# Best Threat Intelligence Software *By [Brandon Summers-Miller](https://research.g2.com/insights/author/brandon-summers-miller)* Threat intelligence software provides organizations with information related to the newest forms of cyber threats like zero-day attacks, new forms of malware, and exploits. Companies use these tools to keep their security standards up to date and fit to address new threats as they emerge. These tools can improve security performance by providing information on threats to their specific networks, infrastructure, and endpoint devices. Threat intelligence software provides information about hazards and how they function, their capabilities, and remediation techniques. IT administrators and security professionals use the delivered data to better protect their systems from emerging threats and plan for possible vulnerabilities. The tools alert users as new threats emerge and provide information detailing best practices for resolution. Many products, like [security information and event management (SIEM) software](https://www.g2.com/categories/security-information-and-event-management-siem) and [vulnerability management software](https://www.g2.com/categories/vulnerability-management), can integrate with or provide similar information as threat intelligence products. Additionally, these products continue to integrate with artificial intelligence (AI) to better tailor this complex suite of data for specific organizations’ needs. These newer capabilities can include being able to generate threat reports based on newly aggregated threat intelligence data. This data directly pertains to the organization where the software is deployed. The newer capabilities also help in creating threat detection rules based on observed patterns in malicious actors’ behaviors. To qualify for inclusion in the Threat Intelligence category, a product must: - Provide information on emerging threats and vulnerabilities - Detail remediation practices for common and emerging threats - Analyze global threats on different types of networks and devices - Cater threat information to specific IT solutions ## Top Threat Intelligence Software at a Glance | # | Product | Rating | Best For | What Users Say | |---|---------|--------|----------|----------------| | 1 | [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) | 4.6/5.0 (410 reviews) | Endpoint threat detection and response | "[Lightweight Deployment, Powerful Incident Response Visibility](https://www.g2.com/survey_responses/crowdstrike-falcon-endpoint-protection-platform-review-12952621)" | | 2 | [Recorded Future](https://www.g2.com/products/recorded-future/reviews) | 4.6/5.0 (225 reviews) | External threat intelligence investigation | "[Real-Time, Actionable Threat Intelligence with Seamless Security Tool Compatibility](https://www.g2.com/survey_responses/recorded-future-review-12733983)" | | 3 | [Cyble](https://www.g2.com/products/cyble/reviews) | 4.8/5.0 (142 reviews) | Dark web and brand exposure intelligence | "[AI-Enabled, User-Friendly Platform for Continuous Threat Monitoring](https://www.g2.com/survey_responses/cyble-review-12964533)" | | 4 | [CloudSEK](https://www.g2.com/products/cloudsek/reviews) | 4.8/5.0 (137 reviews) | Digital risk and brand threat monitoring | "[Comprehensive threat intelligence with an intuitive interface and top-tier support](https://www.g2.com/survey_responses/cloudsek-review-12721015)" | | 5 | [SOCRadar Extended Threat Intelligence](https://www.g2.com/products/socradar-extended-threat-intelligence/reviews) | 4.7/5.0 (106 reviews) | Attack surface and dark web risk visibility | "[Unified and proactive vision of external threats, with contextualized alerts](https://www.g2.com/survey_responses/socradar-extended-threat-intelligence-review-12241213)" | | 6 | [GreyNoise](https://www.g2.com/products/greynoise/reviews) | 4.8/5.0 (129 reviews) | Internet scanning noise reduction | "[Strong IP intelligence with easy integrations into existing tools](https://www.g2.com/survey_responses/greynoise-review-12725962)" | | 7 | [ZeroFox](https://www.g2.com/products/zerofox/reviews) | 4.4/5.0 (133 reviews) | External brand impersonation protection | "[ZeroFox Fills the Gap Traditional Security Tools Miss](https://www.g2.com/survey_responses/zerofox-review-11891542)" | | 8 | [CTM360](https://www.g2.com/products/ctm360-ctm360/reviews) | 4.7/5.0 (125 reviews) | External attack surface and takedown operations | "[Exceptional Cyber Threat Intelligence Platform That Delivers Actionable Security Insights](https://www.g2.com/survey_responses/ctm360-review-11298228)" | | 9 | [Cloudflare Application Security and Performance](https://www.g2.com/products/cloudflare-application-security-and-performance/reviews) | 4.5/5.0 (580 reviews) | Application protection with performance controls | "[Eight Years Later, Cloudflare Remains a Core Part of My Technology Stack](https://www.g2.com/survey_responses/cloudflare-application-security-and-performance-review-12963256)" | | 10 | [Falcon Security and IT operations](https://www.g2.com/products/falcon-security-and-it-operations/reviews) | 4.6/5.0 (21 reviews) | Endpoint security and IT operations visibility | "[Visibility, Traceability and Remediation for Vulnerability and Threat Protection all in one solution](https://www.g2.com/survey_responses/falcon-security-and-it-operations-review-12029947)" | --- ## What Are the Most Common Questions About Threat Intelligence Software? *AI-generated · Last updated: May 26, 2026* ### What top threat intelligence tools for large corporations? Based on G2 reviews, large organizations evaluating threat intelligence tools consistently mention the importance of broad visibility, integrations, and the ability to reduce manual research. Reviewers describe [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12671820) as helpful for consolidating intelligence and prioritizing what matters, while [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12674517) is often associated with external risk visibility across brand abuse, leaked credentials, and dark web monitoring. G2 reviewers also mention [SOCRadar Extended Threat Intelligence](https://www.g2.com/products/socradar-extended-threat-intelligence/reviews/socradar-extended-threat-intelligence-review-12839690) for combining attack surface visibility with actionable alerts. According to verified users, enterprise buyers often value platforms that centralize intelligence, support faster triage, and improve response readiness. **Here are some of the top-rated products on G2:** - [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12671820) – used by security teams to prioritize external threats, enrich IOCs, and support SOC workflows - [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12674517) – suited for monitoring brand abuse, exposed assets, leaked credentials, and digital risk - [SOCRadar Extended Threat Intelligence](https://www.g2.com/products/socradar-extended-threat-intelligence/reviews/socradar-extended-threat-intelligence-review-12839690) – helpful for attack surface monitoring, digital risk protection, and threat context ### What recommended threat intelligence solution for tech firms? Based on G2 reviews, tech firms often look for threat intelligence platforms that combine external visibility with practical workflows for analysts. According to verified users, [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12775568) stands out because reviewers frequently mention real-time intelligence, automatic IOC enrichment, and integrations that help teams reduce manual research. G2 reviewers mention that this is especially useful for organizations that need to prioritize alerts, investigate faster, and connect intelligence directly into SIEM or SOAR workflows. Reviews also note that buyers should expect a learning curve because the platform surfaces a lot of detail, but users repeatedly describe the intelligence as actionable and valuable for operational security work. ### What best cybersecurity threat intel software? Based on G2 reviews, buyers looking for the best cybersecurity threat intel software usually prioritize actionable intelligence, broad source coverage, and integration into daily security operations. G2 reviewers mention that [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12671820) helps correlate and prioritize intelligence, while [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12721015) is valued for digital risk and phishing visibility. According to verified users, [CTM360](https://www.g2.com/products/ctm360-ctm360/reviews/ctm360-review-12728031) is also useful for monitoring external cyber risk, impersonation, and dark web exposure. Review themes across these products emphasize earlier detection, reduced manual monitoring, and better prioritization rather than just collecting more raw data. **Here are some of the top-rated products on G2:** - [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12671820) – strong fit for prioritizing threats, enriching alerts, and supporting intelligence-led operations - [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12721015) – useful for phishing, data leak, and brand risk monitoring with external visibility - [CTM360](https://www.g2.com/products/ctm360-ctm360/reviews/ctm360-review-12728031) – designed for monitoring external cyber risk, dark web exposure, and brand impersonation ### What top software for cyber threat intelligence? Based on G2 reviews, top software for cyber threat intelligence is usually described in terms of how well it helps teams find relevant threats, reduce noise, and respond faster. G2 reviewers mention that [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12775568) helps analysts enrich IOCs and focus on true threats, while [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12681267) is often tied to brand protection, leaked credentials, and dark web monitoring. According to verified users, [SOCRadar Extended Threat Intelligence](https://www.g2.com/products/socradar-extended-threat-intelligence/reviews/socradar-extended-threat-intelligence-review-12592242) is valued for exposed asset detection and early warning on external risks. Reviewers consistently emphasize centralized visibility and practical, action-oriented workflows. **Here are some of the top-rated products on G2:** - [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12775568) – supports IOC enrichment, prioritization, and faster analyst decision-making - [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12681267) – effective for credential leaks, dark web monitoring, and protecting brand reputation - [SOCRadar Extended Threat Intelligence](https://www.g2.com/products/socradar-extended-threat-intelligence/reviews/socradar-extended-threat-intelligence-review-12592242) – useful for exposed asset visibility, dark web monitoring, and proactive threat detection ### What best-rated threat intelligence apps for IT teams? Based on G2 reviews, IT teams often favor threat intelligence apps that are easy to operationalize, reduce alert noise, and provide enough context for faster action. G2 reviewers mention that [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12647748) helps speed triage and cut wasted cycles on false positives. According to verified