Sekoia Intelligence

by Sekoia.io

Threat IntelligenceThreat Intelligence Platform (TIP)

AI-native threat intelligence platform with exclusive CTI from Europe's leading Threat Detection & Research team.

Vendor Information

Sekoia.io

Rennes, France

View Vendor Profile

Sekoia Intelligence Overview

Sekoia Intelligence provides structured, contextualized cyber threat intelligence from the Threat Detection & Research (TDR) team, established in 2020 with approximately 20 analysts from backgrounds including France's Agence Nationale de la Sécurité des Systèmes d'Information (ANSSI), French Interior and Defense ministries, F-Secure, Thales, and Kaspersky, specializing in detection engineering, threat hunting, reverse engineering, geopolitical analysis, Open-Source Intelligence (OSINT), and dark web monitoring. The platform's database is continuously updated through Structured Threat Information Expression (STIX) 2.1 modeling from hundreds of qualified intelligence sources, delivering actionable intelligence for both strategic decision-making and Security Operations Center (SOC) operations with reduced false positives and team fatigue.

The platform delivers predictive capabilities with 50 percent of intelligence available before attackers use associated tools, detecting 4 million threats in 2024 with 25 percent identified automatically through Artificial Intelligence (AI) including agent-based AI that learns organizational security postures. Sekoia Intelligence features customizable dashboards with sector, threat typology, and geographical filters, integrates via Application Programming Interface (API) with Security Information and Event Management (SIEM), Security Orchestration, Automation and Response (SOAR), and eXtended Detection and Response (XDR) platforms, and provides 900+ Sigma detection rules to identify Tactics, Techniques, and Procedures (TTPs) exploited by adversaries.

Founded in 2022 by Freddy Milesi (Chief Executive Officer), Thérèse Favet (Chief Financial Officer), David Bizeul (Chief Security Officer), Georges Bossert (Chief Technology Officer), and François Deruty (Chief Intelligence Officer), Sekoia.io has raised €60 million led by Revaia, Banque des Territoires, and Bright Pixel. The TDR team regularly presents research at international conferences like BotConf and Virus Bulletin, contributed to Europol Operation Endgame, and collaborates with Computer Emergency Response Team (CERT) communities, with the platform recognized in Frost & Sullivan's Global Threat Intelligence Platform Market Report and Gartner's Market Guide for Security Threat Intelligence Products and Services.

Key Capabilities

Standardized capabilities mapped to this product's security niche

Implements controlled intelligence sharing with trusted peers, ISAC communities, and government entities through STIX/TAXII or proprietary sharing protocols with configurable TLP-based access controls.

Monitors dark web forums, marketplaces, and Telegram channels for mentions of the organization, leaked credentials, sale of access, and targeted threat actor activity.

Supports structured analytical methodologies for threat intelligence production, attribution, campaign tracking, and relationship mapping between adversary, infrastructure, capability, and victim.

Augments raw IoCs (IPs, domains, file hashes, URLs), with threat actor attribution, campaign context, confidence scores, and expiry dates to reduce false positive operational noise.

Submits suspicious files or URLs to detonation sandboxes and ingests behavioral analysis results as structured threat intelligence, linking indicators to observed malware behavior.

Pushes enriched IoCs directly into SIEM detection rules and SOAR playbook inputs, automating indicator lifecycle management rather than requiring manual export and import.

Ingests structured threat intelligence in STIX 2.x format over TAXII 2.1 from commercial, government, and ISAC feeds, normalizing indicators and TTPs into a common data model.

Maintains structured profiles of named threat actor groups with associated TTPs, infrastructure patterns, targeting history, and motivations, updated from multiple intelligence sources.

Integrations

Compatible tools and platforms

AlienVault OTXArcSightCortex XSOARCrowdStrike FalconDefantsElastic SecurityExabeamGLIMPSHarfangLabIBM QRadarLogRhythmMicrosoft SentinelMISPOpenCTIPalo Alto NetworksPradeoQRadarSekoia DefendSekoia SOC PlatformSentinelOneSIEM SystemsSOAR PlatformsSplunkStormshieldTheHiveXDR Solutions

Solution Details

Compliance & Certifications

Regulatory frameworks and security certifications

GDPRISO/IEC 27001:2022NIS2 DirectivePCI DSSSOC 2 Type I

Deployment Options

Where and how this solution can be deployed

CloudSaaS

Support Channels

Available support and communication options

24/7 SupportCustomer Success TeamDocumentationEmail SupportTechnical Account Manager (TAM)Training / Academy

Pricing Model

How this solution is priced

Subscription

How to buy

This profile hasn’t been claimed yet. Contact the vendor directly for pricing and purchasing options.

Is this your company?

Claim Your Profile