Anomali ThreatStream vs. IBM X-Force Exchange

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Anomali ThreatStream
Score 6.4 out of 10
N/A
A solution to operationalize actionable data and insights to secure any organization. Anomali ThreatStream provides curated access to the a global repository of threat intelligence, delivering enrichment, contextualization, and detection of known and emerging threats.N/A
IBM X-Force Exchange
Score 6.0 out of 10
N/A
IBM experts provide the X-Force threat intelligence suite of services, including X-Force Research and X-Force Research Publications, and the X-Force Exchange platform for sharing threat intelligence knowledge and best practice with industry experts.N/A
Pricing
Anomali ThreatStreamIBM X-Force Exchange
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Anomali ThreatStreamIBM X-Force Exchange
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
Anomali ThreatStreamIBM X-Force Exchange
User Ratings
Anomali ThreatStreamIBM X-Force Exchange
Likelihood to Recommend
8.9
(0 ratings)
7.0
(0 ratings)
User Testimonials
Anomali ThreatStreamIBM X-Force Exchange
Likelihood to Recommend
Parsing is useful information into other tools but can be a hit or miss depending on the tool. In regards to the quality of data, there is room for improvement as there is a constant growth of attackers and their techniques. Anomali Threat stream does well for larger organizations to use in tandem with other security suites.
Read full review
IBM X-Force is well suited for organizations with medium to large SOC's and run IBM Qradar as their SIEM.
Read full review
Pros
  • Indicators of Compromise
  • Signatures
  • Community Sharing
Read full review
  • Ready made security research on threats.
  • Security Intel
  • Integrate threat intel feeds with SIEMs.
Read full review
Cons
  • The user interface, perhaps there is some room for improvement although it is good already.
  • Confidence assigning process for IOCs needs to be more robust and transparent.
  • While integration with SIEM solutions is a cakewalk, there is definitely added value if SIGMA rule conversion and YARA rule creation are provided from the platform.
Read full review
  • Pruning of IOC to reduce false positives.
  • Add more flexibility to integration on SIEMs to allow users to compare UserAgents, Compromised users/domains like HIBP.
  • Only watch vulnerabilities for selected vendors.
Read full review
Alternatives Considered
I think they both have their own pros and cons. However, I like Anomali ThreatStream better because of its strong local presence in MENA market which renders great support from the vendor during needy times. I have also figured out that IOC integration with SIEM solutions is fairly easy and straight forward with Anomali ThreatStream.
Read full review
IBM X-force is community-based and crowd strike is not. Community-based will always be best-effort quality.
Read full review
Return on Investment
  • We have seen a positive ROI as the security monitoring is taken to the next level when it is augmented with threat intel data that Anomali provides.
  • Our customers are very satisfied with the periodic threat reports that we send, which are created using Anomali ThreatStream.
  • The overall business objectives are met as Threat Intel is one of the most important pillars when it comes to providing security services, and we use Anomali ThreatStream extensively for that.
Read full review
  • Threat Intel - Low Confidence IOC - Overhead.
  • Lack of integration with IBM Qradar+Vulnerability via X-Force.
Read full review
ScreenShots