users, [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12147518) is appreciated for real-time alerts and reducing manual monitoring work, while [CTM360](https://www.g2.com/products/ctm360-ctm360/reviews/ctm360-review-12692708) is noted for improving visibility into phishing, impersonation, and external exposure. Across reviews, the strongest pattern is that IT teams value practical visibility and workflows that help them act sooner. **Here are some of the top-rated products on G2:** - [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12647748) – helpful for triage, prioritization, and reducing false positive investigation time - [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12147518) – supports real-time monitoring and accurate alerting for external threats - [CTM360](https://www.g2.com/products/ctm360-ctm360/reviews/ctm360-review-12692708) – useful for phishing, external exposure, and digital risk monitoring in daily operations ### Which is the best threat intel platform for startups? Based on G2 reviews, [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12775568) is the best threat intel platform for startups among products with the strongest recent review presence in this category data. According to verified users, reviewers consistently highlight its ability to reduce manual research, enrich indicators automatically, and help teams focus on true threats rather than noise. G2 reviewers mention that the interface is approachable once teams get familiar with it, and integrations with SIEM and SOAR tools make it practical for operational use. For startup teams, the recurring value in reviews is faster prioritization and better decision-making, though some users also note that pricing and onboarding depth should be considered during evaluation. ### What best threat detection service? Based on G2 reviews, buyers asking about the best threat detection service often want a platform that surfaces threats early and reduces manual investigation effort. G2 reviewers mention that [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12733983) provides actionable context that helps teams address risks before they become bigger problems. According to verified users, [SOCRadar Extended Threat Intelligence](https://www.g2.com/products/socradar-extended-threat-intelligence/reviews/socradar-extended-threat-intelligence-review-12484519) is useful for dark web monitoring and external threat visibility, while [CTM360](https://www.g2.com/products/ctm360-ctm360/reviews/ctm360-review-12692708) is valued for phishing, impersonation, and digital risk monitoring. Common review themes focus on earlier warning, clearer prioritization, and improved response readiness. **Here are some of the top-rated products on G2:** - [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12733983) – suited for actionable intelligence, prioritization, and reducing manual research - [SOCRadar Extended Threat Intelligence](https://www.g2.com/products/socradar-extended-threat-intelligence/reviews/socradar-extended-threat-intelligence-review-12484519) – supports dark web monitoring, attack surface visibility, and early warning - [CTM360](https://www.g2.com/products/ctm360-ctm360/reviews/ctm360-review-12692708) – helps monitor phishing, external threats, and digital risk with actionable context ### What best threat intelligence software for small businesses? Based on G2 reviews, small businesses tend to look for threat intelligence software that is easy to adopt, surfaces meaningful threats quickly, and does not require heavy manual work. G2 reviewers mention that [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12205468) provides actionable insights and strong support for proactive monitoring. According to verified users, [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12790898) is user-friendly and reduces manual dependency, while [SOCRadar Extended Threat Intelligence](https://www.g2.com/products/socradar-extended-threat-intelligence/reviews/socradar-extended-threat-intelligence-review-12607948) helps centralize scattered threat data. Reviews suggest smaller teams often benefit most from platforms that simplify prioritization and reduce research overhead. **Here are some of the top-rated products on G2:** - [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12205468) – useful for proactive monitoring with actionable threat insights and responsive support - [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12790898) – helps smaller teams reduce manual work with user-friendly workflows - [SOCRadar Extended Threat Intelligence](https://www.g2.com/products/socradar-extended-threat-intelligence/reviews/socradar-extended-threat-intelligence-review-12607948) – centralizes threat intelligence and supports faster prioritization ### What leading threat intelligence solutions for my business? Based on G2 reviews, leading threat intelligence solutions for businesses are generally the ones that combine strong visibility, practical context, and easier response workflows. G2 reviewers mention that [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12673069) centralizes intelligence and reduces manual research time. According to verified users, [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12779752) helps detect external risks such as brand abuse, phishing, and leaked credentials, while [CTM360](https://www.g2.com/products/ctm360-ctm360/reviews/ctm360-review-12809095) is appreciated for combining exposure management with digital risk protection. Across reviews, the most common business value is earlier threat visibility and more efficient prioritization. **Here are some of the top-rated products on G2:** - [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12673069) – useful for consolidating threat data and reducing manual investigation work - [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12779752) – helps monitor phishing, brand abuse, leaked credentials, and external digital threats - [CTM360](https://www.g2.com/products/ctm360-ctm360/reviews/ctm360-review-12809095) – combines digital risk protection and exposure management in one platform ### What most reliable threat detection software? Based on G2 reviews, reliable threat detection software is usually defined by consistency, alert quality, and how well it supports fast action. G2 reviewers mention that [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12775568) helps reduce false positives and provides context that improves investigation speed. According to verified users, [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12690233) is praised for timely and actionable threat intelligence, and [SOCRadar Extended Threat Intelligence](https://www.g2.com/products/socradar-extended-threat-intelligence/reviews/socradar-extended-threat-intelligence-review-9751134) is valued for actionable alerts on leaked credentials, impersonating domains, and dark web activity. Reviews repeatedly point to earlier warning and better prioritization as the most trusted indicators of reliability. **Here are some of the top-rated products on G2:** - [Recorded Future](https://www.g2.com/products/recorded-future/reviews/recorded-future-review-12775568) – helps teams reduce noise and investigate meaningful threats faster - [CloudSEK](https://www.g2.com/products/cloudsek/reviews/cloudsek-review-12690233) – supports timely threat detection for brand risk, leaks, and phishing exposure - [SOCRadar Extended Threat Intelligence](https://www.g2.com/products/socradar-extended-threat-intelligence/reviews/socradar-extended-threat-intelligence-review-9751134) – provides actionable alerts for external threats and exposed assets ## How Many Threat Intelligence Software Products Does G2 Track? **Total Products under this Category:** 188 ### Category Stats (Jun 2026) - **Average Rating**: 4.58/5 The average rating of products in this category, based on all submitted ratings - **New Reviews This Quarter**: 171 - **Buyer Segments**: Mid-Market 54% │ Enterprise 29% │ Small-Business 18% Represents the distribution of reviewers across all products in this category. - **Top Trending Product**: StyxView (+0.119) - Among all products in this category, StyxView recorded the largest rating increase compared to last month *Last updated: June 01, 2026* ## How Does G2 Rank Threat Intelligence Software Products? **Why You Can Trust G2's Software Rankings:** - 30 Analysts and Data Experts - 4,700+ Authentic Reviews - 188+ Products - Unbiased Rankings G2's software rankings are built on verified user reviews, rigorous moderation, and a consistent research methodology maintained by a team of analysts and data experts. Each product is measured using the same transparent criteria, with no paid placement or vendor influence. While reviews reflect real user experiences, which can be subjective, they offer valuable insight into how software performs in the hands of professionals. Together, these inputs power the G2 Score, a standardized way to compare tools within every category. ## Which Threat Intelligence Software Is Best for Your Use Case? - **Leader:** [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) - **Highest Performer:** [GreyNoise](https://www.g2.com/products/greynoise/reviews) - **Easiest to Use:** [CloudSEK](https://www.g2.com/products/cloudsek/reviews) - **Top Trending:** [GreyNoise](https://www.g2.com/products/greynoise/reviews) - **Best Free Software:** [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) --- **Sponsored** ### Whiteintel Dark Web Intelligence Whiteintel.io is a dark web monitoring and threat intelligence platform. It scans underground forums, marketplaces, paste sites, and data breach sources to identify exposed credentials and sensitive data linked to an organization's domains, employees, or customers. The platform detects compromised credentials from data breaches and info stealer malware infections. When devices are infected with info stealers, Whiteintel.io identifies harvested credentials before they can be used for unauthorized access. Users receive alerts when their organization's data appears in dark web sources or known breach datasets. Whiteintel.io aggregates findings into a centralized dashboard where security teams can search, filter, and investigate exposures. The platform supports domain monitoring, email-based credential lookups, and threat actor activity tracking. [Visit website](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=ppc&secure%5Bad_slot%5D=category_product_list&secure%5Bcategory_id%5D=1080&secure%5Bdisplayable_resource_id%5D=1080&secure%5Bdisplayable_resource_type%5D=Category&secure%5Bmedium%5D=sponsored&secure%5Bplacement_reason%5D=page_category&secure%5Bplacement_resource_ids%5D%5B%5D=1080&secure%5Bprioritized%5D=false&secure%5Bproduct_id%5D=1795498&secure%5Bresource_id%5D=1080&secure%5Bresource_type%5D=Category&secure%5Bsource_type%5D=category_page&secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fthreat-intelligence&secure%5Btoken%5D=43a8a004ee3bd48e6f480f546065b0ad2eeb0a2024431150addd307311a675fc&secure%5Burl%5D=https%3A%2F%2Fwhiteintel.io&secure%5Burl_type%5D=custom_url) --- ## What Are the Top-Rated Threat Intelligence Software Products in 2026? ### 1. [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) Organizations today face a serious challenge: managing numerous security vendors and tools while confronting an ever-evolving threat landscape. Sophisticated adversaries are becoming smarter, faster, and more evasive, launching complex attacks that can strike in minutes or even seconds. Traditional security approaches struggle to keep pace, leaving businesses vulnerable. The CrowdStrike Falcon Platform addresses this by offering a unified, cloud-native solution. It consolidates previously siloed security solutions and incorporates third-party data into a single platform with one efficient and resource-conscious agent, leveraging advanced AI and real-time threat intelligence. This approach simplifies security operations, speeds analyst decision making, and enhances protection to stop the breach, allowing organizations to reduce risk with less complexity and lower costs. CrowdStrike's Falcon Platform includes: - Endpoint Security: Secure the endpoint, stop the breach - Identify Protection: Identity is the front line, defend it - Next-Gen SIEM: The future of SIEM, today - Data Protection: Real-time data protection from endpoint to cloud - Exposure Management: Understand risk to stop breaches - Charlotte AI: Powering the next evolution of the SOC **Average Rating:** 4.6/5.0 **Total Reviews:** 410 **How Do G2 Users Rate CrowdStrike Falcon Endpoint Protection Platform?