Group-IB Threat Intelligence logo

    Group-IB Threat Intelligence

    Sold by
    Group-IB Threat Intelligence is an enterprise cyber threat intelligence platform that reveals the adversaries targeting you: their infrastructure, tooling, and tactics. It combines proprietary closed-source intelligence with AI-driven analysis through Prevyn AI, delivering dark web monitoring, compromised credential detection, threat actor attribution, and real-time IOC feeds with native SIEM, SOAR, and TIP integrations.

    Ratings and reviews

    4.2
    3 ratings
    3 star
    2 star
    1 star
    33%
    67%
    0%
    0%
    0%
    0 AWS reviews
    |
    3 external reviews
    External reviews are from PeerSpot .

    Filters

    Review type

    AWS Marketplace reviews
    External reviews
    Reviews (3)
    ALEX LOGINOV

    Completely satisfied with the way the report is prepared and easy to setup

    Reviewed on May 10, 2024
    Review provided by PeerSpot

    What is our primary use case?

    I used it to build the strategic threat forecast. The annual forecast for clients.

    How has it helped my organization?

    We did use it for threat detection, but not directly. I analyze multiple reports, including this one, and assess my client's infrastructure. I identify threats outlined in the reports that may be relevant to the client's infrastructure, and then I help them build detection use cases.

    There's no automation. We don't do anything automatically at this point. It's all manual and based on analysis. I can't integrate it into automatic feeds because the report outlines threats that may not be relevant to the client's infrastructure. So, I do the analysis and integrate it manually.

    I'm completely satisfied with the way the report is prepared. It's a good report.

    What is most valuable?

    The totality of the recordings is quite important. The networks, the new threat actors, the new methods, tactics, techniques, and procedures. The most important is the forecast. It's how the reports depict what's coming.

    What needs improvement?

    As the landscape evolves, they could provide a little more detail or specificity to map it to the MITRE ATT&CK framework. Even though it is done in the report, it could be done better.

    For how long have I used the solution?

    I used it for four years, since 2020. But recently, I stopped using it.

    What do I think about the stability of the solution?

    I would rate the stability a nine out of ten. Ten means outstanding, so I don't give ten for anything.

    There is always some room for improvement, but I have had no big issues or troubles with stability.

    What do I think about the scalability of the solution?

    I would rate the scalability a nine out of ten. It is quite good. I would recommend it for medium and large-sized companies.

    I wouldn't recommend it for small companies because their infrastructure is not large enough.

    How are customer service and support?

    I never needed it.

    Which solution did I use previously and why did I switch?

    I find it more relevant than others. Some reports are vague or irrelevant with too much information.

    For example, I use CrowdStrike and some other vendors, but I think Group-IB's report is more specific. I am happy with the report.

    How was the initial setup?

    The initial setup is straightforward. I had no issues with that.

    What's my experience with pricing, setup cost, and licensing?

    The pricing is alright. It's right on the mark. It costs money, but it's not too high. It's reasonable.

    For me, it's a reasonable price for the quality of the product.

    What other advice do I have?

    Overall, I would rate the solution a nine out of ten.

    I would recommend using it.

    Abdelrahman Hussein

    Easy to setup, highly stable and scalable and efficiently tracks threat actors and analyze their tactics

    Reviewed on Nov 20, 2023
    Review provided by PeerSpot

    What is our primary use case?

    We use Group-IB Threat Intelligence to help us with threat hunting, incident response, and vulnerability management.

    What is most valuable?

    We have found the site intelligence features to be the most valuable. We are able to use these features to track threat actors and analyze their tactics, techniques, and procedures (TTPs).

    What needs improvement?

    The dark web intelligence could be improved. It is not as good as the intelligence from other solutions.

    For how long have I used the solution?

    I have about four months of experience with this solution. We use its XDR and Set Intelligence solutions.

    We work with the latest version of Group-IB XDR. We are also using the cloud-based version of Set Intelligence.

    What do I think about the stability of the solution?

    I would rate the stability of Group-IB Threat Intelligence as a ten. It is very stable.

    What do I think about the scalability of the solution?

    I would rate the scalability of Group-IB Threat Intelligence as a ten. It is very scalable.

    About ten users are using Group-IB Threat Intelligence in our company. It is used daily in our organization.

    How are customer service and support?

    It is very good.

    Which solution did I use previously and why did I switch?

    We switched to Group-IB Threat Intelligence because it is better than the other solutions we evaluated.

    How was the initial setup?

    I would rate my experience with the initial setup as a ten. It was very easy to set up.

    It is a proof of concept (POC), so we have not deployed it for production yet.

    Which other solutions did I evaluate?


    What other advice do I have?

    I would rate Group-IB Threat Intelligence as an eight out of ten. It is a very good solution.

    Augustine Onewo

    Has sandbox features but needs to improve integration for SOAR and SEIM solutions

    Reviewed on Oct 18, 2023
    Review provided by PeerSpot

    What is our primary use case?

    The solution acts as a defense against cyber incidents.

    What is most valuable?

    The tool's most valuable feature is the sandbox.

    What needs improvement?

    Group-IB Threat Intelligence should improve integration for SIEM and SOAR solutions.

    For how long have I used the solution?

    I have been using the solution for four years.

    What do I think about the stability of the solution?

    Group-IB Threat Intelligence is very stable. I rate it a nine out of ten.

    What do I think about the scalability of the solution?

    We have an enterprise license and unlimited scalability. My company has 10 users.

    How was the initial setup?

    The tool's deployment is easy. I rate it an eight out of ten. The deployment took a day to complete. You need to feed the public IPs to get whitelisted.

    What's my experience with pricing, setup cost, and licensing?

    Group-IB Threat Intelligence's pricing is reasonable.

    What other advice do I have?

    I rate the tool an eight out of ten.