Threat Stack Cloud Security Platform [EOL] Reviews

Vendor: F5

4.1 out of 5

8 reviews
88% willing to recommend

635 followers

What is Threat Stack Cloud Security Platform [EOL]?

Threat Stack Cloud Security Platform [EOL] offers robust security features including endpoint monitoring, rule customization, and integration capabilities, with easy connectivity to cloud services like Docker and AWS.

Get the Threat Stack Cloud Security Platform [EOL] Buyer's Guide and find out what your peers are saying about Threat Stack Cloud Security Platform [EOL], AWS GuardDuty, CrowdStrike Falcon Cloud Security and more!

Buyer's Guide

Threat Stack Cloud Security Platform [EOL]

April 2025

Get the report

Helped 849,686 peers since 2012

Featured Threat Stack Cloud Security Platform [EOL] reviews

Skyler Cain

Software Development Manager at Rent Dynamics

They could give a few more insights into security groups and recommendations on how to be more effective. That's getting more into the AWS environment, specifically. I'm not sure if that's Threat Stack's plan or not, but I would like them to help us be efficient about how we're setting up security groups. They could recommend separation of VPCs and the like - really dig into our architecture. I haven't seen a whole lot of that and I think that's something that, right off the bat, could have made us smarter. Even as part of the SecOps Program, that could be helpful; a quick analysis. They're analyzing our whole infrastructure and saying, "You have one VPC and that doesn't make a lot of sense, that should be multiple VPCs and here's why." The architecture of the servers in whatever cloud-hosting provider you're on could be helpful. Other than that, they should continue to expand on their notifications and on what's a vulnerability. They do a great job of that and we want them to continue to do that. It would be cool, since the agent is already deployed and they know about the server, they know the IP address, and they know what vulnerability is there, for them to test the vulnerability and see if they can actually exploit it. Or, once we patch it, they could double-check that it can't be. I don't know how hard that would be to build. Thinking on it off the top off my head, it could be a little challenging but it could also be highly interesting. It would also be great if we could test a couple of other features like hammering a server with 100 login attempts and see what happens. Real test scenarios could be really helpful. That is probably more something close to what they do with the SOC 2 audit or the report. But more visualization of that, being able to test things out on our infrastructure to make sure we can or can't hit this box could be interesting.

Read full review

Eric Cohen

Sr. Director Information and Security for PureCloud at Genesys Telecommunications Laboratories

The number-one feature is the monitoring of interactive sessions on our Linux machines. We run an immutable environment, so that nothing is allowed to be changed in production. All changes have to happen in development, and then new systems are built in production. The only thing that is allowed in production is troubleshooting, find out what the issue is, but then it has to be fixed in development. We're constantly monitoring to make sure that no one is violating that. Threat Stack is what allows us to do that. The solution's ability to consume alerts and data in third-party tools, via APIs or via export into S3 buckets, is working very well. We use the API to send monitoring to PagerDuty. And we've started using the API into other systems. We have it going out to a Slack channel, we've got some going into our automation. We're doing more and more with the alerting now. We're working directly with Threat Stack to use their APIs as they've recently been expanded. We're logging into S3 to do a little more in-depth research on what our alerts are, and we're also consuming CloudTrail events, which is a fairly recent update to Threat Stack, enabling us to alert on suspicious activity in CloudTrail.

Read full review

Kevin Johnson

Lead Security SRE at InVision

The solution’s ability to consume alerts and data in third-party tools (via APIs and export into S3 buckets) is moderate. They have some work to do in that area. I'd like to see more on that side. I'd like to see much better reporting. The API does not mimic the features of the UI as far as reporting and pulling data out go. There's a big discrepancy there. The other thing that would be really great - and I know this is something they might not want to get into as a business, but it's something I'd love to see - would be if we could bring in data from other tools, specifically AWS WAF. If we could bring in data from there, and include that with what they're already collecting, that would be a huge game-changer for us. Finally, container vulnerability assessment is something they aren't doing right now.