** - **Security Validation:** 9.4/10 (Category avg: 9.0/10) - **Intelligence Reports:** 9.3/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 9.4/10 (Category avg: 8.6/10) - **Ease of Use:** 9.0/10 (Category avg: 9.1/10) **Who Is the Company Behind CrowdStrike Falcon Endpoint Protection Platform?** - **Seller:** [CrowdStrike](https://www.g2.com/sellers/crowdstrike) - **Company Website:** https://www.crowdstrike.com - **Year Founded:** 2011 - **HQ Location:** Sunnyvale, CA - **Twitter:** @CrowdStrike (110,732 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2497653/ (11,343 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Security Analyst, Cyber Security Analyst - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 43% Enterprise, 43% Mid-Market #### What Are CrowdStrike Falcon Endpoint Protection Platform's Pros and Cons? **Pros:** - Features (113 reviews) - Threat Detection (103 reviews) - Ease of Use (98 reviews) - Security (97 reviews) - Detection (90 reviews) **Cons:** - Expensive (54 reviews) - Complexity (40 reviews) - Learning Curve (35 reviews) - Limited Features (33 reviews) - Pricing Issues (29 reviews) ### 2. [Recorded Future](https://www.g2.com/products/recorded-future/reviews) Recorded Future is the world’s largest threat intelligence company. Recorded Future’s Intelligence Cloud provides end-to-end intelligence across adversaries, infrastructure, and targets. Indexing the internet across the open web, dark web, and technical sources, Recorded Future provides real-time visibility into an expanding attack surface and threat landscape, empowering clients to act with speed and confidence to reduce risk and securely drive business forward. Headquartered in Boston with offices and employees around the world, Recorded Future works with over 1,900 businesses and government organizations across 80 countries to provide real-time, unbiased and actionable intelligence. Learn more at recordedfuture.com. **Average Rating:** 4.6/5.0 **Total Reviews:** 225 **How Do G2 Users Rate Recorded Future?** - **Security Validation:** 8.2/10 (Category avg: 9.0/10) - **Intelligence Reports:** 8.8/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 7.8/10 (Category avg: 8.6/10) - **Ease of Use:** 8.4/10 (Category avg: 9.1/10) **Who Is the Company Behind Recorded Future?** - **Seller:** [Recorded Future](https://www.g2.com/sellers/recorded-future) - **Company Website:** https://www.recordedfuture.com - **Year Founded:** 2009 - **HQ Location:** Somerville, US - **Twitter:** @RecordedFuture (107,965 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/678036/ (1,150 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Threat Intelligence Analyst, Cyber Threat Intelligence Analyst - **Top Industries:** Financial Services, Information Technology and Services - **Company Size:** 66% Enterprise, 20% Mid-Market #### What Are Recorded Future's Pros and Cons? **Pros:** - Features (96 reviews) - Ease of Use (61 reviews) - Innovation (50 reviews) - Customer Support (46 reviews) - Security (43 reviews) **Cons:** - Complexity (38 reviews) - Difficult Learning (25 reviews) - Information Overload (24 reviews) - Expensive (21 reviews) - Learning Curve (18 reviews) ### 3. [Cyble](https://www.g2.com/products/cyble/reviews) Cyble is an AI-native cybersecurity solution designed to help organizations enhance their digital security posture through real-time intelligence, detection, and response capabilities. By leveraging advanced agentic AI and processing vast amounts of data, Cyble empowers businesses to navigate the complexities of the cyber threat landscape effectively. Its unique approach involves collecting and enriching signals from various sources, including the dark web, deep web, and surface web, providing unparalleled visibility into emerging threats and adversarial activities. Targeting a wide range of industries, Cyble's platform is particularly beneficial for security teams, risk management professionals, and organizations that prioritize safeguarding their digital assets. The comprehensive suite of solutions offered by Cyble includes Threat Intelligence, Dark Web & Deep Web Monitoring, Attack Surface Management (ASM), and Brand Intelligence, among others. These tools are designed to address specific use cases such as identifying vulnerabilities, monitoring brand reputation, and managing third-party risks, making it an essential resource for organizations aiming to bolster their cybersecurity measures. Cyble's key features are centered around its unified platform, which integrates multiple cybersecurity functions into a single interface. This integration allows for seamless communication between different security components, enabling teams to anticipate, identify, and neutralize threats with remarkable speed and precision. For instance, the Digital Forensics & Incident Response (DFIR) capabilities equip organizations with the tools needed to investigate and respond to incidents effectively, while the DDoS Protection and Cloud Security Posture Management (CSPM) features ensure that businesses can maintain operational integrity even under attack. Moreover, Cyble stands out in its category by combining vast data intelligence with cutting-edge AI automation. This proactive defense strategy not only helps organizations react to cyber threats but also empowers them to stay ahead of potential risks. By enhancing visibility into the threat landscape and providing actionable insights, Cyble enables enterprises to protect their assets, safeguard brand trust, and operate with confidence in an increasingly complex digital environment. The result is a robust cybersecurity framework that supports organizations in navigating the ever-evolving challenges of the cyber world. **Average Rating:** 4.8/5.0 **Total Reviews:** 142 **How Do G2 Users Rate Cyble?** - **Security Validation:** 9.3/10 (Category avg: 9.0/10) - **Intelligence Reports:** 9.6/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 9.3/10 (Category avg: 8.6/10) - **Ease of Use:** 9.5/10 (Category avg: 9.1/10) **Who Is the Company Behind Cyble?** - **Seller:** [Cyble](https://www.g2.com/sellers/cyble) - **Company Website:** https://cyble.com - **Year Founded:** 2019 - **HQ Location:** Alpharetta, US - **Twitter:** @cybleglobal (16,260 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/cyble-global/ (233 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 38% Enterprise, 17% Mid-Market #### What Are Cyble's Pros and Cons? **Pros:** - Ease of Use (74 reviews) - Threat Intelligence (71 reviews) - Features (57 reviews) - Insights (49 reviews) - Threat Detection (49 reviews) **Cons:** - Inefficient Alerts (28 reviews) - False Positives (20 reviews) - Limited Customization (20 reviews) - Poor Customer Support (20 reviews) - Poor Support Management (19 reviews) ### 4. [CloudSEK](https://www.g2.com/products/cloudsek/reviews) CloudSEK is a contextual AI company that predicts Cyber Threats. We combine the power of Cyber Crime monitoring, Brand Monitoring, Attack Surface monitoring, and Supply Chain intelligence to give context to our customers’ digital risks. **Average Rating:** 4.8/5.0 **Total Reviews:** 137 **How Do G2 Users Rate CloudSEK?** - **Security Validation:** 9.4/10 (Category avg: 9.0/10) - **Intelligence Reports:** 9.3/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 9.4/10 (Category avg: 8.6/10) - **Ease of Use:** 9.6/10 (Category avg: 9.1/10) **Who Is the Company Behind CloudSEK?** - **Seller:** [CloudSEK](https://www.g2.com/sellers/cloudsek) - **Year Founded:** 2015 - **HQ Location:** Singapore, SG - **Twitter:** @cloudsek (2,411 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/cloudsek/ (234 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Security Analyst, Analyst - **Top Industries:** Financial Services, Airlines/Aviation - **Company Size:** 53% Enterprise, 31% Mid-Market #### What Are CloudSEK's Pros and Cons? **Pros:** - Ease of Use (53 reviews) - Monitoring (47 reviews) - Customer Support (44 reviews) - Features (42 reviews) - Threat Intelligence (34 reviews) **Cons:** - False Positives (36 reviews) - Inefficient Alerts (22 reviews) - Dashboard Issues (16 reviews) - Inefficient Alert System (15 reviews) - Complex UI (8 reviews) ### 5. [SOCRadar Extended Threat Intelligence](https://www.g2.com/products/socradar-extended-threat-intelligence/reviews) Since 2019, SOCRadar has been a pioneer in SaaS cybersecurity, now serving over 900 customers across 75 countries. Our mission is to provide accessible, proactive threat intelligence. Today, SOCRadar empowers security teams with our groundbreaking Extended Threat Intelligence (XTI) platform and is leading the charge toward the future with Agentic Threat Intelligence (ATI). What does SOCRadar do? At its core, SOCRadar provides a unified, cloud-hosted platform designed to enrich your cyber threat intelligence by contextualizing it with data from your attack surface, digital footprint, dark web exposure, and supply chain. We help security teams see what attackers see by combining External Attack Surface Management, Cyber Threat Intelligence, and Digital Risk Protection into a single, easy-to-use solution. This enables your organization to discover hidden vulnerabilities, detect data leaks, and shut down threats like phishing and brand impersonation before they can harm your business. By combining these critical security functions, SOCRadar replaces the need for separate, disconnected tools. Our holistic approach offers a streamlined, modular experience, providing a complete, real-time view of your threat landscape to help you stay ahead of attackers. Our vision for Agentic Threat Intelligence (ATI) goes beyond today's chatbots and LLMs. We are focused on making it practical for security teams to use AI agents to solve real-world problems. Our initiative will empower you to either deploy pre-built agents or easily create your own, leveraging deep integrations to automate complex tasks that were previously difficult to perform accurately. SOCRadar is dedicated to pioneering this change, making autonomous security an accessible reality for your team. **Average Rating:** 4.7/5.0 **Total Reviews:** 106 **How Do G2 Users Rate SOCRadar Extended Threat Intelligence?