IBM Security QRadar EDR (formerly ReaQta) combines automation and dashboards to minimize analyst workloads, detect anomalous endpoint behavior and remediate threats in near real time. With visibility across endpoints, it combines expected features, like MITRE ATT&CK mapping and attack visualizations, with dual-engine AI and automation. For teams that need extended support, managed detection and response (MDR) services offers 24/7 monitoring and response to help keep users…
N/A
ThreatLocker
Score 9.5 out of 10
N/A
ThreatLocker Inc. is a security platform used to stop misuse and vulnerable software as well as control application elevation, storage and network traffic.
We had a lot of experience with IBM security products and services, and IBM Security QRadar EDR offered a low risk approach to endhance endpoint secuirty protection.
Ease of deployment, gartner leader solution and with help of IBM Security QRadar EDR as SIEM to integrate with the EDR solution of IBM. Visualization is beautiful which provides the right source of information also by keeping the visibility of the actual threats and keep away …
The main feature over other tools if the AI and ML capabilities of EDR as it saves a lot of efforts and resources for proper identification and proper action can be taken in much effective way. The dashboard is also better, and automation activities are better as compared to …
Bitdefender GravityZone combines multiple security services into a single platform to reduce the cost of building a trusted environment for endpoints. bit the IBM provides a vast support and always there to guide when in need With the majority of our users working in hybrid …
IBM Security QRadar EDR is more flexible in deployment in both on premise and cloud environment whereas microsoft sentinel is a cloud native solution .
QRadar EDR wins with its offline NanoOs agent, native XDR integration, and behavioral fraud analytics for UPI/digital wallet& outpacing niche players in hybrid deployment agility and regulatory heavy market like us.
Prior to buying ThreatLocker, we evaluated Tanium's whitelisting module. We felt that ThreatLocker's method of baselining existing applications and comparing them to known IoC's made for an easier implementation. To be fair, this was solely based on demonstrations by each …
The pricing is what matters the most on this. We went with ThreatLocker mostly because of their pricing and as time has gone on, we have completely fallen in love with the tool. The vendor support is miles better than all other tools I have used and being able to freely …
I honestly have not seen many other programs like Threatlocker so I do not have any to compare to. Auto-Elevate may be the closest, however I did not evaluate them as part of my decision. Threatlocker does do a great job at onboarding which made deploying, setting up, and …
We chose Threatlocker because it is unique in that it specializes in a specific area, whereas other products offer a broader range of capabilities. It blocks software from running and provides us with all the necessary information for this purpose in an easy-to-use graphical …
IBM Security QRadaar EDR provides all the security features at one place with a reasonable price. Though for smaller organizations, the price may be quite high. Plus since it can detect threats and malwares in real time, every business should try them out.
If you want to know what is running in your environment and what it is trying to access, you should be able to take preemptive measures to prevent and protect yourself from it. ThreatLocker is the system for you! It will replace almost any EDR requirement, although I recommend you partner it with Windows Defender.
ThreaLocker has done its job and has prevented malware from executing. It has stopped an encryption process once already. It has kept a user from going to a bad website. He tried twice and was wondering why he was getting an error message from ThreatLocker and ESET both.
The console is very user friendly and is frequently updated based on user requests. It is well laid out and many of the areas allow the ability to pivot from one area to another without having navigate the entire menu tree. Much of what you do is to query activities on a given PC and the application allows you to save frequently run queries.
You can email, call or do online chat with tech support. I love their online chat. They are quick and friendly. Also, if you need to show them something, you can give the chat technician permission from your Chat box to allow the tech access to your computer. They also can pull out your admin console on their side. They can look at your "Unified Audit" log and see the same thing that you can. They have a good KnowledgeBase that you can look for answers. They have what is called "ThreatLocker University" where you can go through tutorials and take tests.
The owners and co-founders work with you through Zoom Meetings. They walk you through how to use and setup ThreatLocker. They also have webinars. You also can go through ThreatLocker University online training.
Using ThreatLocker University online training is very easy and informative. You take online tests to see how well you learned the material. It is great!
ThreatLocker is a family ran business. The owners, co-founders work with you to ensure you are up and running as quickly as possible. They went to ensure your success with ThreatLocker.
Bitdefender GravityZone combines multiple security services into a single platform to reduce the cost of building a trusted environment for endpoints. bit the IBM provides a vast support and always there to guide when in need With the majority of our users working in hybrid mode we needed a strong security control that could provide top-class protection with the minimum amount of False Positives (and, of course, of True Positives).
We chose Threatlocker because it is unique in that it specializes in a specific area, whereas other products offer a broader range of capabilities. It blocks software from running and provides us with all the necessary information for this purpose in an easy-to-use graphical user interface (GUI), which is all we need for our use case.
ThreatLocker is very easy to add new ThreatLocker agents on computers and servers. It is very easy to do. You can install an agent on a computer or server in about 2 minutes or less.
NOCs and SOCs heavily use IBM Security QRadar EDR and IBM Security QRadar EDR reduced labor costs to identify endpoint security threats and the treat remediation
IBM Security QRadar EDR offers a consistent approach to endpoint threat identification and resolution, reduces enterprise security operations support costs
In general, IBM Security QRadar EDR enhances enterprise security posture
Applications that are new to the environment can be blocked even if they are wanted. Which can cause strain on the environment if not properly tuned or prepped.
We have this deployed onto around 7700 endpoints at this moment with less than 0.01% of issues with the agent or its functionality being noted. It's incredibly stable and the Vendor support further helps if it does break, and they can usually fix it without 15 mins.
We have had this tool on customers, and it has single handedly stopped Ransomware attacks by itself when the customers previous EDR failed to catch threat actor attacks. I can remember 3 separate instances where someone did something to cause an attack and ThreatLocker brought it to a screeching halt due to the application control and built-in ringfencing it provides.