Hunters Detection Engine

Built-in detection surfaces incidents that matter, overcoming complexity and false positives
mitre matrix - filter open see all
Built-in detection surfaces incidents that matter, overcoming complexity and false positives

Offload the burden of endless rules creation and maintenance with an always up-to-date detection engine

The increased complexity of an organization's attack surface, coupled with the growing sophistication of cyber attacks makes detection engineering a never-ending task as organizations struggle to stay up to date to maintain their threat detection capabilities.


Hunters SOC Platform deploys a variety of detection capabilities and keeps them always up to date, protecting your entire enterprise against the latest threats, no matter how your IT and security stack is composed.

88% reduction
in MTTD

Offload the burden of endless rules creation and maintenance with an always up-to-date detection engine mapped onto the MITRE ATT&CK framework

figur-layout-img
Detection-MITRE

Vendor-agnostic Detection Engine

Hunters detection capabilities are applied to your entire IT and security stack, including on-premise and cloud sources, supporting interchangeability in tool choices

Data Enrichment

Normalized data is enriched with threat intelligence and additional context for enhanced, more accurate detection

TTP-based Detection

Hunters codifies and continuously updates hundreds of attack techniques covered in the MITRE ATT&CK Framework and published threat research, into a library of threat detectors automatically applied across all data sources

Turning Weak Signals to Real Incidents

Near real-time stream processing and cross-correlation link seemingly unrelated threat signals –that would otherwise be missed– into a complete attack story

Context to Security Tool Alerting

Hunters consumes native alerts from your security tools, categorizes, prioritizes and enriches them to add context

IOC Search

IOCs identified in cyber events are actively searched in customer environments upon publishing

Custom Detections

Custom detection rules can be added to cover unique data sources or circumstances in customer environments

What does the Hunters Detection Engine do for you?

24
Built-in, always up-to-date detection automation
11
Vendor-agnostic detection capabilities
26
Correlation across data sources
10
Frees up security experts to focus on specific detection needs for your business

Customers choose
Hunters to empower their
security teams

VALUE PILLARS

our-solution

Helping security teams mitgate real threats faster and more reliably than SIEMs
01
Setting_icon
SIEM Replacement

Using cloud connectors to pipe into existing security tools, or directly connecting to SIEM, Hunters XDR ingests logs, events and telemetry from dozens of data sources on-premises and in the cloud.

02
Security Analytics  XDR icon
Security Analytics | XDR

Hunters XDR extracts both raw data and alerts from existing security data using a stream processing analytics technology which enables near real-time processing and complex analytics.

03
Security Data Lake icon
Security Data Lake

Using cloud connectors to pipe into existing security tools, or directly connecting to SIEM, Hunters XDR ingests logs, events and telemetry from dozens of data sources on-premises and in the cloud.

04
Automated Threat Hunting icon
Automated Threat Hunting

Using cloud connectors to pipe into existing security tools, or directly connecting to SIEM, Hunters XDR ingests logs, events and telemetry from dozens of data sources on-premises and in the cloud.