Integration ingests dope.swg web security telemetry into Falcon Next-Gen SIEM, boosting threat detection and reducing attacker dwell time

dope.security, the fly-direct Secure Web Gateway (SWG), today announced a partnership with CrowdStrike, enabling customers to ingest and action dope.swg security data with CrowdStrike Falcon® Next-Gen SIEM. With this new integration, organizations are able to realize the combined benefits of best-in-class security for enhanced threat detection and accelerated mean time to response.

Unlike traditional Secure Web Gateway (SWG) solutions that route traffic through stopover data centers, dope.swg performs security checks directly on the endpoint and offers a streamlined, high-performance approach. Falcon Next-Gen SIEM combines native Falcon platform and third-party data with industry-leading threat intelligence and AI-driven automation. By ingesting web traffic, content inspections, and malware alerts from the dope.swg into Falcon Next-Gen SIEM, users gain unified visibility by correlating these signals with other CrowdStrike Next-Gen SIEM telemetry – enabling more accurate threat detection and stronger web security without backhauling traffic or switching between tools.

“Dope was founded to modernize web security with beautiful design/UX and fast performance,” said Kunal Agarwal, Founder and CEO, dope.security. “Integrating security software with SWGs used to be a Frankenstein – endpoint controls were on-the-device, while the SWG required re-routing all of the internet to a stopover datacenter. Now, Dope’s fly-direct architecture operates side-by-side on the device and feeds web security telemetry into Falcon Next-Gen SIEM without the performance headaches of legacy SWGs. We are excited to offer this integrated solution and protect more endpoints without introducing any unnecessary pain points.”

Key features of the integration include:

• Rapid web threat detection: leverage dope.security SWG data—including HTTP/S transactions and malware alerts—layered with Falcon’s endpoint telemetry to accelerate threat detection and reduce dwell time.
• Unified threat insights and investigation: minimize context switching by viewing dope.security web traffic insights and CrowdStrike threat indicators together within the Falcon platform’s unified, threat-centric interface.
• Accelerated data ingestion: seamlessly onboard dope.security and third-party security data via Falcon Data Connectors for rich, correlated insights and end-to-end visibility.
• Streamlined triage workflows: automate correlation of web and endpoint events to prioritize alerts, speeding up response times and boosting analyst efficiency.

The dope.security integration is available today in the CrowdStrike Marketplace, a one-stop destination for the world-class ecosystem of third-party security products. To learn more about the dope.security and CrowdStrike integration, view the dope.swg listing.

About dope.security

DOPE = Passion. Design. Attention to detail. That’s the difference with our on-device proxy, the Fly-Direct SWG. Paired with CASB Neural, the LLM-powered DLP, we build beautifully designed enterprise cybersecurity. So whether your company is small or large, you get a first-class experience.

It’s not that we’re mad at yesterday’s solutions—just disappointed. So we made it better. We made it easier. We made it dope.

View source version on businesswire.com: https://www.businesswire.com/news/home/20250909520829/en/