Before learning how to work with the Hunters SOC platform, it is advised to get yourself acquainted with the Hunters SOC terminology as well as the different parts that make up the Hunters SOC pipeline.

Ingestion

The Hunters SOC flexible ingestion engine, allows for ingestion of multiple data sources of high volume in real time. Click here to learn more about the Hunters SOC ingestion engine and its components.

Detection

The Hunters SOC advanced real time stream processing engine, allows for the creation of complex threat use-cases and detections. Click here to learn more the Hunters SOC detection engine and its components.

Investigation

The Hunters SOC automatic investigation engine, allows for the automation of expertise-driven queries to facilitate effective prioritization of alerts. Click here to learn more about the Hunters SOC automatic investigation engine.

Correlation

The Hunters SOC correlation engine, allows for advanced correlation across the entire security stack through the use of entity extraction and plotting on a graph database. Click here to learn more about the Hunters SOC Correlation engine.