Modern security for today's infrastructure.
Cloud Sight™ helps you protect your cloud infrastructure. Harden your servers against attacks, know what users are logged in and what they are doing, and be alerted of suspicious activity. Powerful security monitoring, simply deployed.
Learn More About Cloud Sight

Cloud Sight Is Currently In Private Beta

If you would like to join the beta program or be notified when we release sign up below.

Watch a quick Cloud Sight introduction video.

Products Made By Security Experts, Designed For Everyone

Threat Stack is dedicated to building the best solutions for security monitoring and response. Our team draws from years of experience as security analysts and developers to bring you security solutions that work for today's agile teams and elastic environments.

Cloud Sight™
The first intrusion detection & forensics platform for the cloud.
Powerful alerting based on process and environment anomaly monitoring. Get complete visibility so you can protect your cloud assets from threats.
Learn More
FREE
Snorby™
A powerful intrusion detection front-end for Snort and Suricata.
Snorby is the leading free and open-source front-end for intrusion detection. Download and deploy it today! It's production ready.
Learn More

Cloud Sight™ By Threat Stack, Inc

Cloud Sight™ provides protection, intelligent detection, and forensics data that enables you to rapidly respond to malicious threats. It's designed to work in modern, cloud-based infrastructure. Deploy our agent today and begin securing your infrastructure!

Process Overview

Detailed information for every process you investigate and held for historical forensics.

Correlating Everything

We collect context and allow you to pivot to it at anytime. No more endless searching to connect the dots.

What happened next?

Child processes and network connections.






Cloud Sight™ Feature Highlights

Cloud Ready By Design
Cloud Sight was designed from the ground up to work in the cloud, and we made it as simple to deploy as your Linux-based cloud infrastructure. Our lightweight agent installs directly to your servers, running non-intrusively in the background. Plug our fully-automated installation into your deployment scripts, with a few clicks.
Endpoint Behavioral Profiling™
By leveraging our Endpoint Behaviorial Profiling (EBP)™ technology, we automatically build a profile for the host that describes its normal behavior, and use that to detect potentially malicious activity. We continue to tune that host profile to ensure we are capturing potential intrusions while dramatically reducing noise (false positives).
Real-Time Monitoring
Cloud Sight works like a video recorder, giving you unprecented visibility into your server environment. Once installed, the Cloud Sight agent begins capturing user activity (e.g., user logins, what processes they run, and what network connections are made). This information is sent to our servers in real-time, where we analyze the data.
Resist Attacks
Resist attacks by begining to build your defense. Instantly create firewall policies and have them automatically provisioned across all of your servers. This is the first step in meeting Compliance regulations for the cloud. Need custom alerting or reporting? Build your own custom rules to alert on any event available in our system. Additionally, use our API to build custom reports, or provide integration for other security products.
Forensics Made Easy
Cloud Sight captures all of your host user and process activity, giving you a complete history right in our interface. Get a complete audit trail instantaneously. No more parsing through log files for hours or hiring a 3rd party security consultant to determine the extent of a breach. Have a SIEM or log management tool already deployed? Using our API, leverage data collected via Cloud Sight to make security investigations a breeze.
Actionable Alerts
Get immediate email alerts when we notice suspicious activity. Additionally, we send you a daily summary report indicating new or potentially suspicious behavior we observed for your systems. Unlike traditional intrusion detection systems, our alerts come pre-packed with context (the user logged-in, what other commands they ran) so you can determine right away whether this is an incident you need to take action on.

Meet Threat Stack, Inc

Threat Stack, Inc headquarters is located in Boston, Massachusetts.

The Threat Stack leadership comes from strong security backgrounds, working for industry leaders such as Mandiant, Symantec, Tenable Security, and General Electric. We want to bring quality security detection and response tools to all developers and operations personnel.
Dustin Webber, Co-Founder & CEO

Dustin Webber is a developer and designer with security in his blood. He is the creator of Snorby, a popular front end for intrusion detection Systems that is used and loved by tens of thousands of security analysts worldwide. He started his career as a security analyst working under Richard Bejtlich at General Electric's incident response team, developing tools that helped make the lives of incident responders better. He later moved to Mandiant, where he helped develop some of their next-generation products. At Tenable, he was responsible for developing and designing the popular Nessus HTML5 front-end.

Dustin started Threat Stack because he wanted to bring high-quality security products to the masses through improved technology and user experience.

Jen Andre, Co-Founder & CTO

Before co-founding Threat Stack, Jen began her career as a security analyst, working in Symantec's Managed Security Services division helping protect the Fortune 500 against threats.  She then moved to their development team, where she helped architect a backend that processes tens of terabytes of security data every day.  She later moved to Mandiant's Research and Development team, where she worked under Jamie Butler, developing innovative tools to analyze malware.    

Jen is passionate about bringing incident response and security monitoring techniques to ordinary developers and operations personnel through better UI, automation and analytics,   and likes to blog about her thoughts around software development and the state of security in the cloud.

Get Allocated To The Threat Stack

We are always looking for new talent to add to the Stack. If you are interested in security with exceptional skills in either software engineering, data visualisation, data science, developer operations, UI & workflow design or big data architecture.
Please contact us at jobs@threatstack.com.

Backend Engineer Boston, MA
More Information
Developer Operations Boston, MA
More Information