Join the Hunt!

Complimenting the Deep File Inspection (DFI) engine, the InQuest User Interface provides easy event analysis and dynamic Threat Hunting capabilities. The intuitive design leverages the ability to pivot on a wide variety of indicators.

The InQuest Operator can pivot through the attributes of sessions, files, headers, signatures, and more. This feature provides the ability to easily identify threat actors, campaigns, trends, and other instances of attacks on your organization. The usefulness of pivoting while Threat Hunting cannot be overlooked.


Solutions overview 74366b2a-8b45-4ad8-b7da-ffa64cf0ed87.png
Latest InQuest™ Blog Posts
a12ab6fc-7d61-4631-b49b-316af961f62e.jpg

Programmatic Interaction with InQuest Labs via Python

Posted on 2019-10-20 by Adam Musciano

Learn how to use Python to aggregate, download, and utilize IOCs/data from InQuest Labs.

Contact us at support@inquest.net for an api key.

Read more be8ff157-d269-49de-8931-52c1115b706e.png
488b37f7-ddb2-47cc-b20b-366fb4c6b0de.png

Base64 Encoded Regular Expressions for Fun and Profit

Posted on 2019-10-31 by Rob King

Earlier this year, we here at InQuest launched our new InQuest Labs website. Labs is an amazing resource, with a plethora of useful tools and intelligence offerings. Much could be written about the site, and much has been...but not about this part

Read more be8ff157-d269-49de-8931-52c1115b706e.png
InQuest™ Labs Research Spotlight
c59f4b34-d006-4ef7-a9c2-9f0405ae665c.jpg

csvkit

A suite of utilities for converting to and working with CSV, the king of tabular file formats.

Read more 74366b2a-8b45-4ad8-b7da-ffa64cf0ed87.png
830f3aa0-28b0-4408-9681-0d19d0c52a6f.jpg

PAWK

PAWK aims to bring the full power of Python to AWK-like line-processing.

Read more 74366b2a-8b45-4ad8-b7da-ffa64cf0ed87.png
7ee2766a-487c-4780-97d5-19d71f129622.jpg

jq

jq is a lightweight and flexible command-line JSON processor..

Read more 74366b2a-8b45-4ad8-b7da-ffa64cf0ed87.png
Global Security Events
cdccb3f3-0ce0-4356-9290-a14afa812fcc.jpg

Threat Actor Profile: TA407, the Silent Librarian

Silent Librarian is a prolific, financially motivated actor operating out of Iran. In early 2018, the US Department of Justice indicted nine members of the cybercrime group for hacking, wire fraud, and identity theft..

Read more 74366b2a-8b45-4ad8-b7da-ffa64cf0ed87.png
992bd2b5-7b37-46f6-9fb9-0c01391e1d65.jpg

Adobe Releases Out-of-Band Security Patches for 82 Flaws in Various Products

Adobe has released security updates for Adobe Acrobat and Reader for Windows and macOS. These updates address critical vulnerabilities. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Read more 74366b2a-8b45-4ad8-b7da-ffa64cf0ed87.png
56757183-b9f2-43a8-b0e1-e4b456a0fdf0.jpg

CONNECTING THE DOTS: Exposing the arsenal and methods of the Winnti Group

This report describes in detail some of the new malware used by this group against the organizations they target. Another one of their backdoors, ShadowPad, was also updated recently. This report will also expose the new techniques they use to hide their payloads.

Read more 74366b2a-8b45-4ad8-b7da-ffa64cf0ed87.png
InQuest™ Insider - Your monthly resource for the latest in cyber security news, trends, tips and tools. Subscribe here.
Copyright © InQuest™ 2019






This email was sent to *|EMAIL|*
why did I get this?    unsubscribe from this list    update subscription preferences
*|LIST:ADDRESSLINE|*