Paris-based cybersecurity startup Filigran is capitalizing on the success of OpenCTI to construct a collection of open-source menace administration merchandise. The corporate has already discovered some early traction with OpenCTI, its open-source menace intelligence platform.
That’s why the corporate just lately raised €15 million (round $16 million at at this time’s change fee) in a funding spherical led by Accel with present traders Moonfire Ventures and Motier Ventures additionally collaborating.
Filigran’s first product is OpenCTI. It’s a menace intelligence platform that permits you to collect menace knowledge from a number of sources in a single interface. Because of its modular strategy, clients can use connectors to import and enrich knowledge from varied sources, together with menace intel knowledge suppliers similar to CrowdStrike, SentinelOne or Sekoia. In that sense, OpenCTI is a bring-your-own-data product.
After that, cybersecurity groups can discover the dataset in a structured means. OpenCTI helps relationships between entities, which provides some a lot wanted context when investigating a menace. The platform additionally provides other ways to visualise your knowledge.
In different phrases, it has develop into an vital instrument for cybersecurity groups that handle incidents each day and that can be utilized as an alternative choice to ThreatQuotient, Anomali or EclecticIQ.
“This software program product is designed to present you an summary of your complete menace setting. Extra importantly, it’s not restricted to technical or non-technical components. It’s actually a consolidated view of your menace setting, from essentially the most technical and low-level components to essentially the most strategic ones,” co-founder and CEO Samuel Hassine instructed me.
“So that you’ll discover info that may aid you get higher at menace detection in fact — enhance your response to security incidents — but in addition enhance your threat evaluation as a CISO.”
From an open-source facet mission to 70 staff
Samuel Hassine and his co-founder Julien Richard first began engaged on OpenCTI a number of years in the past, effectively earlier than the inception of Filigran. Hassine spent a number of years working for France’s ANSSI cybersecurity company after which Tanium, whereas Richard spent a number of years main engineering groups engaged on data-driven merchandise.
At first, OpenCTI was only a facet mission. However the duo determined to construct a startup round this product. Along with amassing greater than 4,000 stars on GitHub and 10 million downloads for the open-source version of OpenCTI, Filigran already has greater than 100 paid clients, together with Marriott, Thales, Airbus, but in addition the FBI, the European Fee and the Dutch police.
Filigran’s second product is OpenBAS, an assault simulation platform that was beforehand referred to as OpenEX. OpenBAS can be utilized to create train eventualities throughout a number of communication channels, similar to emails and textual content messages. Every thing is then logged in OpenBAS as a way to overview the objectives and the way the corporate carried out towards these objectives.
OpenBAS can be utilized as a standalone product, but it surely works higher should you’re already utilizing OpenCTI as it might use the menace intelligence knowledge in OpenCTI. There will likely be one other two merchandise in Filigran’s eXtended Risk Administration (XTM) product suite that concentrate on data-driven threat evaluation and disaster administration.
“The imaginative and prescient that Julien and I’ve for the XTM Suite is a collection with 4 merchandise that work together with one another in order that they develop into extra helpful. You need to use every one individually, however whenever you use the entire suite, it creates a number of worth,” Hassine mentioned.
Proper now, there are 40 individuals working for Filigran. The corporate plans to create a staff within the U.S. and develop to 70 staff by the top of the 12 months.