Integration

Cloud

Threat Detection

Stream delivers full-spectrum visibility across AWS, Azure, GCP, and Kubernetes by unifying telemetry and configuration data into a real-time model. It correlates workloads, identities, and network flows—mapping IAM relationships, role bindings, and service communications. With this multi-cloud and K8s-native coverage, detection and triage are always based on the live environment, not stale logs or fragmented tools.

AWS
Azure
GCP
Kubernetes

Kubernetes & VM Runtime

Threat Detection

Stream Security enhances runtime threat detection by building on top of Tetragon eBPF, dynamically managing detection policies, and seamlessly integrating with the project.

Tetragon eBPF

Identity Providers (IdP)

Threat Detection

Stream Security integrates with identity providers like Azure Entra, giving you end-to-end visibility and threat detection for all identity and access activity.

Okta
GCP Workspaces
Azure Entra AD

Source Code Management (SCM)

Threat Detection

Source code is an emerging entry point for cloud-native attacks. Stream Security adds visibility into source control activity, correlating identity behavior, configuration drift, and access misuse to uncover risks before they reach production.

GitHub
GitLab

Database As A Service (DBaaS)

Threat Detection

DBaaS is an emerging entry point for cloud-native attacks. Stream Security adds visibility into DBaaS activity, correlating behavior and access misuse to uncover threats.

Snowflake

Customer Relationship Management (CRM)

Threat Detection

CRM platforms are a high-value target and an emerging entry point for cloud-native attacks. Stream Security provides deep visibility into CRM activity, correlating user actions, API calls, and access misuse to uncover insider threats and external compromise attempts.

Salesforce

Vulnerability Scanners

Threat Detection

Reveal the exploitability of assets to determine the criticality of alerts by integrating Stream Security with leading vulnerability scanners. This integration prioritizes alerts based on vulnerable assets and attack paths to exploitable resources, enabling more targeted and effective investigation and response.

CrowdStrike
Rapid7 InsightVM
Oligo Security
Snyk Container
Qualys
Tenable Nessus
AWS Inspector
Azure Defender
Wiz Cloud

DSPM

Threat Detection

Combine data security posture management (DSPM) insights with Stream Security to assess asset exploitability based on sensitive data exposure and investigate risks with precise context.

Sentra
Cyera

EDR

Threat Detection

Stream Security integrates with endpoint detection and response (EDR) tools to reveal the entire attack storyline, bridging the gap between cloud-level events and workload-level activity.

SentinelOne
CrowdStrike
Palo Alto Cortex

Firewall Unmasking

Threat Detection

Stream.Security integrates with leading firewalls and cloud provider WAFs to expose false negatives and hidden threats as part of real-time Cloud Detection and Response (CDR). This integration correlates firewall policies with real-time cloud context — including network reachability, identity, and behavior logs — to reveal threats that bypass firewall rules or remain undetected due to fragmented visibility. By aligning firewall signals with broader cloud events, Stream enables SecOps teams to detect stealthy attacks, eliminate blind spots, and accelerate threat resolution with precision.

Palo Alto NGFW
Fortinet

Cloud Native

Threat Detection

Stream Security complements your cloud-native anomaly detection capabilities by automating the investigation process. By correlating the entire attack storyline and delivering comprehensive cloud context, Stream provides full visibility into threats and significantly reduces mean time to resolution (MTTR).

AWS GuardDuty
Azure Defender
Security Command Center

SIEM

Threat Detection

Streamline your log management by offloading cloud logs to Stream Security and forwarding alerts and enriched events to your SIEM for advanced analytics and incident response.

Any SIEM with Webhook support

Alerting

Threat Detection

Stream Security's messaging integration enables efficient alerting by allowing users to receive alerts directly from Stream Security to their preferred messaging platform. This integration simplifies workflows by linking findings to team members, driving faster resolution times, and improving team collaboration.

Microsoft Teams
Opsgenie
GoogleCards Webhook payload format
PagerDuty
Slack

Ticketing

Threat Detection

Stream Security's ticketing integration enables efficient issue management by allowing users to open and assign tickets directly from the Stream Security UI. This integration simplifies workflows by linking findings to team members, driving faster resolution times, and improving team collaboration.

JetBrains
Azure Boards
Service Now
Jira

SOAR

Threat Detection

Stream Security powers your security orchestration, automation, and response (SOAR) platforms by providing actionable insights into risky activities and enabling automated responses tailored to cloud impact.

Torq
Tines

What's new