Sqrrl is the security intelligence company that enables organizations to target, hunt, and disrupt advanced cyber threats. Sqrrl’s linked data analysis platform uses visual, contextual and computational tools to detect and investigate hackers and malicious insiders. This empowers analysts to reveal behaviors, patterns, and anomalies hidden within massive security datasets.
Sqrrl Enterprise enables the ingest and analysis of disparate datasets to facilitate proactive threat detection, in what’s known as cyber threat hunting.
- Target: Scope the data sets that will be used in your investigation. Hunts can branch from various starting points or “trailheads”. These include indicator-driven structured hunts and hypothesis-driven exploratory hunts, both of which can be optimized with automated analytics and machine learning.
- Hunt: Proactively and iteratively search through network and endpoint data to detect and isolate advanced threats that evade more traditional security solutions.
- Disrupt: By seamlessly pivoting from hunting to forensic analysis, disrupt adversaries before they fully execute their attacks. These analyses can generate new indicators to feed into complementary security systems, creating an effective security feedback loop, what we call Advanced Persistent Defense.
Sqrrl’s Big Data architecture leverages Hadoop, link analysis, machine learning, data-centric security, and advanced graph visualization technology.
The Sqrrl UI, featuring graph visualization, detailed entity information, and drill downs on the underlying raw data
Sqrrl licenses Sqrrl Enterprise via annual subscriptions models. Contact us for pricing details or to discuss setting up a proof of concept.