IBM Security X-Force Threat Intelligence is a security solution that adds dynamic Internet threat data to the analytical capabilities of IBM QRadar Security Intelligence Platform.
IBM X-Force Exchange
IBM X-Force Exchange
IBM Security X-Force Threat Intelligence is a security solution that adds dynamic Internet threat data to the analytical capabilities of IBM QRadar Security Intelligence Platform.
9.0/10
(Expert Score)
★★★★★
Product is rated as #29 in category Threat Intelligence Software
Customer Reviews
IBM X-Force Exchange Reviews
Phani Teja V.
Advanced user of IBM X-Force Exchange★★★★★
What do you like best?
You can simply check threat intelligence as guest. No need to maintain and remember user ID or any other information. Most of the data which XForce returns is accurate. You can upload a file and check the risk as well. Most important is you can download it in STIX format. In IBM X Force we have a alertcon threat level which can help us for mostly all threat intelligence feeds. We also can manage dashboard which has all recent related threats and other information like early warning feed, Advanced threat protection feed. Malicious activity in 1 hr is the most helpful for the threat intelligence team in any organisation. It consists of data like Command and Control or Spam or Malware or Scanning and other vectors which were found in last 24hrs. Under dashboard we've Vulnerabilities which has the latest global security risks that are emerging at that point. We can integrate or make correlation rules on IBM X Force. We also can leverage the API keys to integrate IBM X Force to any of our threat intel feeds.
What do you dislike?
I always feel it's better to have feasibility to search in bulk, like if I have 20 IP addresses or file hashes or any kind of threat data I need to run them everytime. That option should be enable for better searching in IBM X Force
Recommendations to others considering the product:
I defintely recommend IBM X Force Exchange. We also can manage dashboard which has all recent related threats and other information like early warning feed, Advanced threat protection feed. Malicious activity in 1 hr is the most helpful for the threat intelligence team in any organisation. It consists of data like Command and Control or Spam or Malware or Scanning and other vectors which were found in last 24hrs. Under dashboard we've Vulnerabilities which has the latest global security risks that are emerging at that point. We can integrate or make correlation rules on IBM X Force. We also can leverage the API keys to integrate IBM X Force to any of our threat intel feeds.
What problems are you solving with the product? What benefits have you realized?
Mostly I use it for threat intelligence and it is most reliable threat intel feed.
