InQuest combines Deep File Inspection (DFI) and RetroHunting™ to bring the threat hunting capabilities of VirusTotal Intelligence to your own environment. VirusTotal provides analysts with powerful tools to threat hunt against millions of files, domains, and IPs, but has the drawback of not currently offering a self-hosted option for organizations that wish to keep their data private.
Join the Hunt.
Prevent. Detect. Hunt.
InQuest is a cybersecurity services and solutions company founded in 2013 by a well-versed team hailing from both the public and private sectors. Our platform is purpose-built by SOC analysts for SOC analysts and network defenders. With cloud and on-premise capabilities in threat prevention, breach detection, threat hunting and data leakage discovery. We've automated much of the typically mundane tasks of the SOC analyst resulting in analyst level scrutiny of data-in-motion at carrier class speeds as well as data-at-rest, all the while reducing frustration, and in-turn, allowing precious human time to be spent where it matters.
Join the HuntRecommended Reading
Retrospective Analysis Fueled by Deep File Inspection (DFI™)
The purpose of this whitepaper is to detail the functionality and benefits of the InQuest platform, specifically it's Deep File Inspection (DFI™) and RetroHunting™ capabilities. Fundamentally, DFI empowers defenders with a new dimension of data while RetroHunting exposes a new dimension of time.
Read MoreLatest Event
Holiday Party – Star Wars : The Rise of Skywalker Private Screening
December 20 @ 8:00 pm - 10:00 pm
Tampa Bay, FL
The (ISC)2 Tampa Bay chapter will be hosting our annual holiday party and hosting a private screening of the movie Star Wars – The Rise of Skywalker
More EventsInQuest Insider
Newsletter
Each year, millions of ransomware attacks paralyze computer systems of businesses, medical offices, government agencies, and individuals. With the increased frequency of online shopping during the holidays, the likelihood of being targeted by one of these attacks rises for consumers.
Unsuspecting internet users could find themselves on the receiving end of an unwanted Christmas present; malware that not only encrypts their Windows PC and holds it for ransom, but also steals their personal data and login credentials.
As always, be extra vigilant when you receive an email from a suspicious or unknown sender and don’t click on a link unless you are positive that it is legitimate email.
Get the Insider
Here's what our customers are saying
Prior to having InQuest, file decompression, decoding and post-processing were all manual steps that were very time consuming for us. Now that we're using InQuest, all of those steps are automated and it has given us the ability to apply these steps to not only files we think are suspicious, but all files received by our users.
Having the ability to search historically based on file content is like having our own internal VirusTotal Retrohunt.
The threat score calculation and assignment being performed by InQuest's engine makes it easy for us to sift through the legitimate sessions and focus on the real threats targeting our users.
InQuest provides a complete network forensics picture, from session details such as header information to file details such as the hash, size, type and even the raw file.
The data loss prevention coverage InQuest provides for data-in-transit is second to none.
The InQuest platform is unlike any other network-based security system we've seen. The performance of their native capture engine and analytic capabilities are unparalleled in terms of the throughput it can support and the number of files it can dissect and analyze.
The third-party integrations with multiav and sandbox solutions are seamless. We have never had a security platform that made it so easy to automate all of our static and dynamic file analysis efforts.
Over half of our customer’s traffic is encrypted and InQuest is the first security platform we’ve seen with a specific focus on using SSL related indicators of compromise to detect the bad guy’s infrastructure.
The threat intelligence InQuest is able to gather and disseminate via their reputation and threat feeds has alerted us to numerous customer compromises. They are truly at the cutting edge when it comes to identifying threat actor infrastructure as it is deployed.
It’s pretty amazing that they are able to support capturing, reassembling, processing, storing and inspecting content at speeds over 10Gb without dropping traffic all in a 1U box.
We’ve been customers for several years now and up until the recent acquisition of their appliances we were running their collectors on 4U boxes with flash storage cards. As a result of that acquisition, we went from having to deal with three different vendors to one vendor, reduced our rackspace footprint as well as our power consumption which all resulted in a huge cost savings for us. Kudos to InQuest!
Through their data orchestration and workflow, they’ve made it really easy for us to establish repeatable workflows from within their UI. That has saved our SOC analysts a considerable amount of time and has enabled them to pivot through data from numerous systems all from a single pane of glass.
