# F5 Distributed Cloud App Infrastructure Protection (AIP) Reviews **Vendor:** F5 **Category:** [Cloud Security Monitoring and Analytics Software](https://www.g2.com/categories/cloud-security-monitoring-and-analytics) **Average Rating:** 4.4/5.0 **Total Reviews:** 44 ## About F5 Distributed Cloud App Infrastructure Protection (AIP) Distributed Cloud AIP, formerly known as Threat Stack, is the leader in cloud security and compliance for application infrastructures, helping companies securely leverage the business benefits of the cloud with proactive risk identification and high-efficacy threat detection across cloud workloads. Distributed Cloud AIP’s application infrastructure protection helps organizations improve operational efficiency by delivering full stack security observability across the cloud management console, host, container, orchestration, managed containers, and serverless layers. Distributed Cloud AIP helps organizations efficiently detect known risks at scale and quickly uncover anomalies throughout the environment. Distributed Cloud AIP helps organizations stay secure through comprehensive security monitoring with a combination of industry-leading telemetry collection, a robust ruleset for known threats, and ThreatML for vulnerability and anomaly detection. Security Services Customers also have the option of leveraging our human expertise with Distributed Cloud AIP Insights and Managed Security Services, our in-house Security Operations Center (SOC) that provides 24/7/365 monitoring of your cloud environment. Through both options, Distributed Cloud AIP aims to deliver visibility and response capabilities across the full stack, allowing organizations to leverage the benefits of modern computing environments, securely. Coupled with other F5 Distributed Cloud Services, customers get application and infrastructure protection. Because applications and APIs are only as secure as the infrastructure they run on. To learn more, visit https://www.f5.com/cloud/products/app-infrastructure-protection ## F5 Distributed Cloud App Infrastructure Protection (AIP) Reviews ### 1. Works, but slight annoyances **Rating:** 4.0/5.0 stars **Reviewed by:** Brad S. | Information Architect, Enterprise (> 1000 emp.) **Reviewed Date:** April 19, 2023 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The application provides seamless integration between systems on campus and systems off campus, as well as integrating with the campus-wide firewall and authenthication. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** When a session ends, you can't just simply log back in. If you do, it'll almost certainly kick you back out. You have to remember to close a window, then reconnect. Annoying. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** The largest problem is wholesale integration with systems, and then broad marketing to users in a large organization on actually using the product. CS tickets increased quite a bit for normal every day users. ### 2. With Threat Stack, its relatively easy to accelerate our compliance & streamline security audits **Rating:** 4.0/5.0 stars **Reviewed by:** Shreya B. | Cloud Engineer, Information Technology and Services, Enterprise (> 1000 emp.) **Reviewed Date:** November 19, 2022 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Threat Stack gives us comprehensive cloud security & compliance management through its event-based monitoring feature. We can conveniently monitor our host instances, containers & K8 deployments in its centralized observability platform. It also provisions compliance & security governance for every telemetry layer of our cloud environments. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Threat Stack effectively provides an intrusion detection platform that effectively filters out false positives & allows us to focus on critical alerts. All alert noise can be suppressed by simply using its predefined rule sets, thereby reducing our time & effort. Hence with Threat Stack, we can quickly identify anomalous behaviors in our cloud infrastructure. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Compared to other cloud security & compliance management platforms, Threat Stack is quick to process Mean-Time-To-Detect (MTTD) & Mean-Time-To-Know (MTTK) metrics. We evaluate our compliance audits from its compliance monitoring reports & opt for proactive risk reduction approaches. It also provides excellent remediation recommendations with rich cloud security insights & best practices to track suspicious activities & misconfigurations accurately. ### 3. F5 Cloud AIP **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer Networking | Mid-Market (51-1000 emp.) **Reviewed Date:** May 31, 2023 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Helps in precise monitoring of resources within the cloud environment and provides relevant alerts in case a vulnerability is observed. Analytics and dashboard helps in identifying the risks. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The User Interface can be enhanced. Shortcuts should be provided to reach a particular resource rather than clicking through the traditional way. Integration can be made easier. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Quite helpful in operational and security related monitoring of cloud based resources. Investigating vulnerability related alerts helps in avoiding security risks and assists in its remediation. ### 4. Provides VPN Solutions **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Enterprise (> 1000 emp.) **Reviewed Date:** April 26, 2023 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** 1. I used this app to access VPN 2. Secure 3. I could access all my office related stuffs and it was fast too **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** There were frequent disconnections observed while using, but that is not a major con **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** It provides faster and secure solution to access office contents. It is easy to use and no proper knowledge or learning is needed to use this application. I used this app as VPN. ### 5. Threatstack Oversight Delivers on Managed Threat Detection **Rating:** 5.0/5.0 stars **Reviewed by:** Mark B. | Mid-Market (51-1000 emp.) **Reviewed Date:** October 14, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** All of our production applications are hosted with AWS and Threatstack is a cloud native platform designed from the ground up to monitor threats in cloud environments. This includes not only your compute instances, but also the cloud management platform itself. It was fairly easy to deploy and since it is a SaaS we don't have to manage it. With their Oversight service, they act as our SecOps team, monitoring our environment, analyzing events, and escalating to our organization when necessary. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** 1. I wish they had better reporting capabilities in the tool itself. 2. I would like to see better integration for Windows workloads. 3. For compliance purposes, it would be nice if there was an option to store all events for 1 year in the tool itself. