A unique approach to endpoint security

IBM Security® ReaQta is a sophisticated, yet easy-to-use endpoint detection and response (EDR) solution that helps companies protect their endpoints against zero-day threats. It uses intelligent automation, AI and machine learning to detect behavioral anomalies and remediate threats in near real time.
With a user-friendly interface, ReaQta provides security analysts with deep visibility across the entire endpoint ecosystem, including a visual storyline as each attack unfolds. Advanced behavioral analytics and customizable detection strategies address everything from unknown threats to company-specific requirements. ReaQta also includes the Cyber Assistant, which learns from analyst decisions and can autonomously handle alerts, reducing false positives and minimizing analysts’ workloads.

Illustration showing person using tablet to detect cybersecurity threats in hybrid environment across different endpoints



Product images

Behavioral tree

Screenshot showing behavioral tree in ReaQta software

Behavioral tree

A behavioral tree provides full alert and attack visibility.

Behavioral tree storyline

Screenshot showing behavioral tree storyline in ReaQta software

Behavioral tree storyline

A user-friendly visual storyline is automatically created as an attack unfolds, including mapping to MITRE ATT&CK, for full visibility.

Cyber Assistant alerts

Screenshot showing Cyber Assistant alerts in ReaQta software

Cyber Assistant alerts

The Cyber Assistant, an AI-powered alert management system, can autonomously handle alerts, reducing analysts’ workloads.

Cyber Assistant recommends

Screenshot showing Cyber Assistant recommendations in ReaQta software

Cyber Assistant recommends

The Cyber Assistant learns from analyst decisions, then retains the intellectual capital and learned behaviors to make recommendations and help reduce false positives.

Custom detection strategies

Incidents detected by DeStra in ReaQta software

Custom detection strategies

Detection Strategy (DeStra) scripting allows users to build custom detection strategies — beyond preconfigured models — to address compliance or company-specific requirements without the need to reboot the endpoint.

Related products and services

Managed detection and response (MDR) services

Faster threat defense starts with 24x7, AI-powered managed prevention, detection and response. For organizations of all sizes and security budgets.

IBM Security® QRadar® XDR

Use this modular suite of threat detection and response tools to eliminate advanced threats faster.

IBM Security® QRadar® XDR Connect

Connect your tools, automate your SOC and streamline workflows. Free up time for what matters most.