Overview
Overview

What is FDR?
Get a bird’s eye view of FDR drivers, differences between it and other detection and response solutions, uniqueness, and who can benefit from its power.

Technology
Gain an understanding of FDR’s foundational technologies - including Deep File InspectionTM and RetroHuntingTM - which work in concert to stop file-borne attacks.

High-Performance Network Capture

Deep File Inspection (DFI)

TI Acquisition and Curation

IQ Score

Intelligent Orchestration

RetroHunting

Core Features
Learn how FDR features speak directly to the SOC work of data acquisition, inspection, analysis, action, and threat hunting.

Acquisition

Inspect

Analyze

Score

Act

Hunt

Benefits
See how FDR closes the user security gap - which delivers substantial business, security personnel, and SOC ROI benefits.

Differentiation
Understand how FDR is fundamentally different from other detection and response (and prevention) solutions.

What is FDR?

Close the end-user security gap by stopping file-borne breaches and incidents stemming from malware, ransomware, exploits, phishing lures, scams, fraud and data loss violations.
Read more

Technology

High-Performance Network Capture

Deep File Inspection (DFI)

TI Acquisition and Curation

IQ Score

Intelligent Orchestration

RetroHunting

Core Features

Acquisition

Inspect

Analyze

Score

Act

Hunt

Benefits

FDR provides value that flows straight to your bottom: avoids costs associated with file-borne malware, ransomware, exploits, phishing lures, scams, fraud, and data loss breaches and incidents; saves massive amounts of time for stretched SOC analysts and threat hunters; and reduces cybersecurity upfront and operating costs, and drives up the efficacy and value of your adjacent security solutions.
Read more

Differentiation

We are long on detection, response - and intelligence-driven prevention. And while EDR, NDR and XDR are worthy solutions for what they address, a quick review of FDR core technologies and features will show they are not us, and we are not them. This summary page will give you a quick synopsis of how FDR is different.
Read more
Solutions
Solutions

Solutions
Every organization - whether public or private sector - has a set of modern security concerns. See the security solutions where FDR most excels.

Integrated Cloud Email Security

Web Security

Network Threat Analytics

Threat Prevention

Data Loss Prevention

Breach Detection

Threat Hunting

Threat Intelligence

Security Orchestration, Automation and Response (SOAR)

File-borne Attack Use Cases
Compelling examples of how FDR stops zero-days, n-days, data loss violations, breaches and more.

Zero-Day Attack Coverage

N-Day Attack Coverage

Machine Learning Assisted Threat Prevention

Data Loss Prevention (DLP)

Breach Detection

Support for the Consumption of Numerous Data, File and Protocol Formats

Threat Hunting Use Cases
Examples of how FDR automates the exhausting work of converting raw data to decision-making insights.

Threat Hunting & RetroHunting

Identify Malware Through Automated Dissection and Inspection

Import YARA Signatures

Threat Actor Infrastructure Detection & Tracking

SOC ROI Use Cases
Learn how FDR easily integrates with your existing defense-in-depth solutions.

Data Acquisition and Delivery

ICAP Integration

SIEM Integration

Multitenancy Support

Sandbox Integration for Dynamic File Analysis

MultiAV Integration for Malware Detection

Solutions

Integrated Cloud Email Security

Web Security

Network Threat Analytics

Threat Prevention

Data Loss Prevention

Breach Detection

Threat Hunting

Threat Intelligence

Security Orchestration, Automation and Response (SOAR)

File-borne Attack Use Cases

Zero-Day Attack Coverage

N-Day Attack Coverage

Machine Learning Assisted Threat Prevention

Data Loss Prevention (DLP)

Breach Detection

Support for the Consumption of Numerous Data, File and Protocol Formats

Threat Hunting Use Cases

Threat Hunting & RetroHunting

Identify Malware Through Automated Dissection and Inspection

Import YARA Signatures

Threat Actor Infrastructure Detection & Tracking

SOC ROI Use Cases

Data Acquisition and Delivery

ICAP Integration

SIEM Integration

Multitenancy Support

Sandbox Integration for Dynamic File Analysis

MultiAV Integration for Malware Detection
Products & Services
Products & Services

Products
Our product offerings address threat intel, email security, web security, and network threat analytics. Conveniently packaged to address specific and comprehensive file-borne attack challenges.

