Skip to content

LimaCharlie Documentation

Welcome to the official documentation for LimaCharlie - the SecOps Cloud Platform.

What is LimaCharlie?

LimaCharlie is the SecOps Cloud Platform delivering security operations for the modern era. The platform provides comprehensive enterprise protection that brings together critical cybersecurity capabilities and eliminates integration challenges and security gaps for more effective protection against today's threats.

Quick Navigation

  • Getting Started

    New to LimaCharlie? Start here to learn the basics and get up and running quickly.

    Quickstart Guide

  • Detection & Response

    Build custom detection logic with automated response actions to protect your infrastructure.

    Detection Rules

  • Sensors & Deployment

    Deploy sensors across Windows, Linux, macOS, Chrome, and configure log adapters.

    Sensor Documentation

  • Data & Queries

    Query your security data with LCQL, explore events, and investigate incidents.

    Query Console

  • Integrations

    Connect outputs to SIEMs, enable extensions, and integrate with third-party tools.

    Browse Integrations

  • Developer Guide

    Programmatic access via Go and Python SDKs for complete platform automation.

    SDKs & APIs

  • Administration

    Manage organizations, users, access control, and billing.

    Admin Guide

  • Reference

    Technical reference for operators, commands, event schemas, and FAQ.

    Reference Docs

Platform Capabilities

  • Endpoint Detection & Response (EDR): Deploy sensors across multiple platforms
  • Detection & Response Rules: Build custom detection logic with automated responses
  • Real-time Telemetry: Centralized event streaming and data collection
  • API Integrations: Connect with threat intelligence, SIEM, and security tools
  • Extensions & Add-ons: Expand capabilities with purpose-built integrations
  • Cloud-native Architecture: Scalable, API-first platform for modern security operations

Community & Support