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** It provides us with 24x7x365 monitoring of activity within our cloud environments. The Threatstack SOC analyzes all alerts and only escalates to us when there is a real issue. It also helps tremendously with our PCI requirements. ### 6. Working with Threat Stack has been fantastic. They are knowledgeable, helpful, and friendly. **Rating:** 5.0/5.0 stars **Reviewed by:** Josh G. | Principle DevOps Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** July 20, 2021 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Threat Stack's team makes me feel valued and is aways looking out for our needs. Threat Stack is more than just a Software as a Service; Service comes first and their team is always available to answer questions, provide advice and consultation on a broad range of security questions. Our account manager checks in with my team on a monthly basis to ensure that we're getting the best possible value from the service, see what Threat Stack can be doing better, and help me feel secure in the constantly changing world of DevSecOps. He has gone above and beyond to help us with external audits, requests from customers, ecurity policy writing and planning FedRAMP inititives. Threat Stack is open to suggestions and tracks every feature request I have on these calls; many have already been implemented, leading to increased ease of use and functionality for my team. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** I often wish some of my RFEs were handled in a more timely manner, but I recognize that between the Covid-19 pandemic and Threat Stack's recent product release of ThreatML, their engineering team has had higher priorities. I am very optomictic about the new ThreatMl product, but in it's initial version I feel there's a few shortcomings which prevent it from being immedietly useful to my team. These are minor issues, in general Threat Stack is a great partner for our needs and these areas for improvement do not detract from my experience as a satisfied customer. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Threat Stack allows us to ensure that activity on our Enterprise servers is authorized, that software patches are up to date, and that server are compliant with our Security policies. Threat Stack enables us to be compliant with the heavy regulatory requirements within our field and allows us to undergo customer audits with cofidence. Threat Stack has allowed us to harden our servers, ensuring that all management connections are authorized and that no rogue agents have compromised our engineer's workstations or credentials. ### 7. Great experience, easy to use **Rating:** 3.5/5.0 stars **Reviewed by:** Nicolás E. | Cloud Engineering Manager, Mid-Market (51-1000 emp.) **Reviewed Date:** July 18, 2021 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** I like you can apply a set of rules already predefined for SOC2 **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** After the tool is reporting a vulnerability, if I fix it just right after, I need to wait until the other day to see the fix reflected on the report, so I do not like that I can not trigger a scan on demand. I'll like to have a Jira integration, so when the tool is reporting a vulnerability can also filla ticket to track it, reporting is good but for goind beyond the line it will be good to report the vulnerability and also create a ticket like an action item for the team **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** The product is great, the setup is super straight forward, and the set of rules you can apply will make your life easy; we were using it for classic ec2 instances, but after moving to k8s we lose some features, the tracking for ssh is not so good as we had in classic ec2 implementation **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** IDS and FIM for being SOC2 compliance ### 8. Amazing Cloud Security Monitoring / Compliance Platform **Rating:** 4.5/5.0 stars **Reviewed by:** Brian P. | Site Reliability Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** July 14, 2021 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** There are a lot of things to like about the entire platform. After getting familiar with the dashboard, it was very insightful to take a glance and have a brief overview of your cloud. The Threat Stack Oversight service was beneficial for us as our team wasn't very big. We got time back to work on other important initiatives and don't have to worry about low level alerts. They helped with detecting and triaging high-severity issues and investigate alerts on our behalf. Overall I would definitely recommend this to other people using Threat Stack. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The learning curve was a bit steep. We had a few training sessions with one of their engineers that helped us tuned alerts and reduce noise. While the dashboard is good for quick glances, digging deeper requires a bit more effort. I find myself having to switch between the AWS console, ThreatStack, and other tools to get a better understanding of what is happening. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** We needed a way to audit out AWS environments. Threat Stack helped us help do security monitoring and compliance. The oversight service also helped us find security issues that we had in our environment that we probably wouldn't have found out about otherwise. ### 9. Great customer service and experience with Threat Stack! **Rating:** 5.0/5.0 stars **Reviewed by:** Michael S. | Director of Engineering, Small-Business (50 or fewer emp.) **Reviewed Date:** July 16, 2021 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** We are running a security-mindful business with a small engineering team. Threat Stack has been an excellent addition to our layers of protection. We can all sleep better knowing that automated alerts are watching out for us. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The product comes with a vast number of alert options out of the box. It's a bit overwhelming at first. But after spending some time configuring things (with great support from Threat Stack!), we are now comfortable that only actionable alerts remain. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** We are using Threat Stack to monitor our servers for intrusions and suspicious modifications. That's one less thing to worry about with a small engineering team that can focus on delivering customer-focused features instead. ### 10. Fantastic product and quality services **Rating:** 4.5/5.0 stars **Reviewed by:** Jonni L. | Operations Manager, Mid-Market (51-1000 emp.) **Reviewed Date:** July 17, 2021 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The monitoring and incident management services. They are proffesional, clear, and efficient **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The work it takes to adapt the product to your needs during onboarding **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** If you are looking for a great partner to address the incoming threats to your organization, Threatstack is a great choice. