Senior Cyber Security Expert at a computer software company with 201-500 employees
Real User
Top 10
Feb 24, 2026
I am not using their AI tool. I do not know if they have any AI currently. I did not check it, but every company nowadays has some AI platform or AI integration because it is a new niche. I basically use what they had from before, such as their threat intelligence, their guides, their background research, and their monitoring from Telegram. I do not use anything specifically labeled as AI from them. If they already have it implemented in the core of their solution, then I am using it and did not even know about it. They might have it, but not that I am aware of. I am not using something that is per se AI from them or used before. I have used the unique dark web sources that SOCRadar Extended Threat Intelligence provides. I use the sources that they give me. Sometimes they provide even the Telegram chats and forums where they conduct their research. They are very transparent about this. We can go there and access the Onion links and everything. I use them, but not very often because when they do the work for me, I do not need to use them that much. However, for curiosity, I sometimes go in and check the sources. SOCRadar Extended Threat Intelligence offers Takedown services. I have never used them because I never needed the service, as we never had an exposure that would require a takedown service from them. I did use the information once or twice to do it myself. We used the information that we had an impersonating domain and, instead of using their services which again requires credits and is expensive, I did the work myself. I contacted the provider and told them that the impersonation was not authorized, and we handled it ourselves. I never used their service and do not know how good it is. The issue comes down to credits and cost. I have not used their Identical Phishing workflow for noise minimization capabilities. I have never used that tool because phishing is already integrated within Microsoft Exchange, and Microsoft already has pretty good threat intelligence with it, so we keep it within Microsoft. We mainly use Microsoft, or if we use Google, Google has their own services as well. Attack Surface Threat Assessment is a really good feature because I can use it to get leads on customers. When I get a customer and input it there as an MSSP, it gives me the attack surface of the customer and their exposure. Again, you need some credits to make a search and complete the process. Before, you needed to ask them personally to add a customer. I believe they changed that so you can go on the fly and add it yourself, but previously you needed to ask them, which was not comfortable. Otherwise, the product itself is good because it gives you a good overview of the company's exposure. It was really good for getting leads. If you have a possible customer lead and input that domain, it will give you more information about the exposure of that possible customer and get you ready to win a new customer, which for me is a very important point when it comes to cybersecurity in MSSPs. I had many consulting jobs with companies that wanted SOCRadar Extended Threat Intelligence and wanted more details on the operational side. One of the things I tell everyone is the ease of getting started with them because they are super fast, they are technical, and they help. When you pay such an amount of money, they will help you with everything. SOCRadar Extended Threat Intelligence does not require any maintenance on my end. Everything is being taken care of by them from their API. For example, if you have it on your CM tool, it is taken care of by them. Only if you want to add more customers, you can do it yourself, but otherwise, everything is in the background with them. It is super easy. I do not need to deal with anything. I have never had to do any type of maintenance from my side. Even if I have the free tool or the complete tool, I have never had to do any maintenance.
Threat Intelligence Platforms provide comprehensive solutions for collecting, analyzing, and managing threat data. They enhance security teams' understanding and response capabilities, ensuring proactive defense against emerging threats.These platforms aggregate vast amounts of threat data from multiple sources, offering a centralized interface for organizations to manage and analyze security threats efficiently. By automating threat data collection and enhancing threat analysis, they enable...
I am not using their AI tool. I do not know if they have any AI currently. I did not check it, but every company nowadays has some AI platform or AI integration because it is a new niche. I basically use what they had from before, such as their threat intelligence, their guides, their background research, and their monitoring from Telegram. I do not use anything specifically labeled as AI from them. If they already have it implemented in the core of their solution, then I am using it and did not even know about it. They might have it, but not that I am aware of. I am not using something that is per se AI from them or used before. I have used the unique dark web sources that SOCRadar Extended Threat Intelligence provides. I use the sources that they give me. Sometimes they provide even the Telegram chats and forums where they conduct their research. They are very transparent about this. We can go there and access the Onion links and everything. I use them, but not very often because when they do the work for me, I do not need to use them that much. However, for curiosity, I sometimes go in and check the sources. SOCRadar Extended Threat Intelligence offers Takedown services. I have never used them because I never needed the service, as we never had an exposure that would require a takedown service from them. I did use the information once or twice to do it myself. We used the information that we had an impersonating domain and, instead of using their services which again requires credits and is expensive, I did the work myself. I contacted the provider and told them that the impersonation was not authorized, and we handled it ourselves. I never used their service and do not know how good it is. The issue comes down to credits and cost. I have not used their Identical Phishing workflow for noise minimization capabilities. I have never used that tool because phishing is already integrated within Microsoft Exchange, and Microsoft already has pretty good threat intelligence with it, so we keep it within Microsoft. We mainly use Microsoft, or if we use Google, Google has their own services as well. Attack Surface Threat Assessment is a really good feature because I can use it to get leads on customers. When I get a customer and input it there as an MSSP, it gives me the attack surface of the customer and their exposure. Again, you need some credits to make a search and complete the process. Before, you needed to ask them personally to add a customer. I believe they changed that so you can go on the fly and add it yourself, but previously you needed to ask them, which was not comfortable. Otherwise, the product itself is good because it gives you a good overview of the company's exposure. It was really good for getting leads. If you have a possible customer lead and input that domain, it will give you more information about the exposure of that possible customer and get you ready to win a new customer, which for me is a very important point when it comes to cybersecurity in MSSPs. I had many consulting jobs with companies that wanted SOCRadar Extended Threat Intelligence and wanted more details on the operational side. One of the things I tell everyone is the ease of getting started with them because they are super fast, they are technical, and they help. When you pay such an amount of money, they will help you with everything. SOCRadar Extended Threat Intelligence does not require any maintenance on my end. Everything is being taken care of by them from their API. For example, if you have it on your CM tool, it is taken care of by them. Only if you want to add more customers, you can do it yourself, but otherwise, everything is in the background with them. It is super easy. I do not need to deal with anything. I have never had to do any type of maintenance from my side. Even if I have the free tool or the complete tool, I have never had to do any maintenance.