ThretVyn Docs
Integration guides, API reference, and detection configuration documentation. Covers EDR connector setup, CloudTrail event ingestion, Okta System Log integration, kill-chain window tuning, and SIEM output configuration.
Documentation sections
Quickstart Guide
Connect your first data source and see your first correlated alert within 10 minutes.
Get started →API Reference
Full REST API for querying alerts, managing integrations, and triggering playbook actions.
View reference →Integrations
Step-by-step setup for every supported EDR, cloud, identity, and SIEM integration.
Browse integrations →Detection Rules
Write custom correlation rules using ThretVyn's declarative rule syntax. Override defaults or build from scratch.
Coming soonPlaybook Builder
Automate analyst workflows. Route P1 alerts to PagerDuty, create Jira tickets, or post to Slack channels.
Coming soonChangelog
What's new in ThretVyn — detection model updates, new integrations, and API additions.
Coming soonCan't find what you need?
Our security engineering team is here to help. We respond to all technical questions within one business day.
Contact support