Sign in
Migration Mapping Assistant Your Saved List Partners Sell in AWS Marketplace Amazon Web Services Home Help

Demisto Enterprise AMI

By: Demisto Latest Version: Demisto Enterprise 5.0 B51285

Product Overview

Demisto is a Security Orchestration, Automation, and Response (SOAR) platform that integrates with your entire security product stack to accelerate incident response and security operations. Leverage Demisto with a host of AWS solutions to coordinate actions across cloud and on-premise environments, automate repeatable steps at machine speed, and improve investigation quality through collaboration, real-time command execution, and machine learning.
Security Orchestration and Automation: Eliminate labor-intensive work, focus on more complex threats, and reduce alert fatigue with Demisto's automation-friendly playbooks. Demisto's orchestration engine leverages hundreds of integrations across product categories such as SIEMs, EDR, malware analysis, threat intelligence tools, and a range of AWS solutions.
Incident Management: Ingest alerts from a range of sources, run custom searches and queries, track granular SLAs and metrics, and visualize tailored data with Demisto's full-fledged case management. Each incident has six distinct and focused views that together cover the entire lifecycle.
Interactive Investigation: Execute agile, real-time response through a virtual War Room for each incident. The War Room is powered by ChatOps and helps analysts converse with each other for joint investigations, run real-time security actions through a CLI, and auto-document all commands, notes, and evidence on one console.


Demisto Enterprise 5.0 B51285




Operating System

Linux/Unix, Amazon Linux 2

Delivery Methods

  • Amazon Machine Image

Pricing Information

Usage Information

Support Information

Customer Reviews