Try our new research platform with insights from 80,000+ expert users

DFLabs IncMan SOAR vs ThreatQ comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

DFLabs IncMan SOAR
Ranking in Security Orchestration Automation and Response (SOAR)
27th
Average Rating
0.0
Reviews Sentiment
7.3
Number of Reviews
1
Ranking in other categories
No ranking in other categories
ThreatQ
Ranking in Security Orchestration Automation and Response (SOAR)
22nd
Average Rating
7.0
Reviews Sentiment
6.6
Number of Reviews
2
Ranking in other categories
Threat Intelligence Platforms (12th)
 

Mindshare comparison

As of July 2025, in the Security Orchestration Automation and Response (SOAR) category, the mindshare of DFLabs IncMan SOAR is 0.2%, up from 0.2% compared to the previous year. The mindshare of ThreatQ is 1.1%, up from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Orchestration Automation and Response (SOAR)
 

Featured Reviews

reviewer1137807 - PeerSpot reviewer
Protects an organization from the threat of a data breach or cyberattack
The vendors themselves will actually help with any customizations a client may require. Many vendors don't offer this service or if they do, they charge very high rates. Their vendors are very helpful; they will walk you through the whole Playbook until you have a good grasp of the product. Also, in terms of integration, it is very seamless compared to other cybersecurity products. They also have good features such as multi-tenancy. Every user would like to see these kinds of fanciful features on a robust interface. It actually makes the user feel like they are in a sci-fi movie.
Yasir Akram - PeerSpot reviewer
Good reporting and pretty stable but needs to be simpler to use
The support team of ThreatQ set up a VM on our VPN, which was SlashNext's private VPN. Then we just initiated some system calls and ThreatQ provided us the configuration file with our settings (like our email, our API key, our URL, our category, etc.). They set up a VM on our private VPN cloud. And then they provided us the configuration file in which we just entered our details like our company URL, our API category, and API keys et cetera. We could just add it on the configuration file. We just uploaded it to the ThreatQ server. After running the system calls, we just initiated the ThreatQ and then performed tasks on the UI, such as categorizing the reports. If we only wanted the report for phishing, then we just manipulated the data on the UI and just extracted the reports. That's all. The deployment was complex. We used high hardware specifications. I don't remember the exact specifications, however, I recall them being high. There were some services that had some compatibility errors. That's why we had our VMs - to make sure that the customer would not face any errors. Everything's deployed with high specifications and custom specifications. That was the biggest challenge for us - to deploy on the customer VMs. On average, deployment takes 15-20 minutes if it's deployed without any errors. I was with one of the NetOps network admin during deployment. We were only two people and we just deployed and installed all services and we executed the deployment.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The vendors themselves will actually help with any customizations a client may require"
"Integrating the solution with our existing security tools and workflows was easy."
"The reporting services are great. With reporting services, if you have customers that just visit a URL you can see the result - including why it's blocked and how and how the URL was first recognized as malicious."
 

Cons

"The support is not 24/7."
"The tool is not user-friendly."
"The solution should be simpler for the end-user in terms of reporting and navigating the product."
report
Use our free recommendation engine to learn which Security Orchestration Automation and Response (SOAR) solutions are best for your needs.
861,524 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Financial Services Firm
23%
Computer Software Company
11%
Manufacturing Company
10%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
No data available
 

Questions from the Community

Ask a question
Earn 20 points
What do you like most about ThreatQ?
Integrating the solution with our existing security tools and workflows was easy.
What needs improvement with ThreatQ?
The tool is not user-friendly. It is not beginner-friendly. It would be very difficult for a beginner to learn the tool. It will take at least two months to get familiar with it. Building the playb...
What is your primary use case for ThreatQ?
We used the solution for threat mapping and managing IoCs.
 

Comparisons

No data available
 

Also Known As

DFLabs IncMan Incident Response
No data available
 

Overview

 

Sample Customers

University of Advancing Technology, Cybersecurity Ventures
Radar, Bitdefender, Crowdstrike, FireEye, IBM Security
Find out what your peers are saying about Microsoft, Palo Alto Networks, Splunk and others in Security Orchestration Automation and Response (SOAR). Updated: June 2025.
861,524 professionals have used our research since 2012.