We performed a comparison between Anomali ThreatStream and IBM Security QRadar based on real PeerSpot user reviews.
Find out what your peers are saying about Recorded Future, Check Point Software Technologies, Microsoft and others in Threat Intelligence Platforms."The feature I have found most valuable is credential monitoring. This feature is easy and quick."
"Overall a great solution."
"It does good correlation for events. It does good general analysis, and it has good apps as well."
"It integrates very easily with other solutions. The solution is flexible. We can add anything to it, as it is a good companion to other tools."
"IBM QRadar has improved my organization by introducing many functions. It collects logs from all of our systems in the organization and has functioned very well. It alerts and correlates the aggregate events or offenses we receive through all the applications we use."
"The feature that I have found most valuable is how it monitors the real network. That is its leading security feature."
"The correlation and the parsing are important features, since it is very important for a SIEM to have a good scalability and performance."
"It's a state-of-the-art product for security information and event management (SIEM)."
"It has a logical, user-friendly GUI."
"Less code in integration would be nice when building blocks."
"I'm not sure about the stability just yet. We've observed a few issues and we raised a supporting ticket for it."
"They should provide more manual examples online so that I can learn it myself."
"Certain updates—especially when using Azure—don't apply directly. Our engineering team must invest additional effort to implement these updates. However, the tool's cloud-based version poses no issues. However, upgrading the product can sometimes be challenging for on-premises instances."
"We need more features in order to create rules to detect or to meet some requirements for other areas, for example, catching the event from other authentication tools."
"The only challenge with products like IBM is the EPS. You just have to be really on the events per second, as that's where the cost factor becomes a huge issue."
"There could be improvements made to the UI, the user interface. Though the newer version, 7.3.2, might already have this improvement in place."
"The dashboard and reports are not user-friendly or efficient so are of little help with threat hunting activity."
"In a future release, the solution could provide malware analysis."
Anomali ThreatStream is ranked 5th in Threat Intelligence Platforms with 1 review while IBM Security QRadar is ranked 4th in Security Information and Event Management (SIEM) with 198 reviews. Anomali ThreatStream is rated 7.0, while IBM Security QRadar is rated 8.0. The top reviewer of Anomali ThreatStream writes "Easy and quick credential monitoring; tech support could be improved". On the other hand, the top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". Anomali ThreatStream is most compared with Recorded Future, ThreatConnect Threat Intelligence Platform (TIP), ThreatQ, Splunk Enterprise Security and Group-IB Threat Intelligence, whereas IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Elastic Security.
We monitor all Threat Intelligence Platforms reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.