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** We use threatstack for threat monitoring and response. It is a critical tool in our incident management toolbox for not just responding to an incident but making sure we are the first to know. ### 11. Excellent security analysis and great people **Rating:** 4.5/5.0 stars **Reviewed by:** Alan B. | Manager, NOC, Systems and Support, Mid-Market (51-1000 emp.) **Reviewed Date:** February 09, 2021 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** A clear and concise dashboard showing alerts related to servers. Being able to see exactly what's going on at a glance is very important for a daily run through potential security issues, and that's exactly what you get with ThreatStack. The system is still very deep, and you are able to drill down easily into detail on issues or potential issues. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** It's not simple to remove / snooze not applicable alerts for servers that (for example) had no external access but had out of date packages. You can set this up with rulesets, but then you are hiding issues. Having X high alerts sitting there constantly got me used to seeing red, which wasn't good. This is 100% a "me" thing, and not a reflection on the product. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** ThreatStack for us was solving the challenge of knowing what was going on in a relatively small (~50 servers / resources) AWS setup. Knowing what servers were vulnerable, had mis-configuation without having to log into each one was a *huge* time saver. Additionally being able to be in compliance with AWS best practices as a less experienced AWS user gave us a solid set of rules to follow in the future, as well as knowing what our current status was using the Config Audit. ### 12. Pro active identification **Rating:** 4.5/5.0 stars **Reviewed by:** Diana G. | Systems Security, Mid-Market (51-1000 emp.) **Reviewed Date:** November 25, 2021 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Graphical interface and app test available and necessary for the protection of the main system. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Problem for application testing and application support. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** With a graphical interface and adding specific functions, it is the best solution to my main system security and stability problems. ### 13. Threat Stack Simplifies Security Monitoring **Rating:** 5.0/5.0 stars **Reviewed by:** Brandon M. | Small-Business (50 or fewer emp.) **Reviewed Date:** December 21, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Threat Stack provides automated and human monitoring of our AWS environment, eliminating the burden on our side. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** UI and searching could be improved as they are a little rough around the edges; however Threat Stack is aware and actively working to improve the platform. **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** Threat Stack works well for environments that allow 3rd-party integration in your AWS accounts. The platform works by enabling CloudTrail and creating a role which Threat Stack will assume in your account. Your corporate policies need to allow this kind of configuration for Threat Stack to be a viable option. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Working in the healthcare industry, our company needs to actively monitor and watch for security threats and potential exploits. Threat Stack reduces this burden by allowing us to offload the active monitoring to their team. In addition their support and solutions teams make a genuine effort to review accounts and offer feedback for improvements. Threat Stack is one of the few 3rd-party platforms we use where I feel that every meeting is helpful. ### 14. The platform takes time to get used to at first, but after it became very intuitive **Rating:** 3.5/5.0 stars **Reviewed by:** Nithin D. | Mid-Market (51-1000 emp.) **Reviewed Date:** December 03, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The color coordination! Easy for the eyes. Especially on how we can distinguish based off color of the type of Sev if either sev 1, sev 2, or sev 3 within alerts tab. Along with that the dashboard tab is very very easy to understand on whats going on. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** It just took time to get used to using the UI. Within the events tab it was first a bit hard to notice the parameters since it is in light colors, the ones that im talking about are: servers,argument,pid,command, etc. Not sure if this functionality is already there, but when viewing an alert in group view and then I click "select all", is there a way to suppress all alerts. As of now looks like we'd have to do one by one. For the dashboard tab, there is a lot of white space. Maybe we can use more of that white space to add more helpful analytics. **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** Look at tutorial videos before utilizing Threat Stack and also have proper basic fundamentals of networking. I would recommend others to use Threat Stack for infrastructure monitoring, vulnerability management, threat intelligence, and compliance reporting. This tool is a very helpful cloud security platform. Just like everything new to you, make sure to get some practice in learn the fundamentals first. Dont rush in like me or it will be chaotic to look at first. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Im currently not utilizing threatstack that much. Other team members can better answer that! The time I did utilize Threat stack was to determine which of our employees are logging into AWS without utilizing Multi Factor Authentication. Since this was an alert in Threat Stack as I believe a SEV 3, we were able to track down all the users and inform them to setup multi factor authentication for their account. ### 15. Good product, with some room for improvement **Rating:** 3.5/5.0 stars **Reviewed by:** Jesse B. | Mid-Market (51-1000 emp.) **Reviewed Date:** December 15, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** One of the best parts of using Threatstack has been the customer care team. They've been very diligent listening to our feedback and addressing it. They continually monitor and tune our alerts, alleviating some of that burden. Kubernetes support has been good; the agents are very easy to deploy in our clusters. The default rulesets are pretty comprehensive, although they require extensive tuning to filter out the noise. We've seen steady improvement of the product over time. Even as I was writing this review, I was navigating around the product and found that some issues we used to have had been resolved. One good example of this was with CVE handling. It used to be impossible to see which CVEs had a matching security notice. Now I see that you can sort by whether a vulnerability has a security notice, making it much easier to find actionable CVEs. The monthly wrap-up report and video call we do has been helpful in surfacing misconfigured services and unusual user behavior. