CYBERQUEST 2.30 release includes UEBA capabilities to provide early detection of insider threats and security incidents.

Nextgen Software, leading provider of cybersecurity solutions, has announced the release of UEBA Module in version 2.30 of its CYBERQUEST platform, for actively monitoring users and entities behavior within the IT system to identify suspicious activities.

The CYBERQUEST’s UEBA (User and Entity Behavior Analytics) is a critical technology in today’s cybersecurity landscape, as it can enhance any organization security posture by providing improved threat detection, faster incident response times and better visibility into user and entity behavior.

“The benefits of UEBA are multiple for any CYBERQUEST user, from early detection of insider threats, such as unusual access patterns or abnormal data transfers, preventing data breaches, improved incident response, allowing security teams to respond quickly and mitigate any potential risks. UEBA helps organizations meet compliance requirements by providing enhanced security controls and reporting capabilities. The release of CYBERQUEST 2.30 demonstrates our ongoing commitment to providing cutting-edge cybersecurity solutions to our clients.” declares Tiberiu Leta – CEO Nextgen Software

“UEBA detects abnormal behaviors, by analyzing user behavior and ensuring better visibility, through a comprehensive view of all user and entity activity within a system, enabling security teams to identify potential threats that could have gone unnoticed with other security technologies. Users accessing data outside of their regular working hours, users connecting to systems from strange locations, or users accessing data they don’t typically engage with— all these behaviors can be recognized by UEBA Manager.”, stated Vlad Gladin, CTO Nextgen Software.

This early detection can prevent data breaches, cyber-attacks, and other security incidents that can have significant financial and reputational consequences for organizations.

CYBERQUEST 2.30 incorporates also advanced IOC (Indicators of Compromise) and Threat Intelligence capabilities, empowering organizations to identify and mitigate potential cyber threats by leveraging known patterns, signatures and comprehensive intelligence data on emerging threats.

Other new features in CYBERQUEST 2.30:

  • Data Forwarder – event forwarding to other systems (enables event streaming).
  • Alert Forwarding – alert forwarding to other systems (alert classification based on MITRE and other enhancements).
  • Web interface enhancements for increased user workflow.
  • DTS Objects – new syntax, new log enhancement method, alert adding capability, new event adding capability, parsing method call (in CQAPI).
  • OpenSearch 2.3.0 as Database engine (replaces Opendistro for Elasticsearch), integrated authentication and native https connection.
  • Smart objects – generates events on modifications from previous user history in order to identify new changes on behaviors from users / devices.
  • Performance monitor – displays performance statistics for the monitored machines (currently only Windows servers).
  • Information is for CPU, memory and disk usage/free space in real time and 24 hours history.
  • Federated search in multiple CYBERQUEST nodes. 
  • Event load timeline in Browser Module – displays a timeline with the load of the system as per number of events ingested.
  • Event comparison tool – comparing different events to investigate corresponding  attributes.

CYBERQUEST version 2.30 integrates with NETALERT, the new AI/ML-based NDR developed by Nextgen Software within a Consortium with the University of Bucharest. Together or separately, CYBERQUEST and NETALERT offer advanced threat detection, network traffic analysis and anomaly detection to identify and mitigate cyber threats effectively. The integration enhances visibility, improves threat detection accuracy and enables coordinated incident response, reducing the risk of successful attacks and data breaches.


CYBERQUEST is a unified platform designed to unleash operational agility with advanced SIEM, UEBA and SOAR capabilities, fortifing data security to safeguard business integrity and ensure compliance with industry standards. CYBERQUEST functions as an agile, scalable business platform that intelligently collects and correlates data in the organization’s IT infrastructure to address multiple types of present or future threats. CYBERQUEST is a highly scalable platform that can be tailored to meet the needs of organizations of various sizes and use cases. It integrates with all leading security solutions in the market, making it an ideal choice for protecting IT systems.


With a focus on innovation and customer service, NEXTGEN SOFTWARE delivers top-notch solutions that help organizations protect their critical assets and minimize the risk of data breaches. Nextgen Software is proud to have a team of developers with mastery level expertise in cybersecurity. With their knowledge, deep understanding of the latest industry trends and emerging threats, our developers are committed to ensuring that our customers have the best possible protection against cyber threats.

For more information, visit our website at or ask for a free demo of CYBERQUEST 2.30.