you to search, analyze, and visualize the data gathered from the components of your IT infrastructure or business. You can collect data from devices and applications such as websites, servers, databases, operating systems, and more. ZeroFox for Splunk enables organizations to visualize and analyze threats directly from the purpose-built Splunk App. Integrate ZeroFox alerts and intelligence and improve security posture through correlation with other internal IT and security data sources. Install ZeroFox Data Connector from splunkbase app library.
Splunk Phantom
ZeroFox integrates ZeroFox alerts and Threat Feed to leverage the power of Splunk Phantom with this bi-directional integration. Optimize the analysis of alerts, manage workflows, escalations, and tickets plus perform automated remediations such as takedown requests. Provide alert and IoC integration.
Squarespace Domains, LLC
Squarespace, Inc. is an American website building and hosting company based in New York City, United States. It provides software as a service for website building and hosting, and allows users to use pre-built website templates and drag-and-drop elements to create and modify webpages.
SQUARESPACE, US
Squarespace, Inc. is an American website building and hosting company which is based in New York City, United States. It provides software as a service for website building and hosting, and allows users to use pre-built website templates and drag-and-drop elements to create and modify webpages.
Stack Overflow
ZeroFox's Stack Overflow data source provides comprehensive protection and monitoring for information leakage of proprietary company data and customer credentials, inappropriate content, negative sentiment and other malicious activity. Monitor for leaked data and credentials, inappropriate content, negative sentiment and other cyber threats.
Sumo Logic
With Sumo Logic, users can pull information from several different operational or security platforms into one consolidated dashboard for customized insights at-a-glance. Integrate ZeroFox alert data directly into Sumo Logic to leverage a full suite of logging, analytics and dashboards. Combining ZeroFox's omnichannel protection with Sumo Logic's operational and business intelligence tools delivers a winning formula for managing and securing the complex technology stack and external exposures that modern organizations face.
Sumo Logic SOAR
Sumo Logic provides best-in-class cloud monitoring, log management, Cloud SIEM tools, and real-time insights for web and SaaS based apps.
Swimlane
Swimlane’s SOAR platform helps security operations centers manage the growing volume of alerts more efficiently by automating time-consuming incident response processes. Organizations use Swimlane SOAR to consume alerts generated by ZeroFox, initiate takedown processes, track requests, extract IOCs and pass them to their TIP or other security platforms.
Symantec DeepSight
Symantec DeepSight collects and analyzes publicly available threat and vulnerability information and delivers it to products that subscribe to this information. ZeroFox integrates with Symantec DeepSight to share data between the platforms and extend threat investigation and intelligence solutions.
Symantec SiteMinder
Symantec SiteMinder provides a unified access management platform that applies the appropriate authentication mechanism to positively identify users; provides single sign-on and identity federation for seamless access to any application; enforces granular security policies to stop unauthorized access to sensitive resources; and monitors and manages the entire user session to prevent session hijacking.
Tableau
Tableau is a powerful data visualization and analytics platform used to help simplify raw data for end users. Integrate ZeroFox alert data directly into Tableau to help security professionals see and understand threats affecting their organization. Use ZeroFox with Tableau to create rich data visualizations and analytics of threats affecting your attack surface.
Tanium
Tanium is an endpoint management and endpoint security platform designed to strengthen and optimize an organization’s cybersecurity efforts. The platform gives security teams the tools they need to fortify existing security gaps or completely overhaul their cybersecurity environments, providing complete threat response capabilities from a single endpoint agent. Integrate ZeroFox with Tanium to share data across the platforms and extend advanced threat detection across endpoints and their associated cloud applications.
TAXII Service
TAXII Server is like a database of indicators of compromise (IOCs) and other information that is used in cyber threat intelligence.
Telegram
ZeroFox's Telegram data source provides comprehensive protection and monitoring for malicious content and sensitive data leakage on the dark web. Monitor chats for malicious links, risky file uploads, information leakage, and other threats targeting your brand, executives and customers.
TELEGRAM, RU
Telegram is a freeware, cross-platform, cloud-based instant messaging software and application service. The service also provides end-to-end encrypted video calling, VoIP, file sharing, web hosting, and several other features.
Tenable
Tenable, Inc. is a cybersecurity company based in Maryland. It is known as the creator of the vulnerability scanning software Nessus. Over 30,000 organizations around the globe rely on Tenable to understand and reduce cyber risk. ZeroFox coverage of the surface, deep and dark web provides additional context and IOCs that traditional threat data feeds cannot.
TheHive
Integrate ZeroFox alerts into TheHive Project, an open source Security Incident Response Platform, to gain operational, analytical and response efficiencies. TheHive is designed to make life easier for SOCs, CSIRTs, CERTs and any information security practitioner dealing with security incidents that need to be investigated and acted upon swiftly. Zerofox2TH is a free, open source ZeroFox alert feeder for TheHive. You can use it to feed ZeroFox alerts into TheHive, where they can be previewed and transformed into new cases using pre-defined incident response templates or added into existing ones.
ThreatConnect
ZeroFox for ThreatConnect integrates social intelligence and fuses intelligence, automation, orchestration, and response to enable organizations of any size to be more predictive, proactive, and efficient. ZeroFox provides alert and IoC integration.