** - **Security Validation:** 8.9/10 (Category avg: 9.0/10) - **Intelligence Reports:** 9.2/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 8.4/10 (Category avg: 8.6/10) - **Ease of Use:** 9.1/10 (Category avg: 9.1/10) **Who Is the Company Behind SOCRadar Extended Threat Intelligence?** - **Seller:** [SOCRadar ](https://www.g2.com/sellers/socradar) - **Company Website:** https://socradar.io - **Year Founded:** 2018 - **HQ Location:** Delaware - **Twitter:** @socradar (5,748 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/socradar (195 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Financial Services, Computer & Network Security - **Company Size:** 44% Mid-Market, 39% Enterprise #### What Are SOCRadar Extended Threat Intelligence's Pros and Cons? **Pros:** - Ease of Use (27 reviews) - Threat Intelligence (25 reviews) - Alerts (20 reviews) - Insights (19 reviews) - Monitoring (19 reviews) **Cons:** - Inefficient Alerts (10 reviews) - Inefficient Alert System (10 reviews) - False Positives (8 reviews) - Insufficient Information (7 reviews) - Limited Features (7 reviews) ### 6. [GreyNoise](https://www.g2.com/products/greynoise/reviews) GreyNoise provides security teams with real-time, verifiable perimeter threat intelligence. We observe and analyze both global and targeted internet scanning and exploitation traffic, and make this intelligence available to customers in real-time. This allows security teams to improve the efficiency of their SOC, perform threat hunting campaigns, and focus on critical threats to their network. **Average Rating:** 4.8/5.0 **Total Reviews:** 129 **How Do G2 Users Rate GreyNoise?** - **Security Validation:** 9.1/10 (Category avg: 9.0/10) - **Intelligence Reports:** 8.7/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 9.0/10 (Category avg: 8.6/10) - **Ease of Use:** 9.6/10 (Category avg: 9.1/10) **Who Is the Company Behind GreyNoise?** - **Seller:** [GreyNoise](https://www.g2.com/sellers/greynoise) - **Company Website:** https://www.greynoise.io/ - **Year Founded:** 2017 - **HQ Location:** Washington, D.C. - **Twitter:** @GreyNoiseIO (29,273 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/greynoise (60 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Network Engineer - **Top Industries:** Information Technology and Services, Financial Services - **Company Size:** 70% Mid-Market, 34% Small-Business #### What Are GreyNoise's Pros and Cons? **Pros:** - Ease of Use (63 reviews) - Automation (54 reviews) - Detailed Analysis (44 reviews) - Threat Detection (43 reviews) - Alerts (40 reviews) **Cons:** - Slow Loading (15 reviews) - Dashboard Issues (8 reviews) - Integration Issues (8 reviews) - Navigation Issues (8 reviews) - Inefficient Alert System (7 reviews) ### 7. [ZeroFox](https://www.g2.com/products/zerofox/reviews) ZeroFox is the solution used to illuminate threat actor intent, mitigate threats and exposures, remove threats from the internet, and preemptively safeguard your reputation. ZeroFox uniquely fuses the core capabilities of Cyber Threat Intelligence, Brand and Domain Protection, Attack Surface Intelligence, Executive Protection and Physical Security Intelligence in one platform packed with intelligence you’ll actually use. ZeroFox defends your business from the everyday attacks that impact revenue, erode trust, and frustrate teams by: Discovering exposed assets, brands, domains, accounts, and emerging threats Validating the risks that matter most to you and your digital estate Disrupting attacks before they harm your business, your customers, and your people Our continuous cycle—Discover, Validate, Disrupt—delivers outcomes and helps organizations achieve deeper threat contextualization, faster detection and response times, and longer-term cost savings by anticipating, understanding, and mitigating external digital threats at scale. Join thousands of customers, including some of the largest public sector organizations and leaders in finance, media, technology, retail, and healthcare, and let ZeroFox deliver timely, personal, and usable intelligence so you can stay ahead of what’s next and reclaim what’s right. **Average Rating:** 4.4/5.0 **Total Reviews:** 133 **How Do G2 Users Rate ZeroFox?** - **Security Validation:** 8.4/10 (Category avg: 9.0/10) - **Intelligence Reports:** 8.3/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 7.5/10 (Category avg: 8.6/10) - **Ease of Use:** 8.7/10 (Category avg: 9.1/10) **Who Is the Company Behind ZeroFox?** - **Seller:** [ZeroFox](https://www.g2.com/sellers/zerofox) - **Company Website:** https://www.zerofox.com - **Year Founded:** 2013 - **HQ Location:** Baltimore, MD - **Twitter:** @ZeroFOX (5,205 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2890672 (861 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Financial Services, Banking - **Company Size:** 46% Enterprise, 28% Mid-Market #### What Are ZeroFox's Pros and Cons? **Pros:** - Ease of Use (35 reviews) - Protection (32 reviews) - Threat Detection (28 reviews) - Alert Notifications (23 reviews) - Alerts (22 reviews) **Cons:** - Inefficient Alerts (24 reviews) - False Alarms (16 reviews) - Slow Performance (14 reviews) - False Positives (12 reviews) - Inefficient Alert System (11 reviews) ### 8. [CTM360](https://www.g2.com/products/ctm360-ctm360/reviews) CTM360 is a consolidated external security platform that integrates External Attack Surface Management, Digital Risk Protection, Cyber Threat Intelligence, Brand Protection & Anti-phishing, Surface, Deep, & Dark Web Monitoring, Security Ratings, Third-party risk Management, and fully managed unlimited Takedowns. As a pioneer and innovator in preemptive security, CTM360 operates as an external CTEM technology platform outside an organization’s perimeter. Seamless and turn-key, CTM360 requires no configurations, installations or inputs from the end-user, with all data pre-populated and specific to your organization. All aspects are managed by CTM360. **Average Rating:** 4.7/5.0 **Total Reviews:** 125 **How Do G2 Users Rate CTM360?** - **Security Validation:** 8.5/10 (Category avg: 9.0/10) - **Intelligence Reports:** 8.8/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 7.9/10 (Category avg: 8.6/10) - **Ease of Use:** 9.2/10 (Category avg: 9.1/10) **Who Is the Company Behind CTM360?** - **Seller:** [CTM360](https://www.g2.com/sellers/ctm360) - **Company Website:** https://www.ctm360.com/ - **Year Founded:** 2014 - **HQ Location:** Manama, BH - **Twitter:** @teamCTM360 (999 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/ctm360/ (133 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Financial Services, Banking - **Company Size:** 43% Mid-Market, 29% Enterprise #### What Are CTM360's Pros and Cons? **Pros:** - Customer Support (48 reviews) - Ease of Use (45 reviews) - Features (31 reviews) - Monitoring (28 reviews) - Detection Efficiency (24 reviews) **Cons:** - Limited Features (9 reviews) - Integration Issues (8 reviews) - Lack of Features (5 reviews) - Lack of Integration (5 reviews) - Lack of Integrations (5 reviews) ### 9. [Cloudflare Application Security and Performance](https://www.g2.com/products/cloudflare-application-security-and-performance/reviews) Cloudflare is the connectivity cloud for the "everywhere world," on a mission to help build a better Internet. We provide a unified platform of networking, security, and developer services delivered from a single, intelligent global network that spans hundreds of cities in over 125 countries. This empowers organizations of all sizes, from small businesses to the world's largest enterprises, to make their employees, applications, and networks faster and more secure everywhere, while significantly reducing complexity and cost. Our comprehensive platform includes: - Advanced Security: Protect your online presence with industry-leading DDoS protection, a robust Web Application Firewall (WAF), Bot mitigation, and API security. Implement Zero Trust security to secure remote access, data, and applications for your entire workforce. - Superior Performance: Accelerate website and application loading times globally with our Content Delivery Network (CDN), intelligent DNS, and smart routing capabilities. Optimize images and deliver dynamic content with unparalleled speed. - Powerful Developer Tools: Empower your developers to build and deploy full-stack applications at the edge using Cloudflare Workers (serverless functions), R2 Storage (object storage without egress fees), and D1 (serverless SQL database). Cloudflare helps connect and protect millions of customers globally, offering the control, visibility, and reliability businesses need to work, develop, and accelerate their operations in today's hyperconnected landscape. Our global network continuously learns and adapts, ensuring your digital assets are always protected and performing at their best. **Average Rating:** 4.5/5.0 **Total Reviews:** 580 **How Do G2 Users Rate Cloudflare Application Security and Performance?** - **Security Validation:** 10.0/10 (Category avg: 9.0/10) - **Intelligence Reports:** 9.7/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 8.8/10 (Category avg: 8.6/10) - **Ease of Use:** 9.0/10 (Category avg: 9.1/10) **Who Is the Company Behind Cloudflare Application Security and Performance?** - **Seller:** [Cloudflare, Inc.](https://www.g2.com/sellers/cloudflare-inc) - **Company Website:** https://www.cloudflare.com - **Year Founded:** 2009 - **HQ Location:** San Francisco, California - **Twitter:** @Cloudflare (285,307 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/407222/ (7,190 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Web Developer, Software Engineer - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 62% Small-Business, 27% Mid-Market #### What Are Cloudflare Application Security and Performance's Pros and Cons? **Pros:** - Security (54 reviews) - Ease of Use (50 reviews) - Features (45 reviews) - Performance (36 reviews) - Reliability (36 reviews) **Cons:** - Complex User Interface (24 reviews) - Expensive (24 reviews) - Complex Setup (19 reviews) - Complexity (18 reviews) - Learning Curve (15 reviews) ### 10. [Falcon Security and IT operations](https://www.g2.com/products/falcon-security-and-it-operations/reviews) CrowdStrike Falcon for IT is a comprehensive IT operations and security solution that combines powerful endpoint management capabilities with enterprise-grade security protection. By unifying IT operations and security functions on a single platform, Falcon for IT enables organizations to streamline device management, automate software deployment, ensure compliance, and maintain robust security across their entire endpoint ecosystem. The solution leverages CrowdStrike's cloud-native architecture to provide real-time visibility, control, and protection for all managed devices, whether on-premises or remote. Designed for modern IT teams, Falcon for IT simplifies daily operations through automated patch management, application inventory, USB device control, and system performance monitoring. The platform's intuitive interface and automated workflows help IT professionals efficiently manage their endpoint environment while maintaining security best practices and reducing operational overhead. Whether managing software updates, deploying applications, or responding to IT incidents, Falcon for IT serves as a unified solution that empowers IT teams to maintain operational excellence while ensuring enterprise-grade security protection across their organization. **Average Rating:** 4.6/5.0 **Total Reviews:** 21 **How Do G2 Users Rate Falcon Security and IT operations?