sqrrl

Sqrrl is the threat hunting company that enables organizations to target, hunt, and disrupt advanced cyber threats. Sqrrl’s industry-leading threat hunting platform unites link analysis, User and Entity Behavior Analytics (UEBA), and multi-petabyte scalability capabilities into an integrated solution. Sqrrl’s unique approach enables security analysts to discover threats faster and reduces the time and resources required to investigate them.

Unlike traditional signature- or rule-based detection solutions, Sqrrl’s platform detects the Tactics, Techniques, and Procedures (TTPs) of cyber adversaries using kill chain analytics. This both decreases attacker dwell time and greatly reduces the time to investigate cyber incidents. Sqrrl utilizes linked data, machine learning, User and Entity Behavior Analytics (UEBA), risk scoring, and Big Data technologies to power a Behavior Graph that reveals malicious patterns and anomalies hidden within security datasets. Sqrrl leverages network, endpoint, and perimeter security data sets and integrates with various Security Information and Event Management (SIEM) tools.

Sqrrl Enterprise unifies several Big Data technologies into a single platform, including Hadoop, Linked Data Analysis, machine learning, and advanced visualization. Sqrrl Enterprise excels in the following cyber threat hunting use cases:

Advanced Persistent Threat Detection

Data Breach Detection

Malware Detection

Insider Threat Detection

Alert Triage

Incident Investigations

Threat Intelligence Analysis

Cyber Situational Awareness