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The web interface can feel clunky at times. Some areas are less polished than others. A LOT of tuning is required to eliminate noise. We still deal with a number of alerts that aren't actionable, but the Threatstack team continues to work on tuning them. Being billed by agent hour adds up quickly and incentivizes monitoring the bare minimum number of servers. Also, having a certain allotment of agent hours each year and having to negotiate contract changes if we use more/less is a bit of a hassle. It'd be nicer to just have a flat-rate per agent and get billed for whatever we use each year. Earlier on, the product had many deficiencies and bugs. Some components were broken, others were just not useful. This has improved over time though! **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** The most basic problem we needed to solve was IDS. Threat Stack does this well, both in our legacy EC2 instances as well as our newer Kubernetes clusters. We looked at implementing our own solution with open source tools, but the sheer effort to tune and develop the ruleset was too much compared to a managed solution like Threat Stack. Vulnerability detection is another problem we're solving with Threat Stack. It helps us fulfill obligations to patch critical CVEs within our contractual timelines. ### 16. Threat Stack is our HIDS and much else, and we've never seen cause to change! **Rating:** 4.5/5.0 stars **Reviewed by:** John N. | Mid-Market (51-1000 emp.) **Reviewed Date:** December 07, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** We're a longtime customer that engaged with ThreatStack when they were a very young company. Threat Stack aggregates all of our Linux systems-level events and automatically classifies them according to severity (1, 2, and 3). Threat Stack comes with a default rule set that is good, and there is also a set of rules tuned to HIPAA that have helped quite a bit. Additionally, we have written our own rules to reduce the amount of noise from the system. It's easy to create rules. With those rules in place, we only spend about 10 minutes per week looking at the Threat Stack console (two engineers, 5 minutes each). We send Severity 1 Alerts to email and triage those immediately/ad hoc. We also like the fact that it looks at our systems and rates them for vulnerabilities (CVEs) so that we can keep our systems properly patched. More recently we've been intrigued by their new machine learning process to identify anomalies (though we're not using that, yet). We also did a test-drive of their service whereby their staff alert us based on their understanding of server behavior: We liked it but we're still just a little too small to justify the expense. We are not yet using their container monitoring, but we will eventually. We have on occasion used their API, which has been helpful for some specialized data analysis. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** One thing we found was that essentially we had to create our own methodology. Twice/week each of two engineers reviews all of our security tools (Threat Stack, AWS cloud monitoring, SumoLogic). We've long felt that ThreatStack should promote a methodology like that -- i.e., how to integrate it into your DevOps flow. Threat Stack no longer has a Ruby client for the API, mostly because the Ruby "Hawk" authentication scheme is no longer maintained. If you do want to use the Threat Stack API from Ruby, you can use a client I developed (https://github.com/jgn/mini_hawk). **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** I recommend that you come up with a methodology for review the Threat Stack dashboard periodically -- and keep notes on what you're seeing. Additionally, learn how to make your own custom rules. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** The core problem is host-based intrusion detection, which is required for our HITRUST certification (among other things). ### 17. Increase Insight and Security Productivity **Rating:** 5.0/5.0 stars **Reviewed by:** Skyler C. | Software Development Manager, Mid-Market (51-1000 emp.) **Reviewed Date:** December 07, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The major upsides of using ThreatStack is increasing insight into any security issues that may exist and you may be unaware of, real time alerting and helping understaffed teams manage security. Monthly insight reports directly from our security team at ThreatStack really help breakdown our overall security posture and where we are at as a company. It has valuable information that we can take and break into individual work items and complete. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** There aren't many downsides to using ThreatStack. We have been very fortunate to have them as a true security partner to help us protect our environment and business. We've had a few minor issues with a few version of their agents causing some networking issues on our servers. This issue was mainly due to us using an older version of their agent. They already had a fix in place before we experienced the problem. **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** If you are looking to increase the security of your cloud infrastructure and can't afford to staff an entire security team ThreatStack can help you! Starting security early in any SaaS based platform is critical and ThreatStack can help you to do that. Then as your business scales you can add necessary in-house security engineers to further partner with and utilize the ThreatStack software. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Intrusion detection, host vulnerability and monitoring as well as gaining insight from their security professionals. We have been able to identify issues and solutions to those issues by utilizing the ThreatStack product. Without it we may never have known we had vulnerabilities in our systems. ### 18. Security Kaizen **Rating:** 5.0/5.0 stars **Reviewed by:** Matthew S. | Mid-Market (51-1000 emp.) **Reviewed Date:** December 02, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Utilizing the service we have been able to incrementally tune and enhance insights using full stack observability. Although we don't always like what we find, we always strive to use the insights to improve our security posture one risk at a time. Gradually we are learning more about the operational behaviors and this more intimate understanding of how engineers get their job done helps us empathize with our colleagues and gradually raise the tide of security culture. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** I do wish that we had coverage of network devices, embedded linux, other appliances, etc. Without this coverage we have a full stack view in our AWS environments, but not full environment view when we consider other clouds; which means I have to stitch together other tools, dashboards, and processes for a complete picture. **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** Consider your primary hyper-scale cloud, and development languages to ensure you get the observability you want. Then evaluate up-stream and down-stream processes that may be impacted (compute image creation, code deployment, SOC/NOC response). Have a plan to modify them to ensure you get the full value of the tooling and services. If you do these things; I think you'll be a very satisfied client. