S

StrangeBee Tech Stack

Incident response platform with AI-powered triage for SOCs and CERTs

Information Technology & Services Paris 51–200 employees Founded 2018 Privately Held

StrangeBee builds TheHive and Cortex, incident response platforms deployed across SOCs, CERTs, and CSIRTs. The tech stack (Go, Python, Rust, Java, Play Framework, Akka, JanusGraph) reflects a mature polyglot architecture handling complex alert workflows. Active adoption of Claude and Java, paired with projects around LLM integration and AI agents for triage, signals a strategic pivot toward AI-assisted incident response—directly addressing their stated pain around SOC analyst efficiency and alert fatigue.

Tech Stack 21 technologies

Core StackGitHub Actions Docker RAG Go Python Rust Java Scala Docker Compose TheHive Cortex Git CI/CD Play Framework Akka JanusGraph

AdoptingJava GitHub Copilot Claude

ReplacingScala

What StrangeBee Is Building

◆Challenges

Fast-growing demands
Strengthening product ecosystem
Improving dev & qa productivity
Accelerating ai adoption
Reducing dev workflow friction
Improving soc analyst efficiency
Technical debt
Delivery unpredictability
Performance bottlenecks
Highly competitive cybersecurity market

▲Active Projects

Incident response platform product lines
Deploying internal ai assets
Building dev tooling and templates
Integrating ai into existing workflows
Llm integration into thehive
Ai agent for incident triage
Prototype ia use cases in cybersecurity
Frontend architecture definition
Technical debt roadmap
Quality process implementation

Hiring Activity

Accelerating10 roles · 7 in 30d

Department

Engineering

8

Product

1

Sales

1

Support

1

Seniority

Senior

7

Lead

2

Mid

1

Staff

1

Company intelligence

Find more companies like StrangeBee by tech stack, pain points and active projects

Get started free

About StrangeBee

StrangeBee is a cybersecurity software company founded in 2018 and based in Paris, with 51–200 employees. The company develops TheHive and Cortex, purpose-built platforms for incident response teams at organizations of all sizes. TheHive serves as a case-management system for SOCs, CERTs, and CSIRTs, while Cortex handles alert triage and enrichment. Both products are offered on-premise and cloud-hosted. The platform is designed to reduce mean time to response, combat alert fatigue, and improve analyst productivity. Incident responders across thousands of organizations rely on these tools to manage and triage security incidents.

HeadquartersParis

Company Size51–200 employees

Founded2018

Hiring MarketsFrance

Frequently Asked Questions

What is TheHive and Cortex used for?

TheHive is a case-management platform for SOCs, CERTs, and CSIRTs that speeds triage and incident response. Cortex handles alert enrichment and triage. Together they reduce time to recovery and combat alert fatigue for incident responders.

What programming languages does StrangeBee use?

StrangeBee's stack includes Go, Python, Rust, Java, Scala, and the Play Framework. The company is actively adopting Java and replacing Scala, while integrating Claude for AI capabilities.