FDR Email Security SaaS

FDR Web Security SaaS

FDR API SaaS

FDR Network Threat Analytics

FDR Total Security

Services
For organizations who prefer to take advantage of our in-house expertise and experience, FDR is available as an InQuest service. As well, we offer training and tailored intelligence services.

InQuest Threat Intelligence Feed

InQuest Tailored Threat Intelligence

InQuest Threat Actor Tracking

InQuest Threat Intelligence Analyst Augmentation

InQuest FDR Training

Pricing
Ready to take advantage of FDR? See our straightforward pricing table which allows you to start where you like and grow as you need.

Products

FDR Email Security SaaS

FDR Web Security SaaS

FDR API SaaS

FDR Network Threat Analytics

FDR Total Security

Services

InQuest Threat Intelligence Feed

InQuest Tailored Threat Intelligence

InQuest Threat Actor Tracking

InQuest Threat Intelligence Analyst Augmentation

InQuest FDR Training

Pricing

Files are ever present in your email, web and network traffic. We'll always advocate for a holistic approach with FDR Total Security. But our products and services are conveniently packaged to give you the flexibility of starting where you like and growing as you need.
Read more
Resources
Resources

Blog
Visit our blog to get informative insights on the latest malware samples, threat intel, threat actors tools and more.

InQuest Labs
Ever fresh samples dissected with Deep File Inspection, reputation and IOC findings as well as tooling for YARA rules and more.

Newsletter
Stay up-to-date in cybersecurity with our monthly synopsis of key blog posts, email security harvesting, InQuest™ Labs Research Spotlights, global security events and more.

White Papers
View our white papers for more in-depth coverage of FDR’s core technologies and key features.

ROI Calculators
Leverage our models to see just how much time and expense would be required for SOC personnel to do what FDR performs automatically.

Additional Content
Get additional information and perspective on FDR products, services, and underlying technologies.

Products

NDR

ICES

Web SaaS

Solutions

Threat Prevention

Breach Detection

Data Loss

Technologies

Deep File Inspection (DFI)

DFI Analytical Pipeline

RetroHunting

Retrohunting as a Service

Threat Intelligence

Intelligent Orchestration

Blog

Our blog is chock full of valuable insights into the latest threats, how-to's, feature explanations and other useful information about FDR. We don’t write fluff. It’s a blog worthy of analyst, threat hunter, SecOps and CISOs who want to stay in-the-know.
Read more

InQuest Labs

InQuest Labs

Downloads

Trystero Mail Provider Comparison

Newsletter

We package a month's worth of top blogs, email security assessment stats, InQuest Lab’s spotlights, and upcoming event notices into a quick read that will keep you informed with minimal time investment.
Read more

White papers

DFI and Retrohunting

InQuest Machine Learning

Data-loss Discovery

Further reading

ROI Calculators

Threat Hunting Depth

False Positive Response

Email Admin Time

Email User Time

Return on Security Investment (ROSI)

Blog: Calculating Return-on-Investment

Content

Products

NDR

ICES

Web SaaS

Solutions

Threat Prevention

Breach Detection

Data Loss

Technologies

Deep File Inspection (DFI)

DFI Analytical Pipeline

RetroHunting

Retrohunting as a Service

Threat Intelligence

Intelligent Orchestration
Company

Company

About

Leadership

Press Releases

Events

Careers

Support

Partners

Privacy Policy

Testimonials

powershell

July 2019

Base64 Encoded Powershell Pivots

In this short post, we share a YARA rule that threat hunters will find valuable for identifying potentially malicious Powershell pivots. Specifically, we'll be looking for base64 encoded Powershell directives. Additionally, some interesting real-world samples will be shared with the reader. Including an SSL certificate, Microsoft Windows shortcut (LNK) file, and a JPG image.

March 2019

Analyzing Sophisticated PowerShell Targeting Japan

In this article, we dissect a sophisticated multi-stage PowerShell script that was found on HybridAnalysis a few days back. The discussion entails an in-depth analysis of the various techniques that this particular malware instance utilized to keep itself under the radar. As of writing this article, none of the AntiViruses on VirusTotal detected this sample.

Overview

What is FDR?

Technology

Core Features

Benefits

Differentiation

Solutions

Solutions

File-borne Attack Use Cases

Threat Hunting Use Cases

SOC ROI Use Cases

Products & Services

Products

Services

Pricing

Resources

Company

powershell

July 2019

Base64 Encoded Powershell Pivots

March 2019

Analyzing Sophisticated PowerShell Targeting Japan