Adversary Pursuit: Cyber Intelligence

Tactical intelligence feed provides actionable detection signatures, adversary malware, tools, and infrastructure from our own pivot-discovery operations. 

• Malware intelligence discloses unique malware previously unseen in open reporting and adversary infrastructure mapping. 
• End-to-end discovery of new adversary TTPs, to include infrastructure, with delivery mechanisms from unclassified-to-classified environments

Operational intelligence enables practitioners to proactively discover, respond to, and eradicate adversaries of interest.

• Adversary playbooks for advanced persistent threats (APT) and country-groupings contain threat intelligence overviews, MITRE ATT&CK mapping for activity, discovery logic, and decision matrix
• Built for practitioners by practitioners to find and respond to APTs 

On-host cryptographic and detection solutions.

• Cryptographic tools custom to adversary malware enable new insights, allowing customers to scan their networks for adversary malware, trigger malware backdoors, and interact with adversary malware
• Cryptographic research and defense: Combined talent and resources in 5G and quantum computing to support development of new cryptographic solutions

Exploits for defense provides unique adversary defeat options using our Interceptor Framework to deliver defensive exploitation capabilities

• On-the-wire decryption capabilities: Developed by world-class cryptographic experts and reverse engineers, enabling full understanding of adversary malware and observed weaknesses
• Custom on-host defeat capabilities: Solutions designed to elicit an adversary response such as breaking malware cryptography and other overt actions
• Malware vulnerabilities and exploits: Capabilities for exploiting mistakes and imposing costs in adversary malware
• Training packages: Provide network defenders live-fire expertise, detecting and responding to the threats and malware used by adversaries