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** We have identified several mis-configurations such as internet exposed ports for devices in private cloud, services running with excess permissions, and devices heading toward EOL. All these insights help us reinforce our understanding of the environment, improve cyber hygiene, and in some cases aren't immediately surfaced through other existing processes. ### 19. Helpful Insights for a Wide Variety of Servers **Rating:** 5.0/5.0 stars **Reviewed by:** Dean D. | Small-Business (50 or fewer emp.) **Reviewed Date:** December 01, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Threat Stack provides us with a categorization of alerts so that we know whether something is flagged as a CVE concern or a SOC2 concern. From there we can quickly identify what is the highest priority and address it appropriately. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Threat Stack is very thorough in its analysis, and can often alert on items that I might consider a "false positive" for a various reasons. It takes some time to mark those alerts appropriately initially, but once configured correctly it is a powerful platform. **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** Threat Stack allowed us to quickly install agents across all of our different types of servers in multiple cloud providers with ease. We then immediately started seeing actionable items come into the platform for us to address. If you're willing to put in the time to modify the rule sets (an easy process) then this is a great product for security & compliance. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** We're identifying any potential vulnerabilities on both our servers and our application code, using their agent & micro-agent respectively. We're able to catch items in our Staging environments before they are published to Production. ### 20. Threat Stack continues to be a cloud security leader and innovator **Rating:** 5.0/5.0 stars **Reviewed by:** Lewis H. | Mid-Market (51-1000 emp.) **Reviewed Date:** December 02, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Threat Stack provides us with a top notch compliance and security solution, all at an high level of quality and scale. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** In truth, I cannot think of any real dislikes. The Threat Stack team is consistently working to meet our requirements, while also anticipating new needs. **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** Take a close look at the complete offering of services, as I have not found any other companies that offer the package of security services we have at this cost point. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Through our partnership and collaboration with Threat Stack, we are able to better protect our more than 4000 customers and clients. Threat Stack's offerings also simplifies our ability to meet the demands of multiple compliance regulations. As well, the combination of tools and services gives us the ability to investigate and resolve issues at a magnitude that a team our size would not otherwise be able to accomplish. ### 21. Threatstack is an integral component of our Security Operations. Great product, great support. **Rating:** 4.0/5.0 stars **Reviewed by:** Steven W. | CISO and VP of IT Infrastructure, Mid-Market (51-1000 emp.) **Reviewed Date:** January 21, 2021 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The ability to monitor your cloud environment combined with per-host monitoring provides good overall coverage of potential threats and software vulnerabilities. While ThreatML (Machine Learning) is in a nascent state, I believe ThreatStack will continue to improve its use of ML over time. It is fairly easy to tune alerting to your environment, and Threatstack support is very helpful when it comes to working with rule sets and suppressions. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** I would like to see better exportable reporting for Audits. Some alerts are not actionable or cannot be suppressed. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** We were able to use Threatstack to provide evidence to our Auditors and Assessors to successfully become SOC and HITRUST certified. ### 22. It has most the config security check parameters in place for SOC audit **Rating:** 4.5/5.0 stars **Reviewed by:** Kapali D. | Small-Business (50 or fewer emp.) **Reviewed Date:** October 14, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The best part is that with less effort you can implement in any platform (cloud or on-premise). with the most supported Linux distributions. Its support to Docker & Kubernetes also. And also provides an easy interface for administration. It currently integrated into the app-sec for latest technologies ruby , python & also node js. Many more to go with app-sec monitoring for application security. It has clear documentation for automation for ts agent implementation through ansible or with a script with . which documentation is available in their git hub. I did like the quick support in all hurdle times. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Nothing more. wanted to explore threat stack more in app-sec monitoring & integrate all the languages which are most latest technologies. **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** Best product with lots of features available & upcoming. Best suits for current industries **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** This was helpful for our SOC audit on AWS cloud & on-premises also currently using it for our config audits & security monitoring ### 23. Excellent product and outstanding technical account support **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Mid-Market (51-1000 emp.) **Reviewed Date:** December 22, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The product has been excellent and provides us with great insight to the vulnerabilities, exploits and misconfigurations within our environment. The default rule sets have worked well out of the box both for our AWS environment and our Kubernetes environment. One of the top aspects for our team has been our interactions with our customer support team. They provide actionable items each meeting and clearly have a strong grasp of our environment. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The UI can feel a little clunky at times. It would be nice if server vulnerabilities found would link to remediation steps within the console without having to go look through the NIST site, possibly even tie directly into a JIRA ticket. There are some other quality of life improvements but for it's core functionality we are very happy with the product as a team. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Real time monitoring of our production systems. Very helpful for our auditing processes and ensuring we can complete the necessary actions for our HITRUST certification. ### 24. Excellent Security Oversight and Customer Support **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Primary/Secondary Education | Mid-Market (51-1000 emp.) **Reviewed Date:** December 09, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Threat Stack's Security Oversight, Insight, and Customer Support teams are top-tier. They are responsive, engaging, and coordinated on all fronts. I sleep with confidence that the data reported from our deployed agents (as well as our audit logs in AWS) are being effectively monitored by capable experts around the clock. Having an external team we can depend on for the triaging and tuning of alerts is particularly valuable for a small team like the one I am a part of. