ThreatConnect Threat Intelligence Ops Platform Reviews & Product Details

We use the TIP data to compare logs in our SIEM to hunt for threats and enrich other threats that we may come across. More significantly in the last bunch of years, they added SOAR capabilities that are improving. We use the SOAR to automate many of the first steps that our SOC would otherwise need to do manually. It has also allowed for fewer panes of glass or the SOC to look at things through. If there isn't already an app for integration with another vendor, the HTTP client has proven to be very flexible for creating those integrations with another product's API. Review collected by and hosted on G2.com.

The UI could use improvements. There are some, such as the ability to work on a number of indicators showing up in an event from the one screen, that I've been asking for for years and still isn't there. Review collected by and hosted on G2.com.

ThreatConnect TIP has an extensive Playbook & Custom APP capabilities. As they have an HTTP Client engine, you can integrate it with literally any system that supports RESTful APIs or TAXII servers (which is pretty much supported by all big solutions or security technologies). This means that you can, without any help, build your own playbook to integrate with any system within the organization. This allows for an incredible level of automation and customization for your specific use cases and needs. Review collected by and hosted on G2.com.

At the initial stages of using the Platform, we struggled a little as creating efficient playbooks and apps is not an easy task. However, the ThreatConnect CSE has done an incredible job getting us accustomed to the platform. We also get a training bundle and access to ThreatConnect Learning platform with no added cost. Review collected by and hosted on G2.com.

Our one of the client uses Threat connect for threat intellicence to block and protect the user playbooks is the best part. Review collected by and hosted on G2.com.

I dont like some cabability while writing the TQL and API calling with other tools Review collected by and hosted on G2.com.

What I like the most about Threat Intelligence Ops platform that they provided different dashboards which help to prioritize threat so we can take best action. I used Ops platform frequently for day to day activity as a threat hunter must be work on recent threats and malwares, the platform are very easy to use and user friendly, implementation was easy, I have not done but got positive feedback from peers. I can connect with threat connect team to get help on particular issue I am facing with portal and team helps me with my issues. Review collected by and hosted on G2.com.

There are no thing to dislike about Ops platform. Review collected by and hosted on G2.com.

Easy Integration with multiple cyber security detection tools for early detection of threat using high fedelity threat intelligence.

seemless aggregation of IOCs from multiple sources and identification of high fedelity threat intelligence and threat actors most likely trageting perticular industry or platfomrs.

Feature helping in profiling threat actors. Review collected by and hosted on G2.com.

Nothing as of now i remember perticualerly which i dislike. Review collected by and hosted on G2.com.

The platform is beyond expectations, has a lot of inbuilt integrations, Threat feeds corelations, ease of implementation and provide a wonderful solution to respond to cyber threats. Review collected by and hosted on G2.com.

Few minor bugs and sometimes the platform is a little hard to navigate Review collected by and hosted on G2.com.

Measure and demonstrate the value and impact of our program. Review collected by and hosted on G2.com.

I am still learning about this product as a user. So far I find it very easy to use. Review collected by and hosted on G2.com.

good interface, provides much details in a user friendly language, easier to review the threat and take action Review collected by and hosted on G2.com.

nothing much, just I feel that the reporting feature can be better Review collected by and hosted on G2.com.

Easy for any company to effectively prioritize potential high-risk issues, as well as easy on records maintenance, and ThreatConnect allows the user on easy threat detection via actionable analysis.

Tracking functionality is good, and its dashboard allows simple assessment of risk and easy operation reporting effectively. Review collected by and hosted on G2.com.

Nothing important that came across during the TreatConnect implementation and even learning much about the tools. Review collected by and hosted on G2.com.

This software combines orchestration, automation and response to increase proactive and efficiency. It automate workflow with defensive to provide intelligence. Review collected by and hosted on G2.com.

No dislike so far that we can confirm about this software it work with our organization well. Review collected by and hosted on G2.com.