Stay connected with your ecosystem

Automate detection and response for the threats detected by your Perch-integrated tools. Store, search, and visualize log activity from within Perch for a holistic picture of your environment.

The Perch platform includes these cloud-based, next-gen SIEM integrations, and we're always adding more.

Integrations
Category
  • All
  • Advanced Monitoring
  • Antivirus
  • Cloud Infrastructure
  • Endpoint
  • Firewall
  • Identity & Access Management
  • Network
  • Response
  • Ticketing & Messaging

AWS Cloudtrail

AWS Cloudtrail

Ingest critical events from Amazon Web Services, including access control via IAM and instance configuration changes with EC2. Any service that reports to CloudTrail is available in Perch.

Bitdefender

Bitdefender

Enable managed detection and response for those using the GravityZone platform.

Carbon Black Defense

Carbon Black Defense

Gain insight into endpoint detection and response actions on the endpoint to enable new levels of visibility and response.

Cisco AMP for Endpoints

Cisco AMP for Endpoints

Shorten the cycle between detection and response. Automatically incorporate decision-directing information about endpoints and detected threats.

Cisco Duo

Cisco Duo

Leverage this identity and access management platform within Perch. In addition, integrate the audit log data from Duo to create actionable notifications.

Cisco Firepower

Cisco Firepower

Bring logs from Cisco Firepower into Perch for analysis and reporting.

Cisco Meraki

Cisco Meraki

Bring visibility into the network and security operations of the Meraki Dashboard.

Cisco Umbrella

Cisco Umbrella

Bring logs from Umbrella into Perch to deliver insight and security awareness into your remote endpoints.

ConnectWise Automate

ConnectWise Automate

Respond to Perch incidents with any of your ConnectWise Automate™ scripts. Quarantine machines and more.

ConnectWise Manage

ConnectWise Manage

Interact with the Perch platform and SOC directly from ConnectWise Manage™. Manage and respond to threats seamlessly.

Datto Autotask PSA

Datto Autotask PSA

Allow Perch’s SOC to open tickets directly in Autotask PSA. Handle Perch tickets efficiently in Autotask using Autotask PSA workflows. View rich analyst and alert information directly in the Autotask PSA ticket.

Fortinet

Fortinet

Collect and analyze FortiGate log data to identify threats and suspicious activities in your environment. Automate response by blocking malicious internet destinations as they’re detected and analyzed.

Freshdesk

Freshdesk

Use your current toolsets by creating tickets inside of Freshdesk for Perch alerts and events as they happen.

G Suite

G Suite

Bring the rich G Suite audit data into Perch to visualize, detect, correlate, and respond to the data seen by G Suite.

Mailgun

Mailgun

Ensure the cloud-hosted platform is operating optimally with on-demand reporting and timely alerting to issues with Mailgun.

Microsoft 365

Microsoft 365

Monitor Office 365 user and administrator activities in SharePoint, OneDrive, and Outlook. Receive alerts for detected ransomware, email compromise, privilege escalation, account takeovers, file sharing, and more.

Microsoft Teams

Microsoft Teams

Deliver time-sensitive notifications to your Teams channels that are critical for your operations. Get real-time insights into threats escalated by our team, along with other actionable data.

MS Defender ATP

MS Defender ATP

Gain insight into endpoint detection and response actions on the endpoint to enable new levels of visibility and response.

Okta

Okta

Correlate and alert on abnormal access attempts and generate reports for the identity and access management platform.

Palo Alto

Palo Alto

Collect and analyze Palo Alto log data to identify threats and suspicious activity in your environment. Automate detection and response between Perch and Palo Alto Networks’ Next-Generation Firewall (NGFW) products, and instantly block malicious IPs as soon as they are detected.

RMM Monitoring

RMM Monitoring

Monitor ConnectWise Automate (on-prem) to detect identify threat activity such as compromised users and computers, and unauthorized activity within the RMM.

Salesforce

Salesforce

Create Salesforce cases to track alerts and information generated by Perch. Enable Perch to monitor, report, and alert on anomalous and malicious activity within Salesforce.

SentinelOne

SentinelOne

Collect and analyze log data for activities and threats found on any device with an installed SentinelOne agent.

Slack

Slack

Want a Slack bot for your Perch setup? Install Perch’s Plugin for Slack and configure it to notify the channel of activity within Perch.

Sophos Central

Sophos Central

Deliver security insight into your Sophos products and bring together unified reporting and threat detection.

Webroot

Webroot

Receive insights in near real-time to act on threats detected with Webroot Endpoint, DNS, and Security Awareness Training.