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The Threat Stack platform lacks some "quality-of-life" features that I would like to see. More customizable Slack integration options and better workflows for acknowledging/dismissing alerts are at the top of my list. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Real-time security monitoring of our Production AWS systems - both at the account and instance levels. Threat Stack has helped us strengthen our security posture and provides us with a strong foundation as we continue to invest in the protection of our platforms and users. ### 25. A Fantastic Security Observability Suite **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** December 02, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** ThreatStack has made it incredibly easy for my team to quickly identify security vulnerabilities, keep track of any unwanted accesssion, and enforce compliance across our entire platform. Installing and configuring it on our machines is super painless to automate, it integrates easily with AWS and Slack, making sure that setup is easy and alerts are raised as soon as problems are found. Luckily, it has kept us proactive rather than reactive with respect to security, so we are able to keep our maintenance backlog low and work on further improving our infrastructure. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** It would be nice to be able to distinguish which AWS account a server resides in from the Threatstack UI. Other than that minor gripe, it works pretty well for us. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** ThreatStack has enabled us to move legacy software to AWS faster than we ever anticipated while keeping us SOC2 compliant along the way. It has tremendously helped us to modernize our applications and infrastructure without needing to go out and figure out what is or isn't updated, what has potential CVEs, and where those problems reside. My team could not do the type of migrations they are doing without it. ### 26. Incredibly capable tool with an incredible depth and complexity in configuration. **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Marketing and Advertising | Mid-Market (51-1000 emp.) **Reviewed Date:** December 01, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Keeping on top of CVEs is fantastic, there's more open CVEs here than the Linux distro recognizes as needing to be patched. This is a very real picture of exactly how things are. As we've gone along in using Threatstack we're now moving to AWS and having Threatstack deployed there from the very beginning has been useful. The rulesets are also incredibly useful and the ability to configure custom rules and exceptions is a strength. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The complexity around hosts and ports and appropriately configuring everything to accept some things but not others. Custom rules are very powerful but holy cow it's tedious and feels as though one should be taking a fine grained approach but being a threat stack configuration expert is not a major part of the job. **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** This is a solution that is necessary for any SaaS company, but be careful about custom rules! **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Our company is about to enter into SOC2 auditing. Prior to having Threatstack we were taking the approach of being reactive to security problems and doing our best to stay on top of things we were aware of. Now that we have Threatstack, we are no longer being as reactive and have begun to be proactive. ### 27. Pretty good protection out of the box, easy to set up **Rating:** 4.5/5.0 stars **Reviewed by:** Patrick K. | Mid-Market (51-1000 emp.) **Reviewed Date:** October 21, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Setup was very easy (just install an agent on all the instances, and connect cloudtrail, and you start getting a pretty good idea of what is going on in your system. The default alerts are easy to set up, and give you a good starting point. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** You will definitely need to tweak the alerts out of the box, or you will get too many false-positives. The process for this is not too cumbersome, though. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** We get insight into kernel activity that is unexpected, as well as vulnerable OS packages that need to be addressed. The AWS integration also alerts on things that are not configured properly, though this functionality is duplicated by many other tools. ### 28. Threat Stack gets things done and is very responsive **Rating:** 4.5/5.0 stars **Reviewed by:** Norman C. | Mid-Market (51-1000 emp.) **Reviewed Date:** October 14, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** I like that we have the option to range between full control and hands-off. If we wanted to step back and let them handle all the monitoring and interpretation, that's an option. If we wanted to do it all and not have any suggestions, that's also fine. We're in between the ranges, but as things get busier I know that I can let them handle the day to day monitoring and will alert me if there's really suspicious stuff. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Some of the alerts were noisy before they suggested suppression rules. It's easy to get lost in all the features, and I bet we're still not making full use of everything. They've been good at reducing the amount of effort it takes though. I can see that not having an idea what to do could be confusing. **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** Make heavy use of the integrations and customer success team! Let them do the heavy lifting of suppression. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** It's nice to have that SIEM and show our clients that we're taking it seriously. It's great to know that our overworked selves are not the only ones watching what's happening. If something happens we will know about it. We're also starting to use the application security piece, so we'll see how that goes too. ### 29. Security Engineer Perspective **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Insurance | Small-Business (50 or fewer emp.) **Reviewed Date:** December 07, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** I like how simple it is to get up and running. It's great to setup and not have to worry about a complicated configuration process. There is a base set of rules already created and it is fairly simple to implement new rules for instance and Cloudtrail monitoring. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Lack of feature set and log retention. Threatstack is great at having a baseline checks and monitors, but lacks some of the more advanced features. While they claim to have intelligence, there is no way for a user of the platform to view any types of intelligence. Rule creation is a bit tricky when you get into suppressions, there is no way to test a rule in combination with suppressions, you have to test each piece individually and hope it works all together. For the price point, Threatstack only keeps 3 days of logs which is completely useless and you must have a SIEM to forward the logs to in order to keep any sort of record of what is happening on your servers. