It's been two months since this profile received a new review

ThreatConnect TI Ops Reviews & Product Details

TI Ops is the threat intelligence platform built for operations, not just centralization. It ingests hundreds of internal and external sources, enriches them with AI, and aligns them to your intelligence requirements and MITRE ATT&CK gaps. Analysts can instantly operationalize insights across the SOC, IR, hunt, and vulnerability teams — no swivel-chairing required. When combined with Polarity and Risk Quantifier, TI Ops helps teams act on intelligence faster and focus on the threats that truly matter to the business.

Seller

ThreatConnect

Discussions

ThreatConnect TI Ops Community

Languages Supported

English

Overview by

Krista Perrotti

Top-Rated Alternatives

View All Alternatives

ThreatConnect TI Ops Integrations

(12)

Integration information sourced from real user reviews.

ThreatConnect TI Ops Media

ThreatConnect TI Ops Demo - Custom Dashboards

The ThreatConnect TI Ops Platform provides flexible and customizable dashboards to enable the availability of the right information when needed.

ThreatConnect TI Ops Demo - ATT&CK Visualizer

The ATT&CK Visualizer in the ThreatConnect TI Ops Platform enables analysts to visually see and understand attacker behaviors using the MITRE ATT&CK framework.

ThreatConnect TI Ops Demo - Threat Graph

The ThreatConnect TI Ops Platform provides interactive tools for analysts, like the Threat Graph, to explore and enrich their threat intel data, uncover new relationships, and to take action with just a couple of clicks.

ThreatConnect TI Ops Demo - Low-Code Automation

Automation is critical to operationalizing threat intel. The ThreatConnect TI Ops Platform provides Low-Code Automation to automate everything from simple tasks to complex playbooks.

ThreatConnect TI Ops Demo - Threat and Risk Informed Cyber Defense Powered by AI

Other TIPs just collect intelligence. ThreatConnect TI Ops transforms threat data into precise actions to power cyber defenses. TI Ops customers cut incident response from hours to minutes, reduce false positives by 63%, and transform threat intel from research into real-world defense. https:/...

ThreatConnect TI Ops Reviews (14)

G2 reviews are authentic and verified.

Here's how.

Eric B.

Security Engineer

Enterprise (> 1000 emp.)

6/9/2025

"The TIP is nice, the SOAR has become indispensable"

4.5/5

What do you like best about ThreatConnect TI Ops?

We use the TIP data to compare logs in our SIEM to hunt for threats and enrich other threats that we may come across. More significantly in the last bunch of years, they added SOAR capabilities that are improving. We use the SOAR to automate many of the first steps that our SOC would otherwise need to do manually. It has also allowed for fewer panes of glass or the SOC to look at things through. If there isn't already an app for integration with another vendor, the HTTP client has proven to be very flexible for creating those integrations with another product's API. Review collected by and hosted on G2.com.

What do you dislike about ThreatConnect TI Ops?

The UI could use improvements. There are some, such as the ability to work on a number of indicators showing up in an event from the one screen, that I've been asking for for years and still isn't there. Review collected by and hosted on G2.com.

Verified User in Computer & Network Security

Enterprise (> 1000 emp.)

6/3/2025

"A powerful and fully customizable Threat Intelligence Platform"

5/5

What do you like best about ThreatConnect TI Ops?

ThreatConnect TIP has an extensive Playbook & Custom APP capabilities. As they have an HTTP Client engine, you can integrate it with literally any system that supports RESTful APIs or TAXII servers (which is pretty much supported by all big solutions or security technologies). This means that you can, without any help, build your own playbook to integrate with any system within the organization. This allows for an incredible level of automation and customization for your specific use cases and needs. Review collected by and hosted on G2.com.

What do you dislike about ThreatConnect TI Ops?

At the initial stages of using the Platform, we struggled a little as creating efficient playbooks and apps is not an easy task. However, the ThreatConnect CSE has done an incredible job getting us accustomed to the platform. We also get a training bundle and access to ThreatConnect Learning platform with no added cost. Review collected by and hosted on G2.com.

Verified User in Information Technology and Services

Enterprise (> 1000 emp.)

8/1/2025

"One size fits all solution."

5/5

What do you like best about ThreatConnect TI Ops?

TC promotes cross-collaboration like any other TI solution due to the sheer amount of people involved in enriching and reporting indicators of compromise and the absolute vast amount of OSINT we get from it. This allows for accurate and efficient decision making when mitigation and prevention are priority. Review collected by and hosted on G2.com.

