Anonymous UserHead of Cyber Intelligence at a tech services company
Tim CraigForensic Lead, Global Security Fusion Center at a insurance company
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"They also provide some of the greatest notification capabilities. I put in a customer's company name and domain names, or sometimes I put in their IP addresses as a keyword. Once Sixgill collects information that includes those keywords, they then provide us email notifications. That means we can catch information related to our customers as soon as possible."
"To be diligent for the customer, we usually go into Cybersixgill Investigative Portal to analyze and search things. The solution tells us the reputation of cyber threat actors. So, if someone has a reputation of one, it is a really bad idea to care about what that person is saying. However, if you find someone with a reputation of nine, then there is a high probability that we need to address the problem. You can get information about these type of actors in Cybersixgill Investigative Portal. They have a huge collection, which is like having the rules/goals of the dark web and deep web without having to go there. Our analysts avoid going dark web because they have Cybersixgill Investigative Portal and can get the news from their browser, searching wherever they want."
"The solution’s approach of using limited open source intelligence and focusing, instead, on the Deep Web and Dark Web is what seals the deal. That is why I like them. I have other tools that I can aggregate all the open source intelligence from. I value Cybersixgill because it provides access to things that no one else does."
"The advanced analysis has made our security operations more efficient. It has also potentially given us quicker access to data that we might not have otherwise located."
"The automated static analysis of malware is the most valuable feature. Its detection abilities are very good. It hits all of the different platforms out there, platforms that see the items in the wild."
"Sixgill has strong capabilities based on search queries, but there is some difficulty in using Sixgill. Their querying is very powerful but it can be difficult. It's not hugely complex but you need some skill to use Sixgill querying."
"We need real-time updated information. If we could have this, it would be amazing. For example, if someone was posting something, then ten second later, it was on the platform. Sometimes, it takes a minute or hours right now, depending on the forum."
"Regarding their scraping abilities, things could be solidified. There are definitely improvements that could be made on the specificity for setting certain queries."
"The breadth of access to data is good, but there are gaps. More data would be my suggestion because the platform is good and I have no complaints about the system. I think it is just a case of always trying to get more data sources."
"I would like to see if we could do a little bit more of bulk uploading of hash sets. Right now, I can only do them individually."
"The pricing is cheap compared with Recorded Future. Sixgill's cost-effectiveness is very good."
"Sometimes, Cybersixgill Investigative Portal is cheaper than its competitors."
"The pricing and licensing are good. It is expensive for us because the US dollar is quite strong compared to our dollar. Otherwise, it is quite reasonable for what it is. All the tools in the market are around the same price from my experience."
Earn 20 points
Sixgill’s fully automated threat intelligence solutions help organizations fight cyber crime, detect phishing, data leaks, fraud and vulnerabilities as well as amplify incident response in real-time.
Sixgill Investigative Portal empowers security teams with contextual and actionable alerts, along with the ability to conduct real-time, covert investigations:
ReversingLabs delivers advanced malware analysis and insights into destructive files and objects that address the the latest attacks, advanced persistent threats and polymorphic malware. These threats routinely defeat current anti-virus scanner, white list, behavioral and sandbox technology thus requiring tedious, manual analysis by highly skilled experts
Through its automated static analysis and file reputation platform, it delivers the fastest and most accurate insights in the industry, finding the hidden objects that are armed to destroy enterprise business value.
The hybrid cloud platform provides connectors that integrate with existing security investments such as EDR, email gateways, IDS, SIEM, threat intelligence platforms and sandboxes, reducing incident response time for SOC analysts, while providing high priority and detailed threat information for hunters to take quick action through advanced search and YARA rule tooling.
ReversingLabs has become an essential threat solution across the most advanced security companies in the industry, while supporting all industries searching for a better way to get at the root of the web, mobile, email, cloud, app development and supply chain threat problem, of which files and objects have become major risk contributors.
Cybersixgill Investigative Portal is ranked 5th in Threat Intelligence Platforms with 4 reviews while ReversingLabs Titanium Platform is ranked 2nd in Threat Intelligence Platforms with 1 review. Cybersixgill Investigative Portal is rated 8.8, while ReversingLabs Titanium Platform is rated 10.0. The top reviewer of Cybersixgill Investigative Portal writes "Provides early detection of imminent attacks, and speeds up addressing of vulnerabilities internally because it makes them real". On the other hand, the top reviewer of ReversingLabs Titanium Platform writes "Very good malware and goodware repository and enables us to look more deeply at indicators of compromise". Cybersixgill Investigative Portal is most compared with Recorded Future, Digital Shadows, IntSights and Flashpoint Intelligence Platform, whereas ReversingLabs Titanium Platform is most compared with VirusTotal, CrowdStrike Falcon, Cisco Threat Grid, ThreatQ and LogRhythm NextGen SIEM.
See our list of best Threat Intelligence Platforms vendors.
We monitor all Threat Intelligence Platforms reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.