Jump to content

ESET Inspect is integration with Mitre Attack, can able use External rules Yara and Sigma ?

gwin
 Share

Recommended Posts

gwin

gwin 0

Posted
Posted

Hello everyone

EEI/EI is one of great product, iam use yearly to help me and my team to know issue of malware and similiar yet.

i try to know this product step by step, and my question can EEI integration with Mitre ATT&CK and use external rules like Yara and Sigma rules.

because on base knowledge i am not find this topic, one of i find create rules with base .xml : https://help.eset.com/tools/ei/ei_rules_guide_1.7.pdf

i think its good for eei can use external rules to improve existing database rule list and detection

Link to comment
Share on other sites
  • Administrators
Marcos

Marcos 4,295

Posted
  • Administrators
Posted

No, you must create ESET Inspect rules to detect particular behavior. They are very different to Yara rules since they are based on ESET's features provided by ESET security products.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...