The Alertflex works as a Security Event Manager and DevSecOps Orchestrator for a distributed grid of security sensors and scanners in a Hybrid IT infrastructure, which includes both on-premises and cloud-based systems. Solution supports the full DevSecOps cycle. It is capable of performing vulnerability/misconfiguration scanning tasks (DAST, SAST, SCA), but also excels in continuous monitoring by aggregating and forwarding cybersecurity events from sensors (HIDS, NIDS, WAF) to Log and Incident Management systems.
seamless connectivity between central node and remote nodes, without requiring the opening of ports on the remote nodes
the central node serves as a single point for running and collecting scans across the entire hybrid cloud infrastructure
each remote node can have its own unique set of policies to filter alerts from sensors and reduce the impact of false positives
various methods available for correlating alerts related to vulnerability and misconfiguration findings
direct connection to the CTI MISP database to enable fast processing and caching of IoCs for a large number of security events