Skip to content
WWT LogoWWT Logo Text (Dark)WWT Logo Text (Light)
The ATC
Ctrl K
Ctrl K
Log in
What we do
Our capabilities
AI & DataAutomationCloudConsulting & EngineeringData CenterDigitalImplementation ServicesIT Spend OptimizationLab HostingMobilityNetworkingSecurityStrategic ResourcingSupply Chain & Integration
Industries
EnergyFinancial ServicesGlobal Service ProviderHealthcareLife SciencesManufacturingMedia & GamingPublic SectorRetailSports & EntertainmentUtilities
Learn from us
Hands on
AI Proving GroundCyber RangeLabs & Learning
Insights
ArticlesBlogCase StudiesPodcastsResearchWWT Presents
Come together
CommunitiesEvents
Who we are
Our organization
About UsOur LeadershipSponsorshipsLocationsSustainabilityNewsroom
Join the team
All CareersCareers in AmericaAsia Pacific CareersEMEA CareersInternship Program
Our partners
Strategic partners
CiscoDell TechnologiesHewlett Packard EnterpriseNetAppF5IntelNVIDIAMicrosoftPalo Alto NetworksAWSGoogle CloudVMware
What we do
Our capabilities
AI & DataAutomationCloudConsulting & EngineeringData CenterDigitalImplementation ServicesIT Spend OptimizationLab HostingMobilityNetworkingSecurityStrategic ResourcingSupply Chain & Integration
Industries
EnergyFinancial ServicesGlobal Service ProviderHealthcareLife SciencesManufacturingMedia & GamingPublic SectorRetailSports & EntertainmentUtilities
Learn from us
Hands on
AI Proving GroundCyber RangeLabs & Learning
Insights
ArticlesBlogCase StudiesPodcastsResearchWWT Presents
Come together
CommunitiesEvents
Who we are
Our organization
About UsOur LeadershipSponsorshipsLocationsSustainabilityNewsroom
Join the team
All CareersCareers in AmericaAsia Pacific CareersEMEA CareersInternship Program
Our partners
Strategic partners
CiscoDell TechnologiesHewlett Packard EnterpriseNetAppF5IntelNVIDIAMicrosoftPalo Alto NetworksAWSGoogle CloudVMware
The ATC
Security OperationsSecurity
Video
•
7:13
•

June 30, 2026

ExtraHop Building the Agentic SOC Demo

In this demo, we follow an attack from initial user deception to full agentic SOC response. A user on a Windows 11 workstation is tricked by a fake CAPTCHA into running a malicious PowerShell command. CrowdStrike catches the final payload, but the endpoint alert is only the tip of the iceberg.

This video was created and contributed by, ExraHop.

The Modern SOC Was Never Designed For AI-Powered Attack Velocity

AI is fundamentally changing the speed, scale, and adaptability of cyberattacks. Breakout time—the window between initial compromise and lateral movement—has collapsed as attackers use AI to automate reconnaissance, adapt in real time, and evade static defenses without human intervention.

Traditional SOC workflows cannot keep pace. Security teams already operate under overwhelming alert volume, forced to triage thousands of signals daily while piecing together fragmented evidence across tools, environments, and identities. To manage the load, analysts suppress low-fidelity detections, aggressively tune alerts, automate closure, or allow queues to age out—introducing blind spots attackers increasingly exploit.

This creates a dangerous asymmetry: attackers now operate at machine speed while defenders still rely on workflows built for human-scale investigation.

Enterprise security has reached a tipping point. The shift to an agentic SOC is no longer optional—it is required to detect, understand, and respond at the speed of modern attacks.

Leran more about ExtraHop Contact an Expert

Contributors

Guest Contributor
WWT
  • About
  • Careers
  • Locations
  • Help Center
  • Sustainability
  • Blog
  • News
  • Press Kit
  • Contact Us
© 2026 World Wide Technology. All Rights Reserved
  • Privacy Policy
  • Acceptable Use Policy
  • Information Security
  • Supplier Management
  • Quality
  • Accessibility
  • Cookies