TL;DR: The Quest Security Management Platform is a unified identity security platform spanning identity threat detection and response (ITDR), modernization, and the full NIST Cybersecurity Framework 2.0 with native capabilities across Govern, Identify, Protect, Detect, Respond, and Recover. With Quest Software’s acquisition of Anetac, the platform will provide continuous, live intelligence into what every human, non-human, and agentic identity is doing across hybrid Active Directory and Entra ID environments. Together, these capabilities give security teams a single platform to see risk before it is exploited, contain threats when they emerge, and recover trust when it is compromised.
The most unsettling problem in identity security isn’t the risk of a breach. No, it’s that most organizations don’t actually know what their identities are doing. Not in a “we need better dashboards” way, but in a deeper, structural way. The tools most teams use to assess identity risk are built around configuration. They tell you how access is set up, but not how it’s being used. And if they do show how access is being used, it’s a snapshot in a moment that has already happened, limiting any chance you have of containing or minimizing a threat in the moment. How access is set up and how it’s being used are very different things.
A service account that hasn’t generated a helpdesk ticket in two years looks completely dormant on paper. But it might be authenticating into a domain controller at 3 a.m. and reaching a database it’s never touched before. You’d never know from a periodic scan. A snapshot doesn’t catch something that happens between snapshots.
Attackers don’t work through lists of misconfigurations; they work through graphs. They trace how identities connect to other identities, how privileges chain, and how access quietly reaches things it shouldn’t. Anetac shows the graph. This is why Quest’s acquisition of the company will change the approach to identity security as we speed into the agentic AI era.
With the addition of Anetac, the Quest Security Management Platform will deliver what no other company can offer: end-to-end coverage across the full identity security lifecycle, aligned to every pillar of NIST CSF 2.0 and Gartner’s expanded ITDR model.
What Anetac will bring to the platform
The Quest Security Management Platform already delivers proven capabilities spanning ITDR and modernization across the NIST CSF 2.0 pillars. Quest Identity Defense protects, detects, and contains threats across hybrid Active Directory and Entra ID environments. Quest Identity Recovery delivers attack-tested, automated recovery. Secure Migration extends those protections through periods of high-risk change.
Anetac makes that coverage stronger with continuous, live intelligence across the Identify phase that everything else builds from.
Most tools in this space are static. They tell you what could be exploited based on a snapshot of how things are configured. Anetac does something different. It maps live identity access chains by analyzing what identities actually do, not just how they’re set up. Its graph database architecture is built to understand relationships and dependencies at massive scale, tracing how identities interact with systems and data, and where confirmed risk is actively forming.
That visibility extends across every identity type. Human identities carry hidden privileged access and residual permissions that linger long after role changes. Non-human identities often run with insecure authentication methods and go entirely unmonitored in production. Agentic AI identities act autonomously, around the clock, chaining access across systems in ways no one has mapped. According to Gartner, 58% of organizations have already experienced a cybersecurity incident involving the compromise of an AI-linked machine identity. Anetac makes all of it visible.
Building it into the Quest Security Management Platform, expected to be complete before the end of the year, will give our customers benefits that no other provider can claim.
One platform. Full identity security coverage.
The Quest Security Management Platform currently spans all six NIST CSF 2.0 pillars with native, deeply integrated capabilities. Anetac strengthens that coverage, extending identity visibility beyond directories and sharpening every other capability on the platform. Here’s how everything fits together.
1. Govern
Group Policy Objects are Tier 0 assets that define how access is granted, how endpoints behave, and how security controls are enforced across the environment, making them high-value targets. Quest extends Tier 0 protection to GPOs directly, enforcing controlled, auditable policy changes with versioning and rapid rollback and preventing attackers from exploiting Group Policy.
2. Identify
Quest Identity Defense delivers deep assessment and visibility across AD and Entra ID for human and non-human identities. Anetac expands that coverage, showing how identity risk is forming across hybrid environments, including human, non-human, and agentic identities. It continuously maps live access chains and surfaces how identity behavior and access relationships evolve in real time. This exposes toxic access paths and shadow access relationships that siloed tools cannot see, including the dormant-looking accounts that are anything but.
3. Protect
Quest Identity Defense blocks malicious identity changes at the directory control plane, catching activity that endpoint and EDR tools miss. Deep integration with Active Directory and Entra ID enables Tier 0 protections that actively safeguard crown-jewel assets in any environment.
4. Detect
Quest Identity Defense surfaces threats through human-readable audit trails before attackers have a chance to spread or entrench. Because Anetac continuously maps live access behavior, anomalies will surface earlier and with richer context, giving Identity Defense more signal to act on.
5. Respond
When a threat is confirmed, the Quest Security Management Platform moves immediately to containment. With its Shields Up capability, Identity Defense freezes changes to critical identity assets during an active incident, halting lateral movement including DCShadow-style attacks. Where an individual identity needs to be isolated, Quest locks it down to prevent further changes, turning visibility directly into action.
6. Recover
Quest Identity Recovery delivers proven, automated recovery from granular object-level restores to full environment rebuilds, enabling up to 90% faster identity recovery, a 44% improvement in mean time to recovery, and $19.7 million in potential recovery cost savings. Restores are clean, validated, and free of reintroduced malicious changes.
Beyond steady-state operations, Quest Secure Migration extends identity security coverage through the highest-risk moments of change. M&A activity, tenant consolidation, and cloud adoption create ideal conditions for attackers through parallel directories, privilege sprawl, and relaxed controls. Quest treats migration as a security-critical event, maintaining Tier 0 protection, auditing, and recovery readiness from start to finish.
Why Quest stands apart
Security teams today are overwhelmed with point products, spending time and budget assembling tools that don’t share context, don’t coordinate controls, and rarely hold together during periods of change. Most competitors address one part of the identity security lifecycle, whether detection, recovery, or posture assessment. Quest addresses the full lifecycle. Adding Anetac’s technology to our offering completes this.
The Quest Security Management Platform is the only solution built to unify continuous access-chain visibility, control-plane protection, automated recovery, and secure migration into a single, coordinated platform aligned to NIST CSF 2.0 and Gartner’s expanded ITDR model. What Anetac adds is the continuous identity intelligence that makes every other capability on the platform more effective.
Anetac proves the risk. Identity Defense contains the attack. Identity Recovery restores trust. That’s the complete identity security story, and it’s only available from Quest.