** - **Security Validation:** 8.7/10 (Category avg: 9.0/10) - **Intelligence Reports:** 9.4/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 9.2/10 (Category avg: 8.6/10) - **Ease of Use:** 9.2/10 (Category avg: 9.1/10) **Who Is the Company Behind Falcon Security and IT operations?** - **Seller:** [CrowdStrike](https://www.g2.com/sellers/crowdstrike) - **Year Founded:** 2011 - **HQ Location:** Sunnyvale, CA - **Twitter:** @CrowdStrike (110,732 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2497653/ (11,343 employees on LinkedIn®) - **Ownership:** NASDAQ: CRWD **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 48% Mid-Market, 43% Enterprise #### What Are Falcon Security and IT operations's Pros and Cons? **Pros:** - Ease of Use (11 reviews) - Easy Integrations (9 reviews) - Easy Setup (6 reviews) - Security (6 reviews) - Security Protection (6 reviews) **Cons:** - Expensive (5 reviews) - False Positives (2 reviews) - Poor Documentation (2 reviews) - Slow Loading (2 reviews) - Slow Performance (2 reviews) ### 11. [Check Point Exposure Management](https://www.g2.com/products/check-point-exposure-management/reviews) Exposure Management isn’t just a buzzword, it’s the future of cybersecurity. Attackers move fast, exploiting misconfigurations, leaked credentials, and control gaps before patch cycles even start. Traditional tools give you dashboards and alerts, but visibility without action is just noise. Check Point’s latest innovation changes the game. By combining billions of internal telemetry points from Check Point’s global footprint with billions of external signals from the open, deep, and dark web via Cyberint, we deliver a Unified Intelligence Fabric that provides complete clarity across your attack surface. The industry is moving from fragmented feeds to real context on what’s an actual priority. Further prioritization is enabled through active validation of the threats, confirmation of compensating controls and deduplication of alerts between tools. Then, with Veriti’s safe-by-design remediation, we’re not just assigning tickets to the ether. Fixes are actually implemented. Every fix is validated before enforcement, meaning exposures are remediated without downtime, and risk reduction becomes measurable. Gartner predicts organizations adopting CTEM with mobilization will see 50% fewer successful attacks by 2028, and we’re leading that charge with action, not just tickets. Ready to see how exposure management done right looks? Get a 15-minute demo and experience preemptive security in action \> https://l.cyberint.com/em-demo **Average Rating:** 4.6/5.0 **Total Reviews:** 169 **How Do G2 Users Rate Check Point Exposure Management?** - **Security Validation:** 8.8/10 (Category avg: 9.0/10) - **Intelligence Reports:** 9.0/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 8.4/10 (Category avg: 8.6/10) - **Ease of Use:** 9.1/10 (Category avg: 9.1/10) **Who Is the Company Behind Check Point Exposure Management?** - **Seller:** [Check Point Software Technologies](https://www.g2.com/sellers/check-point-software-technologies) - **Company Website:** https://www.checkpoint.com/ - **Year Founded:** 1993 - **HQ Location:** Redwood City, CA - **Twitter:** @CheckPointSW (70,947 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/check-point-software-technologies/ (8,554 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Security Threat Analyst, Cyber Security Analyst - **Top Industries:** Banking, Financial Services - **Company Size:** 69% Enterprise, 20% Mid-Market #### What Are Check Point Exposure Management's Pros and Cons? **Pros:** - Ease of Use (64 reviews) - Threat Intelligence (63 reviews) - Threat Detection (52 reviews) - Insights (41 reviews) - Customer Support (39 reviews) **Cons:** - Inefficient Alerts (21 reviews) - False Positives (15 reviews) - Inefficient Alert System (15 reviews) - Integration Issues (11 reviews) - Limited Features (11 reviews) ### 12. [Cisco Talos](https://www.g2.com/products/cisco-talos/reviews) Cisco Talos is a threat intelligence organization dedicated to providing protection before, during, and after cybersecurity attacks. **Average Rating:** 4.4/5.0 **Total Reviews:** 38 **How Do G2 Users Rate Cisco Talos?** - **Security Validation:** 9.2/10 (Category avg: 9.0/10) - **Intelligence Reports:** 9.1/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 8.9/10 (Category avg: 8.6/10) - **Ease of Use:** 8.9/10 (Category avg: 9.1/10) **Who Is the Company Behind Cisco Talos?** - **Seller:** [Cisco](https://www.g2.com/sellers/cisco) - **Year Founded:** 1984 - **HQ Location:** San Jose, CA - **Twitter:** @Cisco (720,379 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/cisco/ (95,545 employees on LinkedIn®) - **Ownership:** NASDAQ:CSCO **Who Uses This Product?** - **Top Industries:** Computer Software, Information Technology and Services - **Company Size:** 42% Mid-Market, 33% Enterprise #### What Are Cisco Talos's Pros and Cons? **Pros:** - Threat Detection (2 reviews) - Accuracy of Information (1 reviews) - Automation (1 reviews) - Detailed Analysis (1 reviews) - Reliability (1 reviews) **Cons:** - Complexity (1 reviews) - Integration Issues (1 reviews) - Lack of Customization (1 reviews) - Poor Reporting (1 reviews) - Time-Consuming (1 reviews) ### 13. [Doppel](https://www.g2.com/products/doppel/reviews) Doppel is built to outsmart the internet’s biggest threat—social engineering. Using generative AI, we don’t just defend; we disrupt attackers' tactics and infrastructures, providing holistic protection against these attacks. Our platform learns from every attempt, evolving in real-time to protect all customers and stay ahead of ever-changing threats. By pairing cutting-edge AI with expert analysis, we outpace threats like phishing, impersonation, and disinformation—delivering comprehensive coverage, speed, and precision that legacy systems can’t touch. **Average Rating:** 4.7/5.0 **Total Reviews:** 46 **How Do G2 Users Rate Doppel?** - **Security Validation:** 9.1/10 (Category avg: 9.0/10) - **Intelligence Reports:** 8.9/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 8.7/10 (Category avg: 8.6/10) - **Ease of Use:** 9.3/10 (Category avg: 9.1/10) **Who Is the Company Behind Doppel?** - **Seller:** [Doppel](https://www.g2.com/sellers/doppel) - **Company Website:** https://www.doppel.com/ - **Year Founded:** 2022 - **HQ Location:** N/A - **LinkedIn® Page:** https://www.linkedin.com/company/doppelhq/about/ (344 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Financial Services, Information Technology and Services - **Company Size:** 50% Mid-Market, 35% Small-Business #### What Are Doppel's Pros and Cons? **Pros:** - Customer Support (9 reviews) - Alerts (7 reviews) - Response Time (6 reviews) - Threat Detection (5 reviews) - Ease of Use (4 reviews) **Cons:** - Expensive (2 reviews) - Information Overload (1 reviews) - Not User-Friendly (1 reviews) - Poor Detection Performance (1 reviews) - Poor Documentation (1 reviews) ### 14. [Group-IB Threat Intelligence](https://www.g2.com/products/group-ib-threat-intelligence/reviews) The first line of defense shouldn’t be your infrastructure; optimize your security and defeat attacks before they begin with knowledge of who, how, and when you will be attacked. Group-IB’s Threat Intelligence provides unparalleled insight into your adversaries and maximizes the performance of every component of your security ecosystem. Equip your team with it to strengthen your security with the strategic, operational and tactical intelligence. Understand threat trends and anticipate specific attacks with thorough knowledge of your threat landscape. Group-IB provides precise, tailored and reliable information for data-driven strategic decisions. - Revolutionize risk management with tailored on-demand, and regular monthly and quarterly threat reports written by analysts specifically for the board and executives - Enable growth with actionable threat intelligence before expanding into a new region/business line, and get industry-specific threats before digital transformation - Lower the cost of cyber security by avoiding unnecessary purchases and postponing upgrades by maximizing the efficacy of your existing security investments Strengthen defenses with detailed insight into attacker behaviors and infrastructure. Group-IB delivers the most comprehensive insight into past, present and future attacks targeting your organization, industry, partners and clients. - Transform security and adapt instantly, use the insights to block malicious network and endpoint activity the moment it is first observed anywhere in the world - Identify and remove weaknesses before they are exploited by arming your Red Team with detailed knowledge of threat actor’s tools, tactics and processes - Automate workflows and improve team efficiency by enriching your SIEM, SOAR, EDR and vulnerability management platforms with out-of-the-box API integrations supporting TAXII and STIX Identify attacks faster and reduce response time with comprehensive visibility of the stages of attack used by threat actors. Group-IB gives your teams the best possible insight into the methods used by adversaries. - Prioritize vulnerability patching for your technology stack with automated alerts that inform you the moment vulnerabilities are discovered or exploited by threat actors targeting your industry - Eliminate false positive alerts and focus on legitimately risky events with a database of indicators of compromise for cybercriminals in your threat landscape - Reduce response time and quickly remove attackers from your network with knowledge of the cyber kill chain used by threat actors in the MITRE ATT&CK matrix format **Average Rating:** 4.7/5.0 **Total Reviews:** 28 **How Do G2 Users Rate Group-IB Threat Intelligence?** - **Security Validation:** 8.8/10 (Category avg: 9.0/10) - **Intelligence Reports:** 8.9/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 8.7/10 (Category avg: 8.6/10) - **Ease of Use:** 8.9/10 (Category avg: 9.1/10) **Who Is the Company Behind Group-IB Threat Intelligence?