Read full review

PeerResearch reports based on Threat Stack Cloud Security Platform [EOL] reviews

Type	Title	Date
Category	Cloud Workload Protection Platforms (CWPP)	May 1, 2025	Download
Product	Reviews, tips, and advice from real users	May 1, 2025	Download

Title	Rating	Mindshare	Recommending
AWS GuardDuty	4.1	11.7%	91%	22 interviews Add to research
CrowdStrike Falcon Cloud Security	4.1	6.4%	93%	29 interviews Add to research

Valuable Features

Threat Stack Cloud Security Platform [EOL] offers easy configuration, alert customization, and strong threat detection. Users value AWS and Docker container monitoring, interactive session oversight on Linux, and API integrations for data export. The SecOps program provides expert support, enhancing platform security without needing a dedicated internal team. Customizable rules help filter noise, and AWS Config audit simplifies configuration checks. The platform efficiently handles numerous alerts, aiding in security compliance and audit readiness.

"Technical support is very helpful."
"The most valuable feature is the SecOps because they have our back and they help us with the reports... It's like having an extension of your team. And then, it grows with you."
"The number-one feature is the monitoring of interactive sessions on our Linux machines. We run an immutable environment, so that nothing is allowed to be changed in production... We're constantly monitoring to make sure that no one is violating that. Threat Stack is what allows us to do that."

Room for Improvement

Threat Stack Cloud Security Platform [EOL] experiences frequent alerts and lacks process-level monitoring. Expansion into serverless environments like AWS Fargate and Lambda is needed. The user interface can be confusing, while reporting and API integration need enhancements. More insights for AWS security groups and Windows endpoint support are desired. Container vulnerability assessments and better data integration with tools like AWS WAF are requested. Enhancements in compliance, governance, and architectural recommendations are also suggested.

"The compliance and governance need improvement."
"They could give a few more insights into security groups and recommendations on how to be more effective. That's getting more into the AWS environment, specifically. I'm not sure if that's Threat Stack's plan or not, but I would like them to help us be efficient about how we're setting up security groups. They could recommend separation of VPCs and the like - really dig into our architecture. I haven't seen a whole lot of that and I think that's something that, right off the bat, could have made us smarter."
"The API - which has grown quite a bit, so we're still learning it and I can't say whether it still needs improvement - was an area that had been needing it."

ROI

Organizations experienced significant benefits from Threat Stack Cloud Security Platform, such as improved audit tracking and reduced sales cycles by providing necessary security artifacts. Some businesses replaced full-time equivalents, recognizing similar value in breach prevention. Reductions in remediation time occurred, along with enhanced security visibility, resulting in increased revenue opportunities. Although an exact ROI figure is elusive, having Threat Stack facilitated better security practices and enabled companies to meet stringent security requirements.

Pricing

Enterprise users of Threat Stack Cloud Security Platform [EOL] have mixed experiences with pricing and licensing. Some find it cost-effective and competitively priced against market alternatives, while others view it as expensive compared to similar products. Users appreciate its clear licensing structure, citing fees around $15 to $20 per agent monthly and mentioning a single set cost. There is satisfaction with the value and invaluable insights provided, even though it's not the cheapest option available.

"What we're paying now is somewhere around $15 to $20 per agent per month, if I recall correctly. The other cost we have is SecOps."
"It came in cheaper than Trend Micro when we purchased it a few years ago."
"I'm happy with the amount that we spend for the product that we get and the overall service that we get. It's not cheap, but I'm still happy with the spend."

Popular Use Cases

Threat Stack Cloud Security Platform [EOL] is used for file integrity monitoring, security auditing, and alerting. Organizations employ it for privilege escalation monitoring, AWS configuration validation, endpoint protection, and vulnerability management. It assists smaller companies with data collection and incident tracking by providing actionable insights and recommendations. Users leverage its threat visibility dashboard for cloud infrastructure analysis and use it for intrusion detection and CloudTrail analysis on Linux machines.

