Integrations

Already in your security stack.

Install from the marketplace. Authenticate. Whisper intelligence flows into your existing workflows — no custom code required.

Get a free API key
{ }Whisper APISIEMSOARTIPEDRGRCITSM6/6 Active
Connectors

Native connectors for the platforms you use

Each connector is purpose-built for its platform. Not a generic webhook — native integration that speaks the platform's language.

Splunk

Splunk

SIEM
Shipped

Real-time infrastructure enrichment inside Splunk. Every IP or domain in your alerts gets instant context — ownership, hosting, ASN reputation, and threat scoring. Install directly from Splunkbase.

Alert enrichmentCustom dashboardsSaved searchesLookup tables
Microsoft Sentinel

Microsoft Sentinel

SIEM
Shipping now

Native connector for Azure Sentinel. SaaS transactable via Azure Marketplace. Whisper data flows directly into your Sentinel workspace — incidents, workbooks, and automated playbooks.

Incident enrichmentWorkbooksPlaybook actionsAzure Marketplace
OpenCTI

OpenCTI

CTI Platform
Early Q2 2026

Infrastructure intelligence as STIX observables inside OpenCTI. Whisper entities and relationships map directly to STIX objects, enriching your threat intelligence with infrastructure context.

STIX observablesRelationship mappingAutomated enrichmentCustom feeds
Cortex XSOAR

Cortex XSOAR

SOAR
Early Q2 2026

Automate infrastructure investigation playbooks with Whisper data inside XSOAR. Trigger enrichment on any indicator, build investigation workflows, and auto-respond based on infrastructure risk.

Playbook actionsIndicator enrichmentAutomated responseCustom commands

More connectors in development. Request a connector →

Install. Authenticate. Done.

Three steps. No custom code.

1

Install from marketplace

Find Whisper in your platform's marketplace or app store. One-click install, no manual configuration files.

2

Authenticate

Enter your Whisper API key. The connector establishes a secure connection to the graph and validates access.

3

Intelligence flows

Every alert, incident, and indicator in your platform is automatically enriched with infrastructure context.

Ownership

Who registered it, who hosts it, which ASN.

  • WHOIS registrant + organization
  • ASN + hosting provider
  • GeoIP at city granularity

Connections

Co-hosted domains, shared nameservers, peer ASNs.

  • Reverse DNS pivots
  • Shared infrastructure clusters
  • BGP peering relationships

Risk + history

Individual and structural threat scores. DNS and WHOIS history.

  • Threat scores with evidence chains
  • DNS change timelines
  • Registration migrations

Connect Whisper to your stack

Install a connector and start enriching alerts in under a minute.

Get a free API keyDocumentationBook a Demo