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Threatstack solves the problem of having AV on our servers and monitoring of our Cloudtrail events. It also gives us the peace of mind that we have a reliable tool in our arsenal to help monitor our infrastructure. ### 30. Responsive security services **Rating:** 5.0/5.0 stars **Reviewed by:** James L. | CIO, Small-Business (50 or fewer emp.) **Reviewed Date:** December 07, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Threat Stack's 24/7 SOC, monthly vulnerability and alert analysis, tuning to reduce noise, compliance mapping, and responsive support provide a very cost effective package of security monitoring services. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** I have no complaints after a year of use. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** We wanted 24/7 eyes on our systems, advice on improving our security profile, filtering of vulnerability and alerts to provide perspective, and guidance for constant improvement. ### 31. Great visibility out of the box **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Internet | Mid-Market (51-1000 emp.) **Reviewed Date:** December 09, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** It's very easy to deploy. We had difficulties finding an agent that is low overhead and can run in containers and ThreatStack agent runs on our Container-based OS perfectly and provides excellent visibility into Audit events in the system. The rules are categorized into areas to help with Compliance (SOC2, ISO27k, HIPAA, PCI) and there's Configuration Audit option available. ThreatStack SOC oversight helps to filter out the noise and escalate actionable events. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** It takes time to tweak the alert rules and suppress noisy false positives. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Compliance and monitoring. ### 32. ThreatStack - HIDS Solution **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Health, Wellness and Fitness | Enterprise (> 1000 emp.) **Reviewed Date:** December 07, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The way we can write rules and suppressions. Fits to custom needs. The default rule set helps in customizing them. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Could do better with UI to improve the usability of the tool specially with investigation of alerts and events. **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** Definitely easy to setup and use if you are administering it. It can get little tricky while investigations on events initially but once you get used to it, you should be fine. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** We are using ThreatStack as a Host based IDS solution for our compliance environment(PCI). We can tune the monitoring rules as per our needs and grant exceptions. ### 33. Helpful and Comprehensive, but Sometimes Confusing **Rating:** 3.0/5.0 stars **Reviewed by:** Verified User in Internet | Mid-Market (51-1000 emp.) **Reviewed Date:** October 13, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Account managers are highly responsive and security analysts will provide comprehensive analysis of security alerts on request. The Oversight program does remove significant burden from our ops team. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Actually configuring alerts, suppressions and view logs on your own is confusing and not very developer friendly. This issue is avoided if you sign up for one of their managed plans. **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** Be prepared to use their managed plan. Managed things yourself is hard because they have poor documentation and the interface is not developer friendly or intuitive. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Allowed our company to continue scaling without investing in a security team at this time. Helps us meet compliance requirements. ### 34. Low Maintenance - High Impact - Sleep easy **Rating:** 5.0/5.0 stars **Reviewed by:** Levi H. | Mid-Market (51-1000 emp.) **Reviewed Date:** October 14, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Having an actual person looking into our issues and reaching out to us (normally at the same time we are already looking into it) **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** have had some issues in the past with their older agent causing issues on our linux boxes (resolved now) **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Monitoring our aws infrastructure and security on ec2 instances. Benefits is not hiring a full time person to do that job ### 35. Threat Stack came a long way **Rating:** 4.5/5.0 stars **Reviewed by:** Anton Z. | IT Manager, Mid-Market (51-1000 emp.) **Reviewed Date:** October 13, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Ease of deployment and amofgdfg unt/quality of data being returned by TS agent. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Dashboards is a weak point, while collecting a lot of data, it is not easy to visualize that data. **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** Good product, request a demo to ensure reporting and dashboarding meet your needs. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** IDS - we use TS to gain insight and visibility into our system and systems network elements. ### 36. Excellent choice for AWS security **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Airlines/Aviation | Mid-Market (51-1000 emp.) **Reviewed Date:** October 13, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Threat Stack monitors our security 24/7 freeing our staff to focus on their core competencies. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Threat Stack's vulnerability information relies on software version numbers. This provides an inaccurate assessment for most Linux systems. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Monitoring our security logs in AWS, providing system-level security monitoring, monitoring our AWS configuration for security issues. Threat Stack puts all the info in one place and makes it much easier to interpret the massive stream of data. The customizable rules also allow us to create event alerts for just about anything that happens in our cloud infrastructure. ### 37. Solid platform for aws threat detection, lacking features for other clouds **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** October 16, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** There services team is amazing and really make working with the entire a platform a joy. They are like a extension of our devsec ops team. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The biggest issue we have is that they are primarily built around aws workloads. We have workloads that run in all three clouds and their isn't feature parody between clouds **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** Seriously consider leveraging the threatstack services in addition to their software, there service team is amazing. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** We use threatstack as a solution for a lot of our soc2 controls ### 38. Great visibility into the system events happening in our servers' OS **Rating:** 4.5/5.0 stars **Reviewed by:** Derek G. | VP Systems Architecture, Mid-Market (51-1000 emp.) **Reviewed Date:** December 01, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** All syscalls are collected to be audited and alerted upon. Very easy to setup, simply install agents on your server. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Suppresion rules are not super flexible to effectively get rid of false positive alerts. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** We use Threatstack for realtime monitoring of our servers against potential malicious activity. Threatstack also provides an auditing platform for us to check up on infrastructure changes. ### 39. A Reassuring Watchful Eye **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Legal Services | Mid-Market (51-1000 emp.) **Reviewed Date:** October 14, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The platform is always there monitoring our configuration and events without much overhead, alerting us to crucial items quickly **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** The interface can sometimes be a little overwhelming in places **Recommendations to others considering F5 Distributed Cloud App Infrastructure Protection (AIP):** Using Threatstack will help ensure you're capturing the cloud events that matter and also give you the reassurance that if someone makes a mistake with a config it will be flagged up quickly. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** We're able to identify events that matter and easily escalate them to the right team ### 40. Threat Stack is a great solution **Rating:** 5.0/5.0 stars **Reviewed by:** Jonni L. | Mid-Market (51-1000 emp.) **Reviewed Date:** October 14, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Extensive coverage for alerts and threats **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Difficult to setup and onboard during initial phase **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Compliance with our security certifications and a threat "insurance policy" ### 41. Valuable insight into threat exposure **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** December 04, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** real-time monitoring of system processes and alerting of security related events simple installation and configuration management **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** search facility for system events lacks flexibility **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Ensure compliance to security principles Monitoring and breach detection of server infrastructure ### 42. Threat Stack for Complaince **Rating:** 3.5/5.0 stars **Reviewed by:** Dan Q. | Mid-Market (51-1000 emp.) **Reviewed Date:** November 30, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Config Audit is great for rules testing, great for compliance. Client is easy to install. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Host CVE vulnerabilties arent actionable. Some not patched, just declares they exist. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Compliance Auditing. Some findings we were able to remediate. ### 43. very good **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** October 14, 2020 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Ease of configuration Ease of management (UI) The wide range of security concerns that are covered **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Its naturally a complex tool, but some improvements on the UI would be good **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Managing AWS security concerns is my main objective. ### 44. Great way to automate manual security and compliance processes **Rating:** 4.5/5.0 stars **Reviewed by:** Harrison H. | CTO, Small-Business (50 or fewer emp.) **Reviewed Date:** March 22, 2018 **What do you like best about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Threat Stack helps us automate our general security and auditing process, but the best part is eliminating manual evidence collection for compliance. **What do you dislike about F5 Distributed Cloud App Infrastructure Protection (AIP)?** Not all of the AWS services we use are covered comprehensively. **What problems is F5 Distributed Cloud App Infrastructure Protection (AIP) solving and how is that benefiting you?** Using Threat Stack to improve overall security posture and specifically meet certain compliance needs. ## F5 Distributed Cloud App Infrastructure Protection (AIP) Discussions - [Is ThreatStack an ids?](https://www.g2.com/discussions/is-threatstack-an-ids) - [What does a Cspm do?](https://www.g2.com/discussions/what-does-a-cspm-do) - [Is Threat stack a SIEM?](https://www.g2.com/discussions/is-threat-stack-a-siem) - [What does Threat Stack do?](https://www.g2.com/discussions/what-does-threat-stack-do) - [View F5 Distributed Cloud App Infrastructure Protection (AIP) pricing details and edition comparison](https://www.g2.com/products/f5-distributed-cloud-app-infrastructure-protection-aip/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-30+06%3A43%3A15+-0500&secure%5Bsession_id%5D=7d7c6368-a257-469f-811e-ff812ede78ed&secure%5Btoken%5D=38a3e2c30773cc9ad7a763141e67eff9a3e6bc059a9476e112486fc6a61229e9&format=llm_user) ## F5 Distributed Cloud App Infrastructure Protection (AIP) Features **Management** - Dashboards and Reports - Administration Console **Administration** - Security Auditing - Configuration Management **Security** - Compliance Monitoring - Anomoly Detection - Cloud Gap Analytics **Activity Monitoring** - API Monitoring - Activity Monitoring **Configuration** - Configuration Monitoring - Unified Policy Management - API / Integrations **Cloud Visibility** - Cloud Gap Analytics **Operations** - Logging and Reporting - API / Integrations **Monitoring** - Continuous Image Assurance - Behavior Monitoring - Observability **Compliance** - Sensitive Data Compliance **Security** - Compliance Monitoring - Risk Analysis - Reporting **Security** - Security Auditing **Security Controls ** - Anomaly Detection - Security Auditing - Cloud Gap Analytics **Protection** - Dynamic Image Scanning - Runtime Protection - Workload Protection - Network Segmentation **Administration** - Auditing **Administration** - Security Automation - Security Integration - Multicloud Visibility **Vulnerability Management** - Threat Hunting - Vulnerability Scanning - Vulnerability Intelligence - Risk-Prioritization **Identity** - User Analytics **Agentic AI - Cloud Security Monitoring and Analytics** - Autonomous Task Execution - Proactive Assistance - Decision Making ## Top F5 Distributed Cloud App Infrastructure Protection (AIP) Alternatives - [FortiCNAPP](https://www.g2.com/products/forticnapp/reviews) - 4.4/5.0 (383 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - 4.7/5.0 (788 reviews) - [Orca Security](https://www.g2.com/products/orca-security/reviews) - 4.6/5.0 (265 reviews)