.jpg)
The challenge of distinguishing critical application-layer attacks from pervasive alert noise is being addressed by a new partnership between Contrast Security and Datadog. The companies have announced an integration that feeds verified, runtime application threat intelligence from Contrast's Application Detection and Response (ADR) platform directly into Datadog Cloud SIEM. This move aims to provide Security Operations Centers (SOCs) with high-fidelity signals, enabling them to automate response and drastically reduce mean time to respond (MTTR) for application breaches.
Contrast Security and Datadog have partnered to integrate Contrast's Application Detection and Response (ADR) with Datadog Cloud SIEM.
The integration delivers verified, runtime intelligence on application-layer attacks directly into the SIEM, filtering out low-fidelity alerts.
The goal is to reduce application attack MTTR from days to minutes by providing SOCs with trusted, automation-ready signals.
Contrast ADR detects threats like unsafe deserialization inside the application runtime, which often evade perimeter tools like WAFs.
Verified alerts from Contrast can trigger automated Datadog Workflows for rapid triage and response.
The solution includes Contrast's SmartFix AI to automatically generate code fix pull requests for developers.
A core problem in modern security operations is the overwhelming volume of low-confidence alerts, particularly from perimeter tools like Web Application Firewalls (WAFs), which Contrast notes correlate to real exploits less than 0.25% of the time. This forces manual validation, delaying response. Contrast ADR addresses this by embedding sensors directly into applications to monitor runtime behavior, providing verified confirmation that an exploit attempt was successful or blocked. This high-fidelity data bridges the critical context gap for SOC analysts.
By streaming these verified application attacks into Datadog Cloud SIEM as trusted events, the integration enables Security teams to build automated response playbooks with confidence. Faya Peng, General Manager of ADR at Contrast Security, stated, “By delivering verified runtime intelligence into Datadog, we’re giving SecOps the contextual fidelity to confidently automate triage and response without fear of false positives.” This allows automated workflows in Datadog to trigger on Contrast alerts, connecting to ticketing systems or chat tools and accelerating containment.
The partnership targets sophisticated attacks that bypass traditional defenses. Contrast's research indicates applications are attacked every three minutes, with over 31% of viable exploits targeting weaknesses like unsafe deserialization that are invisible to network scanners and WAFs. The integration makes these previously opaque runtime threats visible and actionable within the SOC's primary SIEM dashboard, unifying observability and security operations.
Beyond detection and response, the solution aims to shorten the entire remediation cycle. Contrast's SmartFix AI capability, included in the platform, not only identifies the root cause of a vulnerability but can also automatically generate a pull request with the corrected code. This connects security incidents directly to developer workflows, aiming to close the loop from detection to fix more efficiently.
This collaboration represents a significant step towards converging application security (AppSec) and security operations (SecOps). By placing verified application runtime intelligence into the hands of SOC analysts via a mainstream observability and security platform, it empowers organizations to defend their most critical assets—their applications—with the same speed and automation applied to infrastructure threats.
About Contrast Security
Contrast Security is the global leader in Application Detection and Response (ADR), empowering organizations to see and stop attacks on applications and APIs in real time. Contrast embeds patented threat sensors directly into the software, delivering unmatched visibility and protection. With continuous defense, Contrast uncovers hidden application-layer risks that traditional solutions miss. Contrast’s powerful Runtime Security technology equips developers, AppSec teams and SecOps with one platform that proactively protects and defends applications and APIs against evolving threats.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.