What do you dislike about ThreatConnect TI Ops?

The UX could use some polishing to make the flow of invesitgation more seamless. Review collected by and hosted on G2.com.

Justin A.

Principal Consultant

Small-Business (50 or fewer emp.)

8/4/2025

"Powerful Threat Intelligence Platform with Excellent Automation and Customization"

4/5

What do you like best about ThreatConnect TI Ops?

The no-code, drag-and-drop Playbook builder is excellent. We've automated things like enrichment (VirusTotal, DomainTools), sandbox submissions, and even screenshot capture of suspicious URLs. It's flexible and integrates well with other tools. Review collected by and hosted on G2.com.

What do you dislike about ThreatConnect TI Ops?

Some Marketplace apps and features can require additional licensing, which may be a blocker for smaller orgs. Review collected by and hosted on G2.com.

What problems is ThreatConnect TI Ops solving and how is that benefiting you?

In one of the consulting project, we evalaute it by automatically enriching and organizing data from different sources. We have also built custom automations (using their Playbooks) to handle tasks like checking indicators, gathering screenshots, and even alerting without manual work Review collected by and hosted on G2.com.

Aditya D.

Senior SOC Analyst

Enterprise (> 1000 emp.)

6/16/2025

"I love using Threat Connect its really easy to handle"

4.5/5

What do you like best about ThreatConnect TI Ops?

Our one of the client uses Threat connect for threat intellicence to block and protect the user playbooks is the best part. Review collected by and hosted on G2.com.

What do you dislike about ThreatConnect TI Ops?

I dont like some cabability while writing the TQL and API calling with other tools Review collected by and hosted on G2.com.

Sagar G.

Threat Hunter

Enterprise (> 1000 emp.)

3/3/2025

"Best experience I had with Threat connect Threat Intelligence Ops platform"

5/5

What do you like best about ThreatConnect TI Ops?

What I like the most about Threat Intelligence Ops platform that they provided different dashboards which help to prioritize threat so we can take best action. I used Ops platform frequently for day to day activity as a threat hunter must be work on recent threats and malwares, the platform are very easy to use and user friendly, implementation was easy, I have not done but got positive feedback from peers. I can connect with threat connect team to get help on particular issue I am facing with portal and team helps me with my issues. Review collected by and hosted on G2.com.

What do you dislike about ThreatConnect TI Ops?

There are no thing to dislike about Ops platform. Review collected by and hosted on G2.com.

Shubham K.

Threat Hunting and Incident Response

Enterprise (> 1000 emp.)

1/23/2025

"ThreatConnect | Threat Intelligence Ops Platform and Aggregator"

5/5

What do you like best about ThreatConnect TI Ops?

Easy Integration with multiple cyber security detection tools for early detection of threat using high fedelity threat intelligence.

seemless aggregation of IOCs from multiple sources and identification of high fedelity threat intelligence and threat actors most likely trageting perticular industry or platfomrs.

Feature helping in profiling threat actors. Review collected by and hosted on G2.com.

What do you dislike about ThreatConnect TI Ops?

Nothing as of now i remember perticualerly which i dislike. Review collected by and hosted on G2.com.

Verified User in Marketing and Advertising

Enterprise (> 1000 emp.)

1/22/2025

"All in one TIP solution"

5/5

What do you like best about ThreatConnect TI Ops?

The platform is beyond expectations, has a lot of inbuilt integrations, Threat feeds corelations, ease of implementation and provide a wonderful solution to respond to cyber threats. Review collected by and hosted on G2.com.

What do you dislike about ThreatConnect TI Ops?

Few minor bugs and sometimes the platform is a little hard to navigate Review collected by and hosted on G2.com.

Verified User in Education Management

Mid-Market (51-1000 emp.)

3/6/2025

"I try to use it in my dev environment"

4/5

What do you like best about ThreatConnect TI Ops?

Measure and demonstrate the value and impact of our program. Review collected by and hosted on G2.com.

What do you dislike about ThreatConnect TI Ops?

I am still learning about this product as a user. So far I find it very easy to use. Review collected by and hosted on G2.com.

Vijay Kumar T.

Deputy Manager

Information Technology and Services

Enterprise (> 1000 emp.)

1/2/2024

"Effective Cyber security platform"

4/5

What do you like best about ThreatConnect TI Ops?

good interface, provides much details in a user friendly language, easier to review the threat and take action Review collected by and hosted on G2.com.

What do you dislike about ThreatConnect TI Ops?

nothing much, just I feel that the reporting feature can be better Review collected by and hosted on G2.com.