The Q-SOAR®(Security Orchestration, Automation, and Response)is an
amalgamation of a number of open source software packages, listed below, running on
an extremely small form factor, low-power-consumption server. The Q-SOAR®, through its web gui, provides Security Orchestration, Automation, and Response (SOAR), which is the process of automating detection and response to security breaches, using The HIVE, a highly scalable, 4-in-1 open source Security Incident Response Platform.The HIVE seamlessly integrates with MISP (Malware Information Sharing Platform),the leading Threat Intelligence (TI) sharing platform. The HIVE also fully integrated with CORTEX, the open source and largest incident response community with over 13,642 members. CORTEX provides playbooks so The HIVE can automatically respond to
cyber security incidents, including patching or shutting down infected network devices. There are literally thousands of open source off-the-shelf playbooks and incident responses available. CORTEX also includes the ability to create custom playbooks and automated incident responses.