Good reporting and pretty stable but needs to be simpler to use
What is our primary use case?
Initially, the solution was assigned to just extract the reports we needed. We just integrated our threat feed URLs to the ThreatQ platform. We could create a report which was like a categorized report. We deployed these solutions for other customers. We had five or six customers for which we just deployed five to six VMs of ThreatQ on our customer devices and with our selections for the threat intelligence feed. Therefore, we primarily use the solution to provide threat intelligence to our clients.
Pros and Cons
"The reporting services are great. With reporting services, if you have customers that just visit a URL you can see the result - including why it's blocked and how and how the URL was first recognized as malicious."
"The solution should be simpler for the end-user in terms of reporting and navigating the product."
What other advice do I have?
If we're talking about user experience, from the customer experience point of view, the UI should be simpler. It should be diagrammatically similar to Tines, which is very user friendly. Everything from reporting to event details could be simpler. The deployment should be lighter as well. A new user should know these two aspects of the solution before they consider implementing it. Overall, I'd rate the solution seven out of ten.