AiStrike Documentation

Stellar Cyber

The AiStrike platform integrates with Stellar Cyber, an AI-powered SecOps platform offering security solutions such as SIEM, Network Detection & Response (NDR), Identity Threat Detection & Response (ITDR), and User Behavior Entity Analytics (UEBA). AiStrike can perform analysis on cases and alerts from the Stellar Cyber Connect API, and/or use Stellar Cyber data as part of investigation analysis.

Integration Overview

To enable this integration you will perform the following actions:

  • Create an API token

  • Install the credentials into your AiStrike tenant

  • Select integration parameters, such as which alert types to sync

Create an API Key

Stellar Cyber requires an API key to enable. To create an API key with the necessary permissions, the user must have Root scope and Super Admin privileges.

If you already have a user with Root scope and Super Admin privileges

  1. As a user with the Edit User privilege, log into your Stellar Cyber instance.

  2. In the menu bar, click System.

image-20260708-235518.png
  1. Navigate to Administration > Users.

image-20260708-235532.png
  1. Under the Users tab, locate a user with Root scope and Super Admin privileges.

  2. Copy the email address for use later in the AiStrike UI, where it is called User Email Address.

image-20260708-235545.png
  1. Under Actions, click the Edit button.

image-20260708-235559.png


  1. In the API Access section, click Generate New Token.

  2. Copy the token shown for use later in the AiStrike UI, where it is called Access Token.

image-20260708-235606.png

If you do not already have a user with those privileges

  1. As a user with the Add User privilege, log into your Stellar Cyber instance.

  2. Navigate to System > Administration > Users.

  3. Under the Users tab, click + Create.

image-20260708-235624.png
  1. Input an email address for the user. Copy the value for use later in the AiStrike UI, where it is called User Email Address.

    • Stellar Cyber requires a unique email address for all its users. We recommend creating a dedicated email address for this user, rather than using an existing company email.

  2. Name the user something memorable, such as AiStrike.

  3. Create a password for the user.

  4. Next to User Scope, click Root.

  5. Next to User Privilege, select Super Admin.

image-20260708-235656.png


  1. In the API Access section, click Generate New Token.

  2. Copy the token shown for use later in the AiStrike UI, where it is called API Key.

    • If you do not copy the token when the user is created, you will need to generate a new token.

image-20260708-235712.png