Compare DFLabs IncMan SOAR vs. ThreatConnect

You must select at least 2 products to compare!
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

"The vendors themselves will actually help with any customizations a client may require"

More DFLabs IncMan SOAR Pros »

"The most valuable features are ease of use and the ability to customize it.""ThreatConnect has a highly user-friendly interface."

More ThreatConnect Pros »

"The support is not 24/7."

More DFLabs IncMan SOAR Cons »

"Integration is an area that could use some improvement.""They should make it a little bit easier to generate events and share them with the community"

More ThreatConnect Cons »

Pricing and Cost Advice
Information Not Available
"The price of this product is in the mid-range, not too expensive, nor inexpensive.""The price could be better."

More ThreatConnect Pricing and Cost Advice »

Use our free recommendation engine to learn which Security Orchestration Automation and Response (SOAR) solutions are best for your needs.
510,530 professionals have used our research since 2012.
Questions from the Community
Top Answer: The vendors themselves will actually help with any customizations a client may require
Top Answer: We are the distributor for DFLabs.
Top Answer: If your organization has its own specific workflow and a set of procedures to follow when a specific incident occurs, then I would recommend this solution. It can be very specific when issuing… more »
Top Answer: ThreatConnect has a highly user-friendly interface.
Top Answer: The price could be better. ThreatConnect is very expensive for a single user, but it maybe affordable for companies.
Top Answer: They should make it a little bit easier to generate events and share them with the community. Right now, it's a little complex to share with them or to download your events in a report. The price… more »
Average Words per Review
Average Words per Review
Popular Comparisons
Also Known As
DFLabs IncMan Incident Response
Learn More

DFLabs' Security Orchestration, Automation and Response (SOAR) platform, IncMan SOAR, is designed for SOCs, CSIRTs and MSSPs to automate, orchestrate and measure security operations and incident response processes and tasks, all from within one single, intuitive platform. By integrating security tools, fusing intelligence, sharing knowledge and implementing seamless workflows, IncMan SOAR enables every security incident to be detected, responded to, and remediated in the fastest possible time frame.

DFLabs IncMan SOAR is the only Security Orchestration, Automation and Response (SOAR) platform capable of full incident lifecycle automation, that includes built-in, automated threat intelligence gathering, risk assessment, triage and notification, context enrichment, hunting and investigating, threat containment and more. This feature rich, unique and scalable SOAR platform provides context to security incidents, automates actions, orchestrates response to activities, while enabling full reporting and measurement functionality across all stakeholders.

DFLabs covers the entire spectrum of security orchestration, automation and response components as outlined by Gartner, with a unique combination of features and capabilities, driven through continuous improvement and innovation. IncMan SOAR is the only platform to offer full incident response lifecycle management with machine learning and threat hunting. Acting as a force multiplier, it enables security teams to do more with less, empowering security analysts, while ensuring organizations stay one step ahead of any potential threat.

Automate. Orchestrate. Measure.

IncMan SOAR provides three critical functions as an enabler to your security program. Automation and orchestration which in turn enables response, as well as measurement.


Augment analysts by automating common, repetitive and menial tasks driven by machine learning for faster response to all alerts.


Establish repeatable, enforceable, measurable and effective incident response workflows, orchestrating your security tool set into one seamless response process.


Measure, benchmark and optimize security operations and incident response activities and performance from one intuitive and collaborative platform.

Seamlessly Integrate and Orchestrate Your Tools Together as One.

Improve efficiencies by enabling your security analysts to access and manage all tools, technologies and processes from one intuitive platform. IncMan SOAR supports hundreds of 3rd party security technologies via QIC, API, CEF, Syslog and Email, with a constantly growing list of certified bidirectional integrations and Open Integration Framework for custom integrations.

Dramatically reduce the mean time to detection, response and remediation of all potential security incidents, ensuring no alert goes untouched.

See IncMan SOAR in Action.

The ThreatConnect Platform was designed to help you understand adversaries, automate workflows, and mitigate threats using threat intelligence. ThreatConnect offers a suite of products built on platform of analytics and automation.

Learn more about DFLabs IncMan SOAR
Learn more about ThreatConnect
Sample Customers
University of Advancing Technology, Cybersecurity Ventures
GoDaddy, BWM Outcomes, LLC, ND-ISAC, Zurich NA, Raytheon
Top Industries
Comms Service Provider33%
Computer Software Company28%
Financial Services Firm9%
Manufacturing Company6%
Computer Software Company28%
Comms Service Provider17%
Financial Services Firm10%
Find out what your peers are saying about Critical Start, Splunk, Palo Alto Networks and others in Security Orchestration Automation and Response (SOAR). Updated: June 2021.
510,530 professionals have used our research since 2012.

DFLabs IncMan SOAR is ranked 15th in Security Orchestration Automation and Response (SOAR) with 1 review while ThreatConnect is ranked 8th in Security Orchestration Automation and Response (SOAR) with 2 reviews. DFLabs IncMan SOAR is rated 0.0, while ThreatConnect is rated 8.6. The top reviewer of DFLabs IncMan SOAR writes "Protects an organization from the threat of a data breach or cyberattack". On the other hand, the top reviewer of ThreatConnect writes "Ease to use, customizable, and they have responsive and knowledgeable support". DFLabs IncMan SOAR is most compared with Palo Alto Networks Cortex XSOAR, Splunk Phantom, Siemplify and IBM Resilient, whereas ThreatConnect is most compared with Anomali Enterprise, ThreatQ, Recorded Future, Palo Alto Networks WildFire and Splunk Phantom.

See our list of best Security Orchestration Automation and Response (SOAR) vendors.

We monitor all Security Orchestration Automation and Response (SOAR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.