User Entity and Behavior Analytics (UEBA) is a way to identify attacks and high risk behaviors by correlating different data sources and observing behavioral patterns. This allows attacks to be observed that are only apparent with context from multiple sources, rather than just a single event in isolation.
GitLab's goal is to provide UEBA capabilities for applications to help proactively identify malicious traffic, potentially compromised user accounts, and high-risk behaviors, so that actionable remediation steps are possible.
Our UEBA goals align with the goals of our Security Paradigm in that we strive to offer these capabilities "batteries included" with minimal to no configuration for initial usage. We also strive to provide UEBA results in an actionable, prioritized format for triage and remediation. We will not block by default unless explicitly configured to do so.
Another UEBA goal is that GitLab will feedback our results to other stages so that any necessary action can be taken there, in addition to the defending the app itself. An example could include creating an issue about access controls for a specific region of the app that is being exploited by malicious users.
eSecurity Planet has a UEBA buying guide which has a list of competitive offerings.
There is no feature available for this category.
The category is very new, so we still need to engage customers and get feedback about their interests and priorities in this area.