InQuest provides the ability to integrate several sandboxes and automated malware analysis engines. Possibilities include Cuckoo Sandbox, FireEye, VMRay Analyzer, Joe Sandbox, and Falcon. These tools perform in-depth, dynamic analysis of malware in a controlled environment, extracting characteristics that may be hidden from static analysis of the files. Tools can be configured to be enabled, disabled, or only to run for certain filetypes. Results are automatically fed into the InQuest Threat Score Engine for score calculation and assignment.
Third-party integrations provide the perfect balance of detection between executable malware and the prolific doucument-based attacks.
Click below to learn more about how our sandbox integrations commodotize the AV industry and can provide insight into the threats impacting your organization.
Read more