Compare Palo Alto Networks Cortex XSOAR vs. ThreatQ

Cancel
You must select at least 2 products to compare!
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"The most valuable features are simplicity and ease of integration.""The automation part and the playbook creation part are awesome. The way it is responding to the customers and incidents is also very good. In the SOC environment, I guess it will carry out around 50% of the work.""The pricing is very good.""The automation is excellent.""The most valuable features are the orchestration because of the way in which it coordinates the loss from all the devices and it provides us with a high-level overview of the critical log information."

More Palo Alto Networks Cortex XSOAR Pros »

"The reporting services are great. With reporting services, if you have customers that just visit a URL you can see the result - including why it's blocked and how and how the URL was first recognized as malicious."

More ThreatQ Pros »

Cons
"Implementing this solution requires a lot of involvement from the vendor and it should be made easier for the partners.""For building automation, there is not a lot of good documentation. The documentation is there, but it is not very good from my perspective. There should be an improvement in this area. I don't see issues with anything else. In terms of new features, I have heard that other products have EBA functionality. It would be good if this functionality could be added.""The user interface could be a bit better.""When Palo Alto bought the solution, the pricing increased by 1.5 times. There's been a 50% increase, which is a lot.""There should be an on-premise version available for customers to have different choices."

More Palo Alto Networks Cortex XSOAR Cons »

"The solution should be simpler for the end-user in terms of reporting and navigating the product."

More ThreatQ Cons »

Pricing and Cost Advice
"There is a perception that it is priced very high compared to other solutions.""From the cost perspective, I have heard that its price is a bit high as compared to other similar products.""There is a yearly license required for this solution and it is expensive."

More Palo Alto Networks Cortex XSOAR Pricing and Cost Advice »

Information Not Available
report
Use our free recommendation engine to learn which Security Orchestration Automation and Response (SOAR) solutions are best for your needs.
512,221 professionals have used our research since 2012.
Questions from the Community
Top Answer: I think Swimlane is a better cost. It's small and doesn't focus on only integrating with it's own products like other XSoar competitors. 
Top Answer: The licensing is paid on a yearly basis. It is quite expensive. When Palo Alto bought the solution, the pricing increased by 1.5 times. There's been a 50% increase, which is a lot.
Top Answer: The reporting services are great. With reporting services, if you have customers that just visit a URL you can see the result - including why it's blocked and how and how the URL was first recognized… more »
Top Answer: I'm not sure if the solution is currently missing any features. I haven't noticed anything that could be added. The biggest challenge is the deployment. The installation of the ThreatQ only takes the… more »
Top Answer: Initially, the solution was assigned to just extract the reports we needed. We just integrated our threat feed URLs to the ThreatQ platform. We could create a report which was like a categorized… more »
Ranking
Views
10,758
Comparisons
8,583
Reviews
3
Average Words per Review
459
Rating
8.3
Views
1,337
Comparisons
956
Reviews
1
Average Words per Review
767
Rating
7.0
Popular Comparisons
Also Known As
Demisto Enterprise, Cortex XSOAR, Demisto
Learn More
Overview

Demisto Enterprise delivers a complete solution that helps Tier-1 through Tier-3 analysts and SOC managers to optimize the entire incident life cycle while auto documenting and journaling all the evidence. More than 100+ integrations enable security orchestration workflows for incident management and other critical security operation tasks.

ThreatQ is a Threat Intelligence Platform (TIP) designed to enable threat operations and management. ThreatQ is the only solution with an integrated Threat Library, Adaptive Workbench and Open Exchange that help you to act upon the most relevant threats facing your organization and to get more out of your existing security infrastructure.

Offer
Learn more about Palo Alto Networks Cortex XSOAR
Learn more about ThreatQ
Sample Customers
Cellcom Israel, Blue Cross and Blue Shield of Kansas City, esri, Cylance, Flatiron Health, Veeva, ADT Cybersecurity
Radar, Bitdefender, Crowdstrike, FireEye, IBM Security
Top Industries
VISITORS READING REVIEWS
Computer Software Company31%
Comms Service Provider18%
Financial Services Firm7%
Media Company6%
VISITORS READING REVIEWS
Computer Software Company29%
Comms Service Provider17%
Financial Services Firm9%
Manufacturing Company8%
Find out what your peers are saying about Critical Start, Splunk, Palo Alto Networks and others in Security Orchestration Automation and Response (SOAR). Updated: June 2021.
512,221 professionals have used our research since 2012.

Palo Alto Networks Cortex XSOAR is ranked 3rd in Security Orchestration Automation and Response (SOAR) with 5 reviews while ThreatQ is ranked 11th in Security Orchestration Automation and Response (SOAR) with 1 review. Palo Alto Networks Cortex XSOAR is rated 8.2, while ThreatQ is rated 7.0. The top reviewer of Palo Alto Networks Cortex XSOAR writes "User-friendly and robust with good technical support". On the other hand, the top reviewer of ThreatQ writes "Good reporting and pretty stable but needs to be simpler to use". Palo Alto Networks Cortex XSOAR is most compared with Splunk Phantom, Fortinet FortiSOAR, IBM Resilient, ServiceNow Security Operations and Siemplify, whereas ThreatQ is most compared with ThreatConnect, Recorded Future, ReversingLabs Titanium Platform, IntSights and ThreatStream.

See our list of best Security Orchestration Automation and Response (SOAR) vendors.

We monitor all Security Orchestration Automation and Response (SOAR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.