Technology Partners & Integrations
Threatstealth is built on open-source security infrastructure — ModSecurity, Wazuh, OpenSearch, Authelia, Kong, Prometheus, Grafana, and more.
Threatstealth Technology Partners and Integrations
Every component in the Threatstealth stack is production-proven, auditable, and open-source.
- ModSecurity — Web Application Firewall engine with OWASP CRS v4, virtual patching, and per-tenant rule sets.
- Wazuh — EDR and SIEM providing kernel-level endpoint telemetry and MITRE ATT&CK-aligned detection.
- OpenSearch — Distributed log aggregation and SIEM backend with sub-second pivot from alert to raw event.
- Authelia — IAM providing SAML 2.0, OIDC, MFA (TOTP, WebAuthn, FIDO2), and conditional access policies.
- Kong Gateway — API gateway with rate limiting, authentication enforcement, and traffic analytics.
- Prometheus + Grafana — Metrics collection and SOC operational dashboards.
- Gophish — Phishing simulation engine with campaign management and resilience scoring.
- Semgrep — SAST engine covering 30+ languages with OWASP Top 10 mapping.
- Headwind MDM — Android MDM with device enrolment, policy enforcement, and compliance reporting.
- Ntopng — Network traffic analysis with flow analytics and lateral movement detection.
- Keycloak — Enterprise SSO federation via SAML 2.0 and OIDC.
- privacyIDEA — MFA server supporting TOTP, FIDO2, and hardware tokens.