We performed a comparison between Group-IB Threat Intelligence and USM Anywhere based on real PeerSpot user reviews.
Find out what your peers are saying about Recorded Future, Check Point Software Technologies, Microsoft and others in Threat Intelligence Platforms."The tool's most valuable feature is the sandbox."
"Threat Intelligence's best feature is threat activation."
"We have found the site intelligence features to be the most valuable."
"The most valuable Group-IB Threat Intelligence features are their detections, especially in terms of account and card information leakage. This data sets Group-IB apart from some of the competition."
"On any given day I could give you a different answer regarding the most valuable features of the product. The feature that is most important is the fact that it has a lot of features, that it's not just a log collection and correlation system, that it has a lot of other components built in. The bundle of features is really the killer feature."
"It allows you to define what alerts you want to see, or not to see, as well as if you want them grouped, or ungrouped."
"AlienVault's reporting is good. I like that vulnerability assessment is part of the solution, and the UI is intuitive. Also, the overhead is low, which is to say we don't need a dedicated SOC team to manage and analyze things constantly. We're a small company that doesn't have those resources."
"Asset discovery seems to be good."
"Using the communication within the security device, it is easier to create plugins."
"The solution has all the features that we need, however they do not work correctly."
"The vulnerability manager and the file integration are very good."
"I can easily check (in one place) all the logs and data in relation to attacks. It also gives me an overview if a server is not configured properly."
"Group-IB Threat Intelligence should improve integration for SIEM and SOAR solutions."
"The web intelligence could be improved. It is not as good as the intelligence from other solutions."
"Threat Intelligence's OT security could be improved."
"The lack of appliance-based or on-premise options for this solution is its biggest downfall. Clients request them often."
"The vulnerability scanning feature is one of the areas where the product has certain shortcomings and needs to improve. The tool has vulnerability scanning, but it is not that efficient."
"One area that has room for improvement is storage. AllienVault is a good place to put logs, but sometimes it's a tough place to go get logs... The logger can only hold so much data. If they improved that, that would help."
"The one thing I continue to dislike about the USM is the limitation on reports."
"AlienVault cannot automatically respond to threats like other SIEM solutions, such as Sentinel and LogRhythm. Most of our clients are far away, so it's often challenging to handle alerts when they come up on our dashboard."
"In the future, I would like to see all these features of the solution working properly."
"I've been told that AlienVault doesn't have a full version of NES running in there, but I'm not sure if that's accurate or if my engineer made it that way. I'm not sure he was completely honest either because we had NES in the environment before. Those tools could be improved because AlienVault is a SIEM, and it added all these other features."
"I've been using it just for my own personal upskilling in terms of how the product works. At the moment, it is pretty straightforward and simple, and it is working how it is supposed to. The feedback would come once it is deployed to customer sites. They'll be using it on a more frequent basis, and that's when the feedback would come in terms of the areas in which they're facing issues or are looking for simplicity."
"We've had some stability problems, not a lot, but a few. Updates seem to be the worst. That seems to be when the stability problems come up."
Group-IB Threat Intelligence is ranked 8th in Threat Intelligence Platforms with 4 reviews while USM Anywhere is ranked 11th in Security Information and Event Management (SIEM) with 113 reviews. Group-IB Threat Intelligence is rated 8.8, while USM Anywhere is rated 8.4. The top reviewer of Group-IB Threat Intelligence writes "Easy to setup, highly stable and scalable and efficiently tracks threat actors and analyze their tactics". On the other hand, the top reviewer of USM Anywhere writes "Easy to use and affordable". Group-IB Threat Intelligence is most compared with Recorded Future, CrowdStrike Falcon, Kaspersky Threat Intelligence Services, Mandiant Advantage and Anomali ThreatStream, whereas USM Anywhere is most compared with Wazuh, AlienVault OSSIM, IBM Security QRadar, Splunk Enterprise Security and Microsoft Sentinel.
We monitor all Threat Intelligence Platforms reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.