ESET® THREAT HUNTING SERVICE

Threat investigation, root cause analysis and remediation advice. No need for extra internal resources

1bn+
internet users protected
320k+
business customers
130+
countries & territories
1
global R&D centers

ESET Threat Hunting Service

ESET Threat Hunting helps your IT teams investigate specific sets of data, events and alarms generated by ESET’s XDR-enabling solution, ESET Inspect

 

By leveraging ESET's 30 years of cutting-edge malware identification and incident response expertise, ESET Threat Hunting allows you to conduct full forensic investigations without the need for your own dedicated staff or resources.

ESET's record of innovation and top performance support provides higher confidence that you will identify emerging threats like ransomware before they can harm your organisation.


Expertise

The world’s best professional support – backed by ESET’s teams of renowned researchers, operating across the globe – is available 24/7/365 to address your IT security needs and issues.

Global and local

ESET is a global company with a local presence. It has a large network of partners and regional offices working with its main malware research team at ESET HQ.

Resources

By pinpointing significant events and data flows, helps your security teams and administrators prioritise real threats and streamline their workload accordingly. Observe a clear return on your investment. 

Business continuity

ESET products are designed to be intuitive, and come with comprehensive documentation. Still, having ESET expertise on hand reduces the risk of any downtime or gaps in vital operations.

Get APT reports you can act on – quickly and accurately

Putting our best research at your fingertips

Our research team is well known in the digital security environment, thanks to our award winning We Live Security blog. Their great research and APT activity summaries are available, with much more detailed information at your disposal.

Actionable, curated content

Reports provide a great deal of context to what is going on and why. Thanks to this, organisations can prepare in advance for what might be coming. It’s not just the reports themselves – they are curated by our experts who put them in a human-readable format.

Make crucial decisions fast

All this helps organisations to make crucial decisions and provides a strategic advantage in the fight against digital crime. It brings an understanding of what is happening on the ‘bad side of the internet’ and provides crucial context, so that your organisation can make internal preparations quickly.

Access to ESET Analyst

Every customer ordering the APT Reports PREMIUM package will have also access to an ESET analyst for up to four hours each month. This provides the opportunity to discuss topics in greater detail and help resolve any outstanding issues.

In-depth analysis

The package includes in-depth technical analysis reports describing recent campaigns, new toolsets and related subjects, and activity summary reports. A monthly overview combines information from all Technical Analysis and Activity Summary reports released in the previous month into a shorter and more digestible form. 


ESET proprietary intelligence feeds

Get a quick, real-time look at the worldwide threat landscape. Our feeds come from our research centres based around the globe to get a holistic picture, and quickly block IoCs in your environment. Feeds are in the formats • JSON • STIX 2.0

Malicious files feed

Understand which malicious files are being seen in the wild. Features domains which are considered malicious, including domain name, IP address, detection of file downloaded from URL and detection of the file which was trying to access the URL. This feed comprises shared hashes of malicious executable files and associated data.

Domain feed

Block domains which are considered malicious including domain name, IP address, and the date associated with them. The feed ranks domains based on their severity, which lets you adjust your response accordingly, for example to only block high-severity domains.

Botnet feed

Based on ESET's proprietary botnet tracker network, Botnet feed features three types of sub-feeds – botnet, C&C and targets. Data provided includes items such as detection, hash, last alive, files downloaded, IP addresses, protocols, targets and other information.

URL feed

Similar to Domain feed, the URL feed looks at specific addresses. It includes detailed information on data related to the URL, as well as information about the domains which host them. All the information is filtered to show only high confidence results and includes human-readable information on why the URL was flagged.

APT feed

This feed consists of APT information produced by ESET research. In general, the feed is an export from the ESET internal MISP server. All the data that is shared is also explained in greater detail in APT reports. The APT feed is also part of APT reports offering, but the feed can also be purchased separately.

IP feed

This feed shares IPs considered to be malicious and the data associated with them. The structure of the data is very similar to that used for the domain and URL feeds. The main use-case here is to understand which malicious IPs are currently prevalent in the wild, block those IPs which are of high severity, spot those that are less severe, and investigate further, based on additional data, to see if they have already caused harm.

Mitsubishi logo

protected by ESET since 2017
more than 9,000 endpoints

Allianz Suisse logo

protected by ESET since 2016
more than 4,000 mailboxes

Canon logo

protected by ESET since 2016
more than 32,000 endpoints

T-com logo

ISP security partner since 2008
2 milion customer base

Explore our solutions

Threat Hunting can be purchased as a part of the service solution.

ESET PROTECT MDR

Combining the skills of ESET’s world-class security research teams and the cutting-edge technology of ESET’s IT security products.

  • Guaranteed, fast response times
  • Business continuity ensured
  • Skilled ESET personnel to manage your security

Security Services

Combine with ESET products to get a complete security solution that acts preventively, proactively and reactively.

  • Prompt response to incidents to maintain business continuity
  • Let ESET reinforce your team as a silent partner
  • Our cybersecurity experts will help investigate, identify and resolve any threats

Committed to the highest industry standards

ESET is a 'Major Player' in modern endpoint security IDC MarketScape: Worldwide Modern Endpoint Security for Enterprises 2021 Vendor Assessment

Learn more

ESET was awarded in multiple independent tests

See test results

ESET is a ‘Top Player’ in endpoint security Advanced Persistent Threat (APT) Protection - Market Quadrant 2021

Learn more

ESET PROTECT Advanced is a leader in Endpoint Protection Suites on G2

ESET is appreciated by customers worldwide

Read full reviews

ESET is among 'Established Vendors' in endpoint protection

Learn more

What customers appreciate

"We were most impressed with the support and assistance we received. In addition to being a great product, the excellent care and support we got was what really led us to move all of Primoris’ systems to ESET as a whole."

Joshua Collins,
Data Center Operations Manager; Primoris Services Corporation, USA; 4.000+ seats
Read more

"I love how it is designed with advanced machine learning and behavior learning technology that learns from the previous attacks and whenever the system is attacked from the same source, it is detected and removed before penetrating my system. All kinds of viruses, malicious activities and different online threats are completely identified and then removed from my system very efficiently."

Sarah C., G2 review

"The ESET Inspect ensures protections against malicious activity, threats from no file viruses and let the security teams to detect APTs. All of this is achieved through algorithms of machine learning and behavioral learning or through the endpoint low level system data collected. This software is capable enough to perform root cause and forensic analysis, threat hunt, and configure attack indicators."

Herry K., G2 review

"The biggest thing that stands out is its strong technical advantage over other products in the marketplace. ESET offers us reliable security, meaning that I can work on any project at any time knowing our computers are protected 100%."

Fiona Garland, Business Analyst, Mercury Engineering, Construction, Materials and Natural Resources
Read full story

"I would definitely recommend ESET to other companies based on performance but also the support too, which is great. I think the manageability is the best you can get."

Mark Kaiser, IT Specialist, Unigarant, Finance & Insurance
Read full story