Service and Support

Threat Stack Cloud Security Platform [EOL]'s technical support is praised for its responsiveness and effectiveness. Users describe it as immediate, professional, and helpful, with support teams including engineering and development staff when needed. Users frequently contact support for issues like rule configurations, receiving timely and accurate assistance. Even rare issues are resolved swiftly, often via chat, with live support if necessary. Despite advanced users discovering unique problems, Threat Stack's team provides comprehensive support continuously.

Deployment

The initial setup of Threat Stack Cloud Security Platform [EOL] is generally straightforward, requiring an understanding of Linux. Many find the installation and deployment easy, especially with cloud compatibility and automation capabilities. Agent setup into production environments might cause performance concerns, needing fine-tuning to align with organization needs. Initial configurations are typically completed within weeks, with continuous tuning for optimal security integration. A collaborative approach with the vendor often enhances the setup experience.

Scalability

Users find the scalability of Threat Stack Cloud Security Platform [EOL] impressive. It deploys easily, manages large-scale traffic, and handles bursts effectively. No scaling issues arise, even during high spikes. Various customers utilize it across numerous AWS accounts and instances without encountering service limits. Chef integration simplifies installation and scaling, though some configuration adjustments might be needed for ECS and Kubernetes. Security engineers appreciate its horizontal scalability and ability to support extensive deployments.

Stability

Threat Stack Cloud Security Platform [EOL] is generally stable, though some users encounter GUI search lag and occasional agent disruptions due to unique circumstances. Most report no downtime or issues with availability, and running it requires minimal management. Companies mention that the instability is often caused by internal factors rather than the platform itself, and many describe it as rock-solid with efficient resource management.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Threat Stack Cloud Security Platform [EOL] Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Computer Software Company

22%

Real Estate/Law Firm

12%

Financial Services Firm

Manufacturing Company

University

Non Profit

Healthcare Company

Educational Organization

Comms Service Provider

Government

Retailer

Insurance Company

Energy/Utilities Company

Logistics Company

Performing Arts

Construction Company

Transportation Company

Recreational Facilities/Services Company

Individual & Family Service

Outsourcing Company

Non Tech Company

Consumer Goods Company

Compare Threat Stack Cloud Security Platform [EOL] with alternative products

Learn more about Threat Stack Cloud Security Platform [EOL]

Threat Stack Cloud Security Platform [EOL] provides tools for enhancing security visibility across cloud infrastructure. It supports AWS and Docker integration, facilitating efficient threat detection and management. Users appreciate its capability to configure customizable alerts and monitor endpoints, sessions, API interactions, and cloud services. However, there are areas needing improvement, such as better serverless environment support and reduced alert frequency. The platform services smaller organizations by compensating for limited security resources with its comprehensive monitoring and auditing tools.

What are the key features?

Easy Cloud Service Integration: Streamlined connectivity with Docker and AWS for efficient monitoring.
Customizable Rule Sets: Tailor security rules to meet specific organizational needs.
Email Alerts: Receive timely notifications about security events and threats.
Interactive Session Monitoring: Track live sessions for suspicious activities.
API Integration: Connect effortlessly with third-party tools for an enhanced security posture.
SecOps Support: Assistance for organizations lacking dedicated security teams.

What are the benefits and ROI features?

Streamlined Threat Detection: Effective process monitoring to identify potential threats.
Cost Efficiency: Serves companies with limited resources by providing essential security functions.
Comprehensive Audits: Helps in regular examinations of cloud infrastructure, enhancing compliance.
Visibility into Cloud Operations: Offers a detailed dashboard for threat visibility and monthly vulnerability assessments.

In specific industries, Threat Stack Cloud Security Platform [EOL] is utilized for its strength in monitoring cloud infrastructure and preventing unauthorized access. Organizations in fields where cloud operations are critical use it for regular audits and monitoring. Its capabilities in threat management are leveraged to maintain secure operations and compliance, especially where there is no dedicated security team.

Threat Stack Cloud Security Platform [EOL] was previously known as Threat Stack, CSP, .