Detect cyber threats faster and earlier in the attack kill chain.

PatternEx’s Virtual Analyst Platform easily detects 100’s of attack variations “out of the box”—no rules required. Analysts can also customize or create new attack detection models that work seamlessly for all your analysts and customer tenants. PatternEx eliminates wasted analyst time on rules, correlations, and log management—all while increasing credibility with customers.

Watch the on-demand webinar, "Artificial Intelligence Trends for MDRs," to learn more. 

Reduce SIEM Alerts Immediately

Reduce SIEM Alerts Immediately

Automate Threat Hunting

Automate Threat Hunting

Detect 10x More Threats

Detect 10x More Threats

We are excited to partner with PatternEx to enhance our managed detection and response services. Our mission is to provide the most advanced technology, integrated into a flexible and scalable managed services platform. With PatternEx, we can help our clients reduce risk by detecting new complex threats faster and more efficiently."

Brad Taylor
CEO, Proficio

architecture-diagram.png

How We Do It

The PatternEx Virtual Analyst Platform ingests data and then outputs an actionable classification of threats.  The main components include:

AI Pipelines  The pipelines use big data architecture for behavior modeling of users, hosts, applications, and other entities. The AI classifies events as benign, malicious, or suspicious with a given confidence level. Analysts can choose to label the analysis to improve the AI automation.

Predictive and Automated Correlation Engine  This engine “connects the dots” and creates an attack story for current and anticipated attacks based on relationships amongst system, network, data, and/or user behaviors.

Customized Analytics and Transfer Learning Engine This component enables the system to get smarter with analyst inputs. Transfer learning makes it possible to share AI threat detection models without sharing confidential data.

AutoCorrelateTM

The AutoCorrelate engine reduces the time it takes to do an IR investigation or threat hunting task by 20x.

Through automatic relationship discovery across all entities (user, URL, IP, etc..) an intuitive graph is shown along with suggested threats and anticipated threats.

 

Alternate Cluster Image.png
custom analytics

Advanced Threat Hunting and Security Analytics

PatternEx Virtual Analyst Platform (VAP) provides custom analytics to do deep mining and data extraction from raw logs. Analysts can:

  • Use standard SQL queries.
  • Use scripting languages like Python or Scala to build complex analytics.
  • Re-use analytics queries through “notebooks.”
  • Share notebooks and models with other analysts to enable collaborative threat hunting.

Scalable and Easy to Use

You have Tera- or Petabytes of data. No problem—the system can scale easily to process data in real-time or via batch logs. But you don’t want to spend hours supporting, tools, and tweaking an AI system. Again, no problem—PatternEx works out of the box and automatically gets smarter over time.

AutoCorrelate masked.png
icon-webinar

OnDemand Webinar:

AI Trends for MDRs

As a senior MDR leader, what do you need to know to help you both successfully implement AI technology and use that technology to increase revenue?

WATCH NOW