** - **Seller:** [Group-IB](https://www.g2.com/sellers/group-ib) - **Company Website:** https://www.group-ib.com/ - **Year Founded:** 2003 - **HQ Location:** Singapore - **Twitter:** @GroupIB (9,636 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/group-ib/ (663 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Banking, Financial Services - **Company Size:** 61% Enterprise, 21% Mid-Market #### What Are Group-IB Threat Intelligence's Pros and Cons? **Pros:** - Threat Detection (2 reviews) - Automation (1 reviews) - Detailed Analysis (1 reviews) - Ease of Use (1 reviews) - Features (1 reviews) **Cons:** - Expensive (1 reviews) ### 15. [DeCYFIR by CYFIRMA](https://www.g2.com/products/decyfir-by-cyfirma/reviews) DeCYFIR is an AI-powered preemptive External Threat Landscape Management platform engineered to help organizations predict and prevent cyberattacks before they occur. Adopting a hacker's perspective, it delivers early warnings, prioritized insights, and actionable intelligence across the full external threat landscape. Built on a proprietary 9-pillar architecture — spanning Attack Surface Discovery & Intelligence, Vulnerability Intelligence & Threat Prioritization, Brand & Online Exposure Management, Digital Risk & Identity Protection, Third Party Risk Management, Situational Awareness & Emerging Threats, Predictive Threat Intelligence, Threat Adaptive Awareness & Training, and Sector Tailored Deception Intelligence. DeCYFIR correlates signals across all pillars to cut through noise, surface what is truly critical, and empower security teams to stay decisively ahead of emerging threats. **Average Rating:** 4.8/5.0 **Total Reviews:** 37 **How Do G2 Users Rate DeCYFIR by CYFIRMA?** - **Security Validation:** 9.1/10 (Category avg: 9.0/10) - **Intelligence Reports:** 9.0/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 9.2/10 (Category avg: 8.6/10) - **Ease of Use:** 9.1/10 (Category avg: 9.1/10) **Who Is the Company Behind DeCYFIR by CYFIRMA?** - **Seller:** [CYFIRMA](https://www.g2.com/sellers/cyfirma) - **Year Founded:** 2017 - **HQ Location:** Singapore, SG - **Twitter:** @cyfirma (1,004 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/cyfirma/ (132 employees on LinkedIn®) - **Phone:** marketing@cyfirma.com **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 39% Mid-Market, 32% Enterprise #### What Are DeCYFIR by CYFIRMA's Pros and Cons? **Pros:** - Threat Detection (12 reviews) - Threat Intelligence (10 reviews) - Cybersecurity (9 reviews) - Features (7 reviews) - Security (7 reviews) **Cons:** - Not User-Friendly (4 reviews) - Complexity (3 reviews) - Learning Curve (3 reviews) - Limited Customization (3 reviews) - Complex Setup (2 reviews) ### 16. [Flashpoint](https://www.g2.com/products/flashpoint/reviews) Flashpoint is the largest privately held threat intelligence provider, enabling mission-critical organizations to proactively confront security challenges globally. Flashpoint Ignite, our unified threat intelligence platform, harnesses the power of primary-source collections, curated human insight, and artificial intelligence to deliver decisive action against a comprehensive range of critical threats. Core Capabilities: → Identify and remediate cyber threats, fraud, vulnerabilities, physical security, and national security risks. → Access over 3.6 petabytes of continuously collected data from the internet’s open and difficult-to-access spaces. Add new channels and data sources in minutes to track sources as they surface. → Operationalize intelligence across your entire security stack with seamless integrations throughout the intelligence lifecycle. **Average Rating:** 4.5/5.0 **Total Reviews:** 83 **How Do G2 Users Rate Flashpoint?** - **Security Validation:** 7.1/10 (Category avg: 9.0/10) - **Intelligence Reports:** 8.3/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 7.0/10 (Category avg: 8.6/10) - **Ease of Use:** 8.4/10 (Category avg: 9.1/10) **Who Is the Company Behind Flashpoint?** - **Seller:** [Flashpoint for Threat Intelligence](https://www.g2.com/sellers/flashpoint-for-threat-intelligence) - **Year Founded:** 2010 - **HQ Location:** New York, NY - **Twitter:** @FlashpointIntel (13,801 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/flashpoint-intel/ (362 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Financial Services, Security and Investigations - **Company Size:** 63% Enterprise, 23% Small-Business #### What Are Flashpoint's Pros and Cons? **Pros:** - Ease of Use (23 reviews) - Features (21 reviews) - Helpful (13 reviews) - Insights (13 reviews) - Search Functionality (12 reviews) **Cons:** - Lack of Features (8 reviews) - Complexity (6 reviews) - Confusing Interface (6 reviews) - Limited Features (6 reviews) - User Frustration (6 reviews) ### 17. [Lookout](https://www.g2.com/products/lookout/reviews) Lookout is a mobile app that fights cybercriminals by predicting and stopping mobile attacks before they do harm. **Average Rating:** 4.3/5.0 **Total Reviews:** 67 **How Do G2 Users Rate Lookout?** - **Security Validation:** 8.8/10 (Category avg: 9.0/10) - **Intelligence Reports:** 9.3/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 9.6/10 (Category avg: 8.6/10) - **Ease of Use:** 8.8/10 (Category avg: 9.1/10) **Who Is the Company Behind Lookout?** - **Seller:** [Lookout](https://www.g2.com/sellers/lookout) - **Year Founded:** 2007 - **HQ Location:** San Francisco, CA - **Twitter:** @Lookout (44,286 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/824768/ (513 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 43% Small-Business, 41% Enterprise #### What Are Lookout's Pros and Cons? **Pros:** - Ease of Use (5 reviews) - Security (4 reviews) - Features (3 reviews) - Protection (3 reviews) - Management Ease (2 reviews) **Cons:** - Limited Features (2 reviews) - Update Issues (2 reviews) - Alert Issues (1 reviews) - Complex Configuration (1 reviews) - Deployment Issues (1 reviews) ### 18. [OpenCTI by Filigran](https://www.g2.com/products/opencti-by-filigran/reviews) OpenCTI is an open-source threat intelligence platform designed to help users manage and operationalize threat intelligence effectively. Built by practitioners for practitioners, OpenCTI aims to break down data silos and ensure that threat intelligence is not only accessible but also actionable. This platform facilitates the seamless flow of threat intelligence across various security systems, making it relevant by integrating business context and enabling the creation of comprehensive threat exposure reports for enhanced executive visibility. The target audience for OpenCTI includes cybersecurity professionals, threat analysts, and organizations looking to improve their threat intelligence capabilities. By providing a centralized platform for threat data, OpenCTI allows users to visualize, link, and enrich threat intelligence, fostering collaboration among teams and enhancing the overall security posture of an organization. The platform is particularly beneficial for organizations that need to streamline their threat intelligence processes and ensure that critical information is readily available to decision-makers. Key features of OpenCTI include its unified and consistent data model based on the Structured Threat Information Expression (STIX) standard. This allows users to integrate diverse threat data sources into a single framework, making it easier to analyze and respond to threats. The platform supports various data formats and can ingest information from multiple feeds, enabling users to maintain a comprehensive view of the threat landscape. Additionally, OpenCTI offers advanced visualization tools that help users identify patterns and relationships within the data, facilitating more informed decision-making. Moreover, OpenCTI enhances the operationalization of threat intelligence by providing users with the tools to enrich their data with contextual information. This capability allows organizations to tailor their threat intelligence to their specific business needs, ensuring that the information is not only relevant but also actionable. By generating detailed threat exposure reports, OpenCTI empowers executives with the insights needed to understand their organization's risk landscape and make informed strategic decisions regarding cybersecurity investments and initiatives. Overall, OpenCTI stands out in the realm of threat intelligence platforms by prioritizing collaboration, accessibility, and contextual relevance. Its open-source nature encourages community involvement and continuous improvement, making it a valuable resource for organizations seeking to enhance their threat intelligence capabilities and strengthen their cybersecurity defenses. **Average Rating:** 4.7/5.0 **Total Reviews:** 39 **How Do G2 Users Rate OpenCTI by Filigran?** - **Intelligence Reports:** 9.0/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 8.1/10 (Category avg: 8.6/10) - **Ease of Use:** 8.1/10 (Category avg: 9.1/10) **Who Is the Company Behind OpenCTI by Filigran?** - **Seller:** [Filigran](https://www.g2.com/sellers/filigran) - **Company Website:** https://filigran.io/ - **Year Founded:** 2022 - **HQ Location:** New York, US - **Twitter:** @FiligranHQ (839 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/filigran (250 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer & Network Security, Information Technology and Services - **Company Size:** 56% Enterprise, 28% Mid-Market #### What Are OpenCTI by Filigran's Pros and Cons? **Pros:** - Ease of Use (18 reviews) - Features (18 reviews) - Customer Support (11 reviews) - Integrations (10 reviews) - Integration Capabilities (9 reviews) **Cons:** - Feature Limitations (6 reviews) - Complexity (5 reviews) - Poor Customer Support (4 reviews) - Poor Documentation (4 reviews) - Dashboard Issues (3 reviews) ### 19. [RiskProfiler - External Threat Exposure Management](https://www.g2.com/products/riskprofiler-external-threat-exposure-management/reviews) RiskProfiler is an advanced cybersecurity platform purpose-built for Continuous Threat Exposure Management (CTEM). It unifies external, cloud, vendor, and brand risk intelligence into a single ecosystem—providing organizations with real-time visibility, contextual threat insights, and actionable remediation guidance. Through its integrated suite, External Attack Surface Managemnet, Third\_party Risk Management, Cloud Attack Surface Management, and Brand Risk Protection; the platform continuously discovers, classifies, and evaluates external-facing assets and risks across the internet, multi-cloud environments, and third-party ecosystems. Powered by AI-enabled risk questionnaires, RiskProfiler automates the exchange, validation, and scoring of security assessments, dramatically accelerating third-party due diligence and compliance validation. The platform’s context-enriched graph engine correlates vulnerabilities, exposures, and configurations with real-world threat data, revealing how attackers might exploit an organization’s digital footprint. Its newly enhanced Cyber Threat Intelligence (CTI) module provides live insights into industry-specific attack trends, threat actor profiles, and evolving TTPs, directly embedded within the dashboard. By analyzing CVEs, IOCs, and exploit patterns, it maps these to relevant assets and potential attack paths, enabling focused, prioritized mitigation. From identifying exposed cloud resources across AWS, Azure, and Google Cloud to uncovering brand impersonation, phishing campaigns, or logo abuse, RiskProfiler delivers unified visibility and continuous monitoring that extends beyond the perimeter. It helps organizations anticipate, contextualize, and neutralize threats before they turn into breaches, transforming exposure management into a truly intelligent, predictive defense capability. **Average Rating:** 4.9/5.0 **Total Reviews:** 118 **How Do G2 Users Rate RiskProfiler - External Threat Exposure Management?