ESET 's detection and response capabilities against Turla tested in latest MITRE Engenuity ATT&CK Evaluations

ESET participated in the latest MITRE Engenuity ATT&CK Evaluations: Enterprise. Our XDR-enabling component of the ESET PROTECT platform – ESET INSPECT – was tested using techniques inspired by the Turla threat actor.

ESET technology blocked 10 out of 13 Protection tests, and detected 111 out of 143 substeps.

The MITRE Engenuity ATT&CK Evaluations are undoubtedly a solid reference point for understanding an XDR solution’s detection and response capabilities. However, it is worth noting that the best solution is not necessarily the one that detects every substep, but rather the one that balances visibility with usability, placing the needs of the security analyst at the forefront.

When assessing an XDR solution, it is advisable to zoom out and consider broader criteria than just how many detections were triggered in any given test, as these factors are just as indispensable. A complete assessment should include at least the following:

  • false positives
  • performance
  • data storage
  • cost of detecting frequently occurring events
  • customization of detections and responses
  • integration with external data sources and other security tools
  • endpoint security detection capability
  • multiplatform support
  • security needs of your network
  • vendor support services
  • false positives
  • performance
  • data storage
  • cost of detecting frequently occurring events
  • customization of detections and responses
  • integration with external data sources and other security tools
  • endpoint security detection capability
  • multiplatform support
  • security needs of your network
  • vendor support services

Delve into the details of the evaluation of ESET Inspect on the results page provided by MITRE Engenuity or read more about the test in our blog.

Taking down Turla: Balancing act between visibility & usability with ESET

Enable progress, rely on ESET

ESET Prevention, Detection and Response

ESET PROTECT Enterprise offers balanced endpoint protection with extended detection and response (XDR) capability, advanced threat defense and full disk encryption, all integrated and managed from a single pane of glass to provide excellent visibility into the customer's network. Successfully tested  in the latest MITRE Engenuity ATT&CK Evaluations. 

Machine learning & human expertise

Cross-platform solutions for all OSes

Locally-based customer care

Signature-light footprint

Top-rated detection

Enable progress, rely on ESET

ESET Prevention, Detection and Response

ESET PROTECT Enterprise offers balanced endpoint protection with extended detection and response (XDR) capability, advanced threat defense and full disk encryption, all integrated and managed from a single pane of glass to provide excellent visibility into the customer's network. Successfully tested  in the latest MITRE Engenuity ATT&CK Evaluations. 

Machine learning & human expertise

Cross-platform solutions for all OSes

Locally-based customer care

Signature-light footprint

Top-rated detection

Security blog owned by vendor

NO.1  BLOG

Facebook followers 

2.2 MILLION + 

One of the most  referenced sources on MITRE 

66 REFERENCES

Founded by ESET in 2013

Security blog owned by vendor

NO.1  BLOG

Facebook followers 

2.2 MILLION + 

One of the most  referenced sources on MITRE 

66 REFERENCES

Founded by ESET in 2013

A related reading by ESET’s R&D Team 

ESET RESULTS, 3rd Round 2021


Know your enemy: What do the MITRE Engenuity ATT&CK® Evaluations reveal?

Factual overview of ESET's endpoint detection and response (EDR) solution – ESET Enterprise Inspector   – performance in the evaluation. 

Read the blog

 

WE LIVE SECURITY


Sandworm: A tale of disruption told anew


As the war rages on, an APT group with a long résumé of disruptive cyberattacks enters the spotlight once again.

Read the blog
WE LIVE SECURITY


What is MITRE ATT&CK, and how is it useful?


An introduction to the MITRE ATT&CK framework and how it can help organize and classify various types of threats and adversarial behaviors.

Read the blog
ESET BLOG

How the MITRE ATT&CK® improves enterprise threat hunting?

An overview and explanation of provided benefits.

Read the blog
ESET BLOG

ESET research continues to grow the MITRE ATT&CK® knowledge base

As of 2020, ESET is one of the top referenced and engaged vendors directly involved in the refinement and population of the MITRE ATT&CK knowledge base.

Read the blog
ESET BLOG

Endpoint detection and response: The path to security maturity starts with visibility

Looking to set off on the right foot with EDR? Prioritize visibility into your systems.

Read the blog