# Cofense Triage Reviews **Vendor:** Cofense **Category:** [Incident Response Software](https://www.g2.com/categories/incident-response) **Average Rating:** 4.0/5.0 **Total Reviews:** 1 ## About Cofense Triage Cofense Triage is the first phishing-specific incident response platform that allows security operation (SOC) and incident responders to automate the prioritization, analysis and response to phishing threats that bypass your email security technologies. ## Cofense Triage Reviews ### 1. Cofense Triage - User friendly/Effective Triage tool **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** September 12, 2023 **What do you like best about Cofense Triage?** Some of the features which were up to the mark in Cofense 1) The triaging feature of the tool, where in you can easily analyze emails reported, write the notes of the investigation, mark the specificed verdict for the email where if it is Phishing, Malware or a legitimate email that needs to be processed 2) Another brilliant and an important feature, a feature of yara rule writing in Cofense. Put down the IOC's let the rule process and this will help in tracking the campaigns in future We dont have to put manual efforts, yara rules and regex writing themselves help in processing emails **What do you dislike about Cofense Triage?** Cofense has feature of yara rules and regex writing for the IOC's Another addition would have been helpful, where in cofense would help capture the phishing campaign pattern with the help of Machine level models. If it could leverage models, to help in tracking the future campaigns, whenever submitted. If it would be able to recognize IOC's, campaign details and delete emails from the user inbox. This way it would be helpful to track lot of campaigns at once **What problems is Cofense Triage solving and how is that benefiting you?** The first and the foremost problem is 1) Helping triage the Phishing emails, if we are able to capture 1 email out of say 200 emails. Then just writing 1 rule for 1 email while looking for commonality will help mitigate all the 200 emails 2) The Yara rules, help in capturing lot of different pattern of phishing campaigns, which belong to the same IOC's - [View Cofense Triage pricing details and edition comparison](https://www.g2.com/products/cofense-triage/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-21+23%3A36%3A15+-0500&secure%5Bsession_id%5D=40fc9c0e-06f8-42d4-8d3c-0909de6fae5e&secure%5Btoken%5D=0e39c08922e55c814f69f15a8641c39f004e4186823f2b49b4c34ef46b2b78be&format=llm_user) ## Cofense Triage Features **Response** - Resolution Automation - Resolution Guidance - System Isolation - Threat Intelligence - Incident Investigation **Records** - Incident Logs - Incident Reports **Management** - Incident Alerts - Incident Case Management - Workflow Management **Generative AI** - AI Text Generation - AI Text Summarization ## Top Cofense Triage Alternatives - [KnowBe4 PhishER/PhishER Plus](https://www.g2.com/products/knowbe4-phisher-phisher-plus/reviews) - 4.6/5.0 (562 reviews) - [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) - 4.7/5.0 (381 reviews) - [Tines](https://www.g2.com/products/tines/reviews) - 4.7/5.0 (392 reviews)