We performed a comparison between Group-IB Threat Intelligence and USM Anywhere based on real PeerSpot user reviews.
Find out what your peers are saying about Recorded Future, Check Point Software Technologies, Microsoft and others in Threat Intelligence Platforms."We have found the site intelligence features to be the most valuable."
"The tool's most valuable feature is the sandbox."
"The most valuable Group-IB Threat Intelligence features are their detections, especially in terms of account and card information leakage. This data sets Group-IB apart from some of the competition."
"Threat Intelligence's best feature is threat activation."
"AlienVault's reporting is good. I like that vulnerability assessment is part of the solution, and the UI is intuitive. Also, the overhead is low, which is to say we don't need a dedicated SOC team to manage and analyze things constantly. We're a small company that doesn't have those resources."
"The most valuable features of AT&T AlienVault USM are the ease of management and knowledge of what is on the network of my customers. It's easy to understand the problems, and management our alarms and events."
"I can easily check (in one place) all the logs and data in relation to attacks. It also gives me an overview if a server is not configured properly."
"Any unusual behaviour, we can monitor. We have alerts set up to be sent when we receive signs of any unusual behaviour."
"It is my "security person" looking at irregularities and letting me know when something has occurred."
"The most valuable feature is vulnerability management because it gives you insight into your environment to know what systems need to be updated or patched."
"It has allowed us to see what is happening on our servers."
"Its powerful correlation engine helps reduce time in manually correlating events."
"The web intelligence could be improved. It is not as good as the intelligence from other solutions."
"Threat Intelligence's OT security could be improved."
"Group-IB Threat Intelligence should improve integration for SIEM and SOAR solutions."
"The lack of appliance-based or on-premise options for this solution is its biggest downfall. Clients request them often."
"Adding a parsing interface for the customers would make AT&T AlienVault USM better."
"AT&T AlienVault USM can improve searchable data. It should be available for more than 90 days. If you need more than 90 days of data, you have to put a request and they give you raw data, which is not easy to search. A good addition would be to allow users to search data older than 90 days."
"The vulnerability scanning feature is one of the areas where the product has certain shortcomings and needs to improve. The tool has vulnerability scanning, but it is not that efficient."
"Source material on the forums to be more up-to-date with the changes happening within the product. Forums being out-of-date with information due to the changes makes troubleshooting a little more difficult - specific to the HIDS agents."
"The GUI needs to improve because it's not user-friendly."
"Plugins could be better utilized, as some of them do not recognize all logs."
"I'd like to see a dashboard that's a little more descriptive."
"It was easy on PoC, but when we got to the product it was different story. We had to learn the product again and got feeling that the PoC was a different product."
Group-IB Threat Intelligence is ranked 8th in Threat Intelligence Platforms with 4 reviews while USM Anywhere is ranked 11th in Security Information and Event Management (SIEM) with 113 reviews. Group-IB Threat Intelligence is rated 8.8, while USM Anywhere is rated 8.4. The top reviewer of Group-IB Threat Intelligence writes "Easy to setup, highly stable and scalable and efficiently tracks threat actors and analyze their tactics". On the other hand, the top reviewer of USM Anywhere writes "Easy to use and affordable". Group-IB Threat Intelligence is most compared with Recorded Future, CrowdStrike Falcon, Kaspersky Threat Intelligence Services, Mandiant Advantage and Anomali ThreatStream, whereas USM Anywhere is most compared with Wazuh, AlienVault OSSIM, IBM Security QRadar, Splunk Enterprise Security and Microsoft Sentinel.
We monitor all Threat Intelligence Platforms reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.