Badges

20 Points
3 Years

User Activity

Almost 3 years ago
I think the one thing you want to do is to review how much each solution will help you reduce your investigative workload... Each and every organization will have its own strength and requirements. If you're looking for an on premise solution, then maybe CB is your choice…
About 3 years ago
I agree with some of the comments. Crowdstrike is way ahead of CB. However, both are cloud solutions, and depending on your business regulatory guidelines, you may have challenges having to send raw data to the cloud directly from the endpoints. 
About 3 years ago
IMO, it depends on whether you have abilities to validate and/or correlate telemetries - these guys brings out quite a lot of telemetry alerts for you to work on...
About 3 years ago
Are you researching to buy or to resell?
About 3 years ago
TI feeds must include open source and commercial feeds... It may be better to get a platform rather than individual feeds. It's always better to have more feeds to validate each other

Answers

Almost 3 years ago
EPP (Endpoint Protection for Business)
About 3 years ago
Threat Intelligence Platforms