** - **Intelligence Reports:** 10.0/10 (Category avg: 9.1/10) - **Ease of Use:** 9.9/10 (Category avg: 9.1/10) **Who Is the Company Behind RiskProfiler - External Threat Exposure Management?** - **Seller:** [Riskprofiler](https://www.g2.com/sellers/riskprofiler) - **Company Website:** https://riskprofiler.io/ - **Year Founded:** 2019 - **HQ Location:** Rock Hill , US - **Twitter:** @riskprofilerio (209 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/riskprofiler (32 employees on LinkedIn®) **Who Uses This Product?** - **Who Uses This:** Software Engineer, Security Consultant - **Top Industries:** Information Technology and Services, Design - **Company Size:** 66% Mid-Market, 33% Small-Business #### What Are RiskProfiler - External Threat Exposure Management's Pros and Cons? **Pros:** - Risk Management (70 reviews) - Features (32 reviews) - Customer Support (31 reviews) - Ease of Use (30 reviews) - Easy Setup (29 reviews) **Cons:** - Learning Curve (17 reviews) - Complexity (16 reviews) - Difficult Learning (16 reviews) - Learning Difficulty (10 reviews) - Complex Setup (8 reviews) ### 20. [Microsoft Defender Threat Intelligence](https://www.g2.com/products/microsoft-defender-threat-intelligence/reviews) Microsoft Defender Threat Intelligence (MDTI is a comprehensive security solution designed to help organizations identify, understand, and mitigate cyberthreats. By leveraging a vast repository of threat intelligence, MDTI enables security teams to expose adversaries, analyze their methods, and enhance their defense strategies. The platform integrates seamlessly with existing security tools, providing continuous monitoring and actionable insights to protect against evolving cyberthreats. Key Features and Functionality: - Continuous Threat Intelligence: MDTI offers a complete view of the internet, tracking daily changes to help organizations understand and reduce their exposure to cyberthreats. - Adversary Identification: The platform provides insights into cyberattackers and their tools, enabling organizations to identify potential threats and understand their methods. - Enhanced Alert Investigations: MDTI enriches incident data with comprehensive threat intelligence, allowing security teams to uncover the full scale of cyberattacks. - Accelerated Incident Response: Organizations can investigate and neutralize malicious infrastructure, such as domains and IPs, associated with cyberattackers. - Collaborative Threat Hunting: The platform facilitates teamwork by allowing analysts to collaborate on investigations, share knowledge, and manage security artifacts. - Improved Security Posture: MDTI helps uncover malicious entities and prevent access to dangerous internet resources, enhancing overall security. - File and URL Intelligence: Users can submit files or URLs to instantly assess their reputation, enriching security incidents with contextual threat intelligence. Primary Value and Problem Solved: MDTI empowers organizations to proactively defend against cyberthreats by providing real-time, actionable intelligence. It addresses the challenge of identifying and mitigating complex cyberattacks by offering deep insights into adversaries and their methods. By integrating with existing security tools, MDTI enhances detection, investigation, and response capabilities, enabling organizations to stay ahead of evolving threats and strengthen their overall security posture. **Average Rating:** 4.3/5.0 **Total Reviews:** 21 **How Do G2 Users Rate Microsoft Defender Threat Intelligence?** - **Security Validation:** 8.2/10 (Category avg: 9.0/10) - **Intelligence Reports:** 8.5/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 8.5/10 (Category avg: 8.6/10) - **Ease of Use:** 8.6/10 (Category avg: 9.1/10) **Who Is the Company Behind Microsoft Defender Threat Intelligence?** - **Seller:** [Microsoft](https://www.g2.com/sellers/microsoft) - **Year Founded:** 1975 - **HQ Location:** Redmond, Washington - **Twitter:** @microsoft (13,091,954 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/microsoft/ (231,632 employees on LinkedIn®) - **Ownership:** MSFT **Who Uses This Product?** - **Top Industries:** Computer & Network Security - **Company Size:** 46% Small-Business, 25% Enterprise #### What Are Microsoft Defender Threat Intelligence's Pros and Cons? **Pros:** - Ease of Use (4 reviews) - Automation (1 reviews) - Easy Integrations (1 reviews) - Helpful (1 reviews) - Installation Ease (1 reviews) **Cons:** - Incomplete Information (2 reviews) - Information Overload (1 reviews) - Limited Functionality (1 reviews) - Navigation Issues (1 reviews) ### 21. [Dataminr](https://www.g2.com/products/dataminr/reviews) Dataminr provides a revolutionary real-time AI platform for detecting events, risks and critical information from public data signals. Recognized as one of the world's leading AI companies, Dataminr enables faster real-time response and more effective risk management for public and private sector organizations, including multinational corporations, governments, NGOs, and newsrooms. Dataminr Pulse for Corporate Security With Dataminr Pulse for Corporate Security, you can detect, visualize, and respond to events and threats in real-time to: • Improve People Safety: Improve the safety of your employees, executives, customers, and contractors against external risks and threats wherever they are—in the office, working from home, or on a business trip. • Secure Facilities and Events: Protect all your global premises—including offices, manufacturing plants, warehouses, data centers, retail stores, stadiums, arenas, and temporary work locations—against external threats and hazards. • Increase Operational Resilience: Safeguard your revenue-generating activities against external threats and disruptive events that could directly or indirectly affect core business operations. Dataminr Pulse for Cyber Risk Enhance cyber resilience with Dataminr Pulse for Cyber Risk, a real-time, external cyber threat detection solution that empowers your team to: • Identify Digital Risk: Respond quickly to early warnings of threats to and exposures of your organization's digital assets. • Expose Third-Party Risk: Mitigate risk to your organization with increased visibility into threats to your subsidiaries, vendors, and service providers. • Receive Vulnerability Intelligence: Improve prioritization of patching with visibility into the full lifecycle of vulnerabilities. Get alerts about exploits, emerging and trending vulnerabilities, and more. • Respond to Cyber-Physical Risks: Respond to real-time alerts on cyber threats affecting physical assets and physical threats affecting digital assets. **Average Rating:** 4.5/5.0 **Total Reviews:** 48 **How Do G2 Users Rate Dataminr?** - **Security Validation:** 7.6/10 (Category avg: 9.0/10) - **Intelligence Reports:** 7.6/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 8.0/10 (Category avg: 8.6/10) - **Ease of Use:** 8.5/10 (Category avg: 9.1/10) **Who Is the Company Behind Dataminr?** - **Seller:** [Dataminr](https://www.g2.com/sellers/dataminr) - **Year Founded:** 2009 - **HQ Location:** New York, NY - **Twitter:** @Dataminr (16,452 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/dataminr/ (838 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Security and Investigations - **Company Size:** 56% Enterprise, 33% Small-Business #### What Are Dataminr's Pros and Cons? **Pros:** - Ease of Use (7 reviews) - Alerts (6 reviews) - Monitoring (5 reviews) - Alert Notifications (4 reviews) - Improvement (4 reviews) **Cons:** - Inefficient Alerts (5 reviews) - Complexity (3 reviews) - False Positives (3 reviews) - Information Overload (3 reviews) - Learning Curve (3 reviews) ### 22. [BlackFog](https://www.g2.com/products/blackfog/reviews) Data can’t be stolen if it never leaves. BlackFog prevents data exfiltration from endpoints, stopping sensitive information from flowing to ransomware groups, AI tools, cloud services, and other unauthorized destinations. While most cybersecurity solutions focus on detecting threats, BlackFog focuses on preventing the outcome attackers want most: access to your data. Our endpoint-native platform monitors and controls outbound communications in real time, preventing data loss through ransomware, insider threats, shadow AI, and other exfiltration channels. BlackFog pioneered anti data exfiltration (ADX), a category built around a simple principle: the endpoint is the last place data can be stopped before it’s gone. By operating directly on the device, BlackFog provides visibility and control across browsers, cloud applications, AI tools, encrypted connections, and emerging AI workflows that traditional network-based approaches often miss. Today, organizations use BlackFog to prevent ransomware data theft, govern AI usage, reduce data loss risk, and protect sensitive information wherever users work. Key Capabilities \* Anti data exfiltration (ADX) \* Ransomware Data Theft Prevention \* Shadow AI Discovery and Governance \* AI Data Loss Prevention \* Insider Threat Protection \* Real-Time Outbound Traffic Control \* Endpoint Data Protection \* Compliance and Privacy Enforcement **Average Rating:** 4.9/5.0 **Total Reviews:** 32 **How Do G2 Users Rate BlackFog?** - **Security Validation:** 9.8/10 (Category avg: 9.0/10) - **Intelligence Reports:** 9.7/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 9.8/10 (Category avg: 8.6/10) - **Ease of Use:** 9.2/10 (Category avg: 9.1/10) **Who Is the Company Behind BlackFog?** - **Seller:** [BlackFog](https://www.g2.com/sellers/blackfog) - **Company Website:** https://www.blackfog.com - **Year Founded:** 2015 - **HQ Location:** BlackFog Inc. Suite 1400 4 Embarcadero Ctr San Francisco CA 94111, United States - **Twitter:** @blackfogprivacy (1,495 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/blackfog/ (26 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer & Network Security, Information Technology and Services - **Company Size:** 58% Small-Business, 27% Mid-Market #### What Are BlackFog's Pros and Cons? **Pros:** - Security (17 reviews) - Protection (16 reviews) - Customer Support (12 reviews) - Ease of Use (12 reviews) - Security Protection (10 reviews) **Cons:** - Missing Features (4 reviews) - UX Improvement (4 reviews) - Limited Features (3 reviews) - Alert Management (2 reviews) - Complexity (2 reviews) ### 23. [ThreatMon](https://www.g2.com/products/threatmon/reviews) ThreatMon is an AI-powered cyber risk intelligence platform designed to assist organizations in detecting, analyzing, and responding to external cyber threats that may impact their digital assets, brand reputation, and third-party ecosystem. This comprehensive solution provides real-time visibility into an organization’s attack surface exposure, the evolving threat landscape, and overall cyber risk posture, all accessible from a single, unified platform. The platform is particularly beneficial for security and risk management teams who require a holistic view of their cyber environment. ThreatMon integrates various functionalities including attack surface management, threat intelligence, dark web monitoring, fraud detection, surface web monitoring, and supply chain risk intelligence. This integration eliminates the need for multiple, disconnected tools, streamlining the process of threat