TheHive
TheHive is a scalable 3-in-1 open source and free Security Incident Response Platform designed to make life easier for SOCs, CSIRTs, CERTs and any information security practitioner dealing with security incidents that need to be investigated and acted upon swiftly.
Specialties
Products
Integrations
TheHive with Polarity
The Polarity - TheHive integration enables analysts to quickly search your TheHive instance enabling analysts to quickly understand if an indicator is related to an incident and enabling them to create and manage cases.
Examples
TheHive Data Overview
- Summary Tags: When running a search on indicators in TheHive, analysts will quickly be able to understand the number of cases that the indicator is associated with.
- Create New Case: When clicking into TheHive's details, analysts can quickly create a new case around the indicator. Enabling the teams to move quickly and collaborate if there is new context available.
- Case Details: Analysts can also quickly see the details about the different cases associated to the indicator. Learning information about the severity, status and even the description.
- Associated Metadata: Analysts can also quickly see any additional information about the case, from the indicators associated to who created the case.
Related Resources
Built By Polarity