ThreatConnect - Key Incidents
ThreatQuotient
ZeroFox shares social indicators with ThreatQuotient™ open and extensible TIP (threat intelligence platform), ThreatQ™, and cybersecurity situation room solution, ThreatQ Investigations, to empower security teams with the context, customization and prioritization needed to make better decisions, accelerate detection and response, and advance team collaboration. With the ZeroFox Threat Feed integration, ThreatQ users can ingest, correlate and take action on attacks made against their organizations via social media. Threat Intelligence teams can trace attacks back to malicious profiles, posts, comments or pages as well as pivot between these different social media objects for context. Network security teams can use ThreatQ and ZeroFox Threat Feed indicators to prevent their users from accessing malicious social objects to prevent attacks. Incident Response teams can use ThreatQ and ZeroFox Threat Feed to compare their organization’s telemetry in incidents with known indicators of compromise.
Tines
Tines is the no-code automation engine for all your workflows, enabling teams to do their best work by limiting time wasted on manual tasks.
Tor
ZeroFox's Tor datasource provides protection and monitoring for malicious content and sensitive data leakage hosted on the Tor network of the dark web. The name is derived from an acronym for the original software project name "The Onion Router". Monitor for sensitive corporate data, cyber threats, scams or illegal usage of your products on the largest dark web network.
Torq SOAR
Torq is the only no-code, low-code, and full-code security automation with true enterprise scalability.
Trello
ZeroFox's Trello data source provides advanced detection to discover potentially exposed confidential files, identify potential vulnerabilities and protect sensitive information and company data.
TripAdvisor
ZeroFox's TripAdvisor data source provides comprehensive protection and monitoring for offensive or malicious content targeting travellers. Monitor for inappropriate, spam, or scam, or negative reviews targeting your TripAdvisor Pages and remove inappropriate posts before they reach consumers.
Tucows, INC.
Tucows Inc. is currently the second-largest domain registrar worldwide and operates OpenSRS, Enom, Ascio and Hover platforms for domain owners and resellers.
TUCOWS, CA
Tucows Inc. is currently the second-largest domain registrar worldwide and operates OpenSRS, Enom, Ascio and Hover, platforms for domain owners and resellers. Tucows also offers customers hosting and other services with NetIdentity.
Tumblr
ZeroFox's Tumblr data source provides comprehensive protection and monitoring for offensive content affecting your brand and business across popular blogs. Monitor Tumblr for threats, scams, and other brand reputation risks and remove malicious posts before they reach blog visitors.
Twilio
Twilio allows software developers to programmatically make and receive phone calls, send and receive text messages, and perform other communication functions using its web service APIs. Integrate ZeroFox with Twilio to share data between the platforms for custom business and customer communications solutions.
TWITTER, US
Twitter is an American microblogging and social networking service that hosts user content, posts, and messages known as "tweets".
US-CERT
US-CERT is a branch of the Office of Cybersecurity and Communications' (CS&C) National Cybersecurity and Communications Integration Center (NCCIC). US-CERT is responsible for analyzing and reducing cyber threats, vulnerabilities, disseminating cyber threat warning information, and coordinating incident response activities. ZeroFox integrates with US-CERT to enable the real-time exchange of machine-readable cyber threat indicators and defensive measures.
Webroot
Webroot delivers multi-vector protection for endpoints and networks and threat intelligence services to protect businesses and individuals in a connected world. ZeroFox coverage of the surface, deep and dark web provides additional context and IOCs that traditional threat data feeds cannot.
Whois Networks Co., Ltd.
Whois is authorized by ICANN to be the authentic source and provides a lookup database of domain registration information such as domain owner, host, etc.
Wix.Com Ltd.
Wix.com, an Israeli software company backed by investor Insight Venture Partners, is a leading cloud-based development platform and domain registrar with over 4 million users worldwide.
Workplace
Workplace is an online collaborative software developed by Facebook, Inc. It facilitates online groupwork, instant messaging, video conferencing, and news sharing. ZeroFox provides comprehensive protection and monitoring for malicious content and sensitive data leakage across this data source. Monitor communication being shared on Workplace for malicious links, risky file uploads, information leakage, inappropriate behavior, and other threats.
YAHOO-GQ1, US
Yahoo is an American web services provider. Yahoo Web Hosting enables small businesses to create and launch a website or online store. Their shared web hosting and WordPress plans include a free SSL certificate, free domain name, and free email address.
Zendesk
Zendesk’s IT service desk software puts multi-channel ticketing and employee self-service portals in a single place. IT teams can efficiently track problems, trouble tickets, changes, and assets while providing service to employees. ZeroFox provides alert and IoC integration.
ZeroFox Advisory Email Notifications
ZeroFox SysLog Provider
Many platforms accept standard Syslog format to ingest data. The ZeroFox Syslog Provider is provided to customers to integrate with any 3rd-party platform that supports syslog, to integrate ZeroFox platform alerts.
ZeroFox Webhook Provider
ZeroNet
ZeroFox's ZeroNet data sources provide comprehensive protection and monitoring for sensitive information leakage, fraud, and other threats facing your organization. Monitor for sensitive corporate data, cyber threats, scams or illegal usage of your products.
Zoom
ZeroFox's Zoom data source provides monitoring for insecure meetings, malicious actors joining your meetings, and non-compliant communication. Protect employees and Zoom users leveraging video conferencing against Zoom bombing, account hacking and other threats caused by the rise in remote work.
ZScaler
Zscaler is enabling secure digital transformation by rethinking traditional network security, and empowering enterprises to securely work from anywhere. ZeroFox coverage of the surface, deep and dark web provides malicious domains and additional context and IOCs that traditional threat data feeds cannot.
Technology Partner