detection and risk assessment. By consolidating these capabilities, ThreatMon allows organizations to efficiently manage their cyber risk landscape while reducing operational complexity. Key features of ThreatMon include the ability to discover exposed assets, detect phishing attempts, monitor for brand impersonation, and track leaked credentials and data breaches. Additionally, it provides insights into threat actors and assesses vendor and third-party risks, which is crucial for organizations that rely on a complex ecosystem of partners and suppliers. The platform’s built-in governance, risk, and compliance (GRC) capabilities further enhance its utility by mapping compliance requirements and generating executive-level reports. This functionality translates technical findings into actionable business-level insights, enabling stakeholders to make informed decisions regarding their cyber risk management strategies. By unifying external exposure monitoring, threat intelligence, fraud detection, supply chain risk visibility, and governance-level reporting, ThreatMon empowers both security operations teams and executives to understand, prioritize, and respond to cyber risks more effectively. This shift from fragmented, reactive security measures to a proactive, intelligence-driven approach allows organizations to better safeguard their assets and maintain their reputation in an increasingly complex digital landscape. With ThreatMon, organizations can enhance their overall security posture and foster a culture of proactive risk management, ensuring they remain resilient against evolving cyber threats. **Average Rating:** 4.9/5.0 **Total Reviews:** 26 **How Do G2 Users Rate ThreatMon?** - **Security Validation:** 9.8/10 (Category avg: 9.0/10) - **Intelligence Reports:** 9.9/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 9.6/10 (Category avg: 8.6/10) - **Ease of Use:** 9.7/10 (Category avg: 9.1/10) **Who Is the Company Behind ThreatMon?** - **Seller:** [ThreatMon](https://www.g2.com/sellers/threatmon) - **Company Website:** https://threatmon.io/ - **Year Founded:** 2022 - **HQ Location:** Sterling VA - **Twitter:** @MonThreat (17,083 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/threatmon/ (38 employees on LinkedIn®) **Who Uses This Product?** - **Top Industries:** Computer & Network Security - **Company Size:** 38% Enterprise, 38% Mid-Market #### What Are ThreatMon's Pros and Cons? **Pros:** - Threat Detection (10 reviews) - Threat Intelligence (6 reviews) - Cybersecurity (5 reviews) - Real-time Notifications (5 reviews) - Security Protection (5 reviews) **Cons:** - Information Overload (4 reviews) - Limited Features (4 reviews) - Excessive Notifications (3 reviews) - Lack of Customization (3 reviews) - Missing Features (3 reviews) ### 24. [IBM X-Force Exchange](https://www.g2.com/products/ibm-x-force-exchange/reviews) IBM Security X-Force Threat Intelligence is a security solution that adds dynamic Internet threat data to the analytical capabilities of IBM QRadar Security Intelligence Platform. **Average Rating:** 4.5/5.0 **Total Reviews:** 11 **How Do G2 Users Rate IBM X-Force Exchange?** - **Security Validation:** 8.3/10 (Category avg: 9.0/10) - **Intelligence Reports:** 8.8/10 (Category avg: 9.1/10) - **Endpoint Intelligence:** 8.1/10 (Category avg: 8.6/10) - **Ease of Use:** 9.3/10 (Category avg: 9.1/10) **Who Is the Company Behind IBM X-Force Exchange?** - **Seller:** [IBM](https://www.g2.com/sellers/ibm) - **Year Founded:** 1911 - **HQ Location:** Armonk, New York, United States - **Twitter:** @IBMSecurity (74,679 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/1009/ (328,202 employees on LinkedIn®) - **Ownership:** SWX:IBM **Who Uses This Product?** - **Company Size:** 41% Enterprise, 29% Mid-Market ### 25. [UpGuard Breach Risk](https://www.g2.com/products/upguard-breach-risk/reviews) UpGuard Breach Risk is an AI-powered attack surface management solution that empowers lean security teams to see what attackers see and take control of their external risk. As part of the UpGuard Cyber Risk Posture Management (CRPM) platform, it integrates seamlessly with Vendor Risk and User Risk to provide a unified defense against modern cyber threats. As organizations scale, their digital footprint expands beyond the firewall, creating dangerous blind spots. Traditional tools often miss these external signals, leaving teams vulnerable to shadow IT, exposed credentials, and brand abuse. Breach Risk solves this by combining Attack Surface Management (ASM), Digital Risk Protection (DRP), and advanced Threat Monitoring into a single, automated platform. Key Capabilities: • Continuous Attack Surface Discovery: You can’t protect what you can’t see. Breach Risk continuously maps your internet-facing assets like domains, IPs, and cloud resources, to uncover shadow IT and misconfigurations. We automatically inventory your digital footprint to close the gaps that attackers exploit, ensuring no asset goes unmonitored. • AI-Powered Threat Monitoring: Move beyond static feeds. Our Threat Monitoring engine scans the open, deep, and dark web to detect leaked employee credentials, infostealer logs, and malware signals before they are weaponized. Unlike traditional threat intelligence that floods you with raw data, our AI Threat Analyst triages signals to filter out noise and prioritize high-fidelity threats for immediate action. • Brand Protection & Disinformation Defense: Safeguard your reputation against fraud. We proactively detect lookalike domains (typosquatting) and fraudulent social media profiles used to launch phishing attacks and disinformation campaigns. Our integrated workflows help you identify and neutralize these impersonation attempts before they erode customer trust. • Actionable Remediation: We don’t just find problems; we help you fix them. Breach Risk provides guided remediation plans and integrates with your security tech stack, allowing lean teams to accelerate response times without adding headcount. By translating complex technical risks into a quantifiable Cyber Risk Score, UpGuard enables security leaders to benchmark performance, justify budget, and prove risk reduction to the board. **Average Rating:** 4.5/5.0 **Total Reviews:** 22 **How Do G2 Users Rate UpGuard Breach Risk?** - **Security Validation:** 10.0/10 (Category avg: 9.0/10) - **Intelligence Reports:** 10.0/10 (Category avg: 9.1/10) - **Ease of Use:** 9.5/10 (Category avg: 9.1/10) **Who Is the Company Behind UpGuard Breach Risk?** - **Seller:** [UpGuard](https://www.g2.com/sellers/upguard) - **Company Website:** https://upguard.com - **Year Founded:** 2012 - **HQ Location:** Mountain View, California - **Twitter:** @UpGuard (8,705 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/upguard/ (371 employees on LinkedIn®) **Who Uses This Product?** - **Company Size:** 65% Enterprise, 35% Mid-Market ## What Is Threat Intelligence Software? [System Security Software](https://www.g2.com/categories/system-security) ## What Software Categories Are Similar to Threat Intelligence Software? - [Dark Web Monitoring Tools](https://www.g2.com/categories/dark-web-monitoring) - [ Attack Surface Management Software](https://www.g2.com/categories/attack-surface-management) - [Digital Risk Protection (DRP) Platforms](https://www.g2.com/categories/digital-risk-protection-drp-platforms) --- ## How Do You Choose the Right Threat Intelligence Software? ### What You Should Know About Threat Intelligence Software ### Threat Intelligence Software FAQs ### What are the best threat intelligence software options for small businesses? Here are some of the best threat intelligence software solutions designed to protect [small businesses](https://www.g2.com/categories/threat-intelligence/small-business): - [Microsoft Defender for Cloud](https://www.g2.com/products/microsoft-defender-for-cloud/reviews) provides small businesses with real-time threat detection and security recommendations across cloud environments. - [ThreatLocker](https://www.g2.com/products/threatlocker-inc-threatlocker/reviews) delivers application whitelisting and ringfencing controls, helping small teams prevent unauthorized access and malware execution. - [Cloudflare Application Security and Performance](https://www.g2.com/products/cloudflare-application-security-and-performance/reviews) combines threat protection with performance optimization, ideal for small businesses running web-based services. - [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) offers lightweight, cloud-delivered endpoint protection that detects threats quickly without overloading system resources. - [FortiGate NGFW](https://www.g2.com/products/fortigate-ngfw/reviews) delivers enterprise-grade firewall and threat intelligence capabilities in a scalable package suited for small business networks. ### What are the best-rated threat intelligence apps for IT teams? Here are some of the highest-rated threat intelligence apps tailored for IT teams managing complex environments: - [Recorded Future](https://www.g2.com/products/recorded-future/reviews) delivers real-time threat intelligence with deep web insights, helping IT teams proactively detect and prioritize risks. - [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) combines threat detection with automated response tools, enabling IT teams to secure endpoints at scale. - [Microsoft Defender for Cloud](https://www.g2.com/products/microsoft-defender-for-cloud/reviews) provides integrated threat detection and security posture management across multi-cloud and hybrid environments. - [Cyberint, a Check Point Company](https://www.g2.com/products/cyberint-a-check-point-company/reviews), offers external threat intelligence focused on digital risk protection, empowering IT teams to counter emerging threats beyond the firewall. - [ZeroFox](https://www.g2.com/products/zerofox/reviews) specializes in identifying external threats across social media, domains, and the dark web, equipping IT teams with actionable intelligence. ### What are the best-rated threat intelligence platforms for startups? Here are some of the most reliable threat intelligence platforms well-suited for agile and growing startups: - [Cloudflare Application Security and Performance](https://www.g2.com/products/cloudflare-application-security-and-performance/reviews) combines powerful DDoS protection and threat intelligence in a lightweight, cost-effective platform ideal for startups scaling web infrastructure. - [ThreatLocker](https://www.g2.com/products/threatlocker-inc-threatlocker/reviews) offers granular application control and real-time threat blocking, giving startups enterprise-grade security without complexity. - [CrowdStrike Falcon Endpoint Protection Platfor](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) delivers scalable, cloud-native endpoint protection that’s easy for lean startup teams to deploy and manage. - [CloudSEK](https://www.g2.com/products/cloudsek/reviews) provides AI-driven threat detection and digital risk monitoring, helping startups stay ahead of emerging threats across assets and brand mentions. - [Censys Search](https://www.g2.com/products/censys-search/reviews) enables startups to continuously map and monitor their attack surface, offering visibility and threat data without heavy setup.