In addition to the weekly signature updates from InQuest™ Labs, support for user-defined signatures is simplified within the platform. Whether you are utilizing third-party threat intel providers, company-specific data-loss signatures, or an advanced in-house signature developer, InQuest™ provides options for multi-tenant implementation of user-defined detection capability.
User-defined signatures can be written using YARA rules to identify a set of strings and a logical boolean expression. These signatures can detect threats to your organization or data-loss events through file and session analysis.
Click below to learn more about how we beat traditional security defenses.Read more