Connects With Your Existing Stack
Sentendra integrates with the tools your team already uses — no rip-and-replace required.
Elastic SIEM
Direct Elasticsearch integration with per-customer credentials, hostname-field mapping, lookback & polling control
CrowdStrike Falcon
Detection / search / agent / incident / event ID observable types and alert ingestion via API
Middleware API / Custom HTTP
Route alerts through your own gateway, or wire any HTTP source with custom auth (Bearer / API key / header) and JSON path extraction
OpenAI
BYO key for GPT-4o, GPT-4o-mini, GPT-4 Turbo, GPT-3.5 — runs analysis under your DPA
Anthropic Claude
BYO key for Claude Haiku / Sonnet / Opus on the same per-tenant LLM toggle
Self-Hosted Ollama
Local LLM inference for air-gapped or compliance-sensitive deployments — default on paid plans
n8n Workflows
Trigger n8n flows from case & alert events with HMAC-signed webhooks; receive workflow callbacks
Email (IMAP / SMTP)
Pull threads into cases, send out via templates with variable substitution, per-customer mailbox config
VirusTotal
Hash / domain / IP enrichment with detection ratios, vendor verdicts, and last-analysis caching
Sandbox Detonation
Submit attachments for behavioural analysis; pull back YARA matches, MITRE mappings, IOCs, threat score
NIST CVE Feed
Real-time CVE stream from the National Vulnerability Database, surfaced in the Command Center
MinIO / S3-Compatible
Object storage for case attachments, sandbox outputs, and report artifacts
SAML 2.0 / OIDC SSO
Enterprise IdP integration with PKCE and signed assertions — Okta, Azure AD, Auth0, Google Workspace, etc.
API Keys
Long-lived ib_* bearer tokens for programmatic access — scope, rotate, revoke from the UI
Slack · Teams · Discord · Telegram
Notification channels for case & alert events with per-customer routing
Generic Webhooks
Inbound webhooks for alerts / cases / observables and outbound webhooks for any external system (Jira, ServiceNow, PagerDuty)