Try our new research platform with insights from 80,000+ expert users
reviewer2123547 - PeerSpot reviewer
Security Analyst at a consultancy with 10,001+ employees
Real User
Top 20
Reliable, useful advanced search, and helpful support
Pros and Cons
  • "The most valuable features of Recorded Future are the useful alerts it provides. If we are monitoring a domain, the solution will provide us with an alert in a prompt manner. It is simple for clients to receive alerts. The advanced search is useful for more accurate filter results."
  • "The solution could improve in reducing the false positives. However, most of the other tools on the market have false positives. If they enhance their data algorithm, it could improve the accuracy of results and minimize false positives. Identifying patterns of false possibilities can aid in developing better reporting features that could potentially eliminate them in the future. This recording feature tool could benefit from adopting similar techniques utilized by other tools to enhance its functionality. By doing so, it could minimize the need for manual efforts in distinguishing true positives from false positives, ultimately reducing the workload."

What is our primary use case?

As an analyst serving several clients, our team relies on Recorded Future to receive timely alerts related to using underground screen searches. This involves using an algorithmic code feature to gather the specific data we need, which then triggers an alert for us. When we receive the alert on the platform, we assess it to determine if it pertains to our client's needs. If it does, we report our findings to the client.

How has it helped my organization?

I have been working with these types of services and tools for a while. When compared to other tools, Recorded Future provides good alerts. For example, clients' credentials, documents posted from GitHub, and other testing sites.

What is most valuable?

The most valuable features of Recorded Future are the useful alerts it provides. If we are monitoring a domain, the solution will provide us with an alert in a prompt manner. It is simple for clients to receive alerts. The advanced search is useful for more accurate filter results.

What needs improvement?

The solution could improve in reducing the false positives. However, most of the other tools on the market have false positives. If they enhance their data algorithm, it could improve the accuracy of results and minimize false positives. Identifying patterns of false possibilities can aid in developing better reporting features that could potentially eliminate them in the future. This recording feature tool could benefit from adopting similar techniques utilized by other tools to enhance its functionality. By doing so, it could minimize the need for manual efforts in distinguishing true positives from false positives, ultimately reducing the workload.

In a future release, it would be beneficial if the vendor would add more features to create one full solution that can meet the needs of the whole cybersecurity incident purpose.

Buyer's Guide
Recorded Future
December 2024
Learn what your peers think about Recorded Future. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,053 professionals have used our research since 2012.

For how long have I used the solution?

I have been using Recorded Future for approximately four years.

What do I think about the stability of the solution?

I have never experienced any downtime during our production hours. Maintenance work is typically scheduled during off-peak times, so it does not cause any disruptions. As a result, we can confidently rely on this tool for our work without any issues.

What do I think about the scalability of the solution?

The solution provides beneficial results. 

I rate the scalability of Recorded Future a nine out of ten.

How are customer service and support?

We faced some difficulties initially due to our unfamiliarity with the tool. However, after reaching out to their tech support team, we received excellent assistance from their cooperative staff. With their help, we were able to resolve our issues quickly and efficiently. However, there have been some times when the knowledge of the agent could have been better.

I rate the support of Recorded Future an eight out of ten.

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

I have previously used other tools, such as legacy tools.

What's my experience with pricing, setup cost, and licensing?

The price of the solution is worth it. The overall performance of the solution outweighs the cost.

What other advice do I have?

I rate Recorded Future nine out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer2310279 - PeerSpot reviewer
Cybersecurity Engineer at a government with 201-500 employees
Real User
Top 20
A stable solution that can be used to detect everything regarding an organization’s domain on the darknet
Pros and Cons
  • "The most valuable feature of Recorded Future is how it detects everything regarding our domain."
  • "Recorded Future is a very expensive solution, and its pricing could be improved."

What is our primary use case?

We used Recorded Future to find many things like passwords captured in the dark net and websites selling other information regarding our domains. We use the solution to search for our brand or other institutions on the darknet.

How has it helped my organization?

Recorded Future helps our organization to be a step ahead of future attacks.

What is most valuable?

The most valuable feature of Recorded Future is how it detects everything regarding our domain.

What needs improvement?

Recorded Future is a very expensive solution, and its pricing could be improved.

For how long have I used the solution?

We recently acquired Recorded Future.

What do I think about the stability of the solution?

Recorded Future is a stable solution, and we haven't experienced any downtime with it.

What do I think about the scalability of the solution?

Recorded Future is a scalable solution. Around five users are using the solution in our organization. We are spread across the country and have around 30,000 endpoints for Recorded Future.

How was the initial setup?

We are still learning how to use the solution. I think Recorded Future has a normal deployment or a normal learning curve.

What about the implementation team?

It takes around three months to deploy the solution.

Which other solutions did I evaluate?

Before choosing Recorded Future, we evaluated other options like Mandiant and FortiRecon. We chose Recorded Future because it gives much better results.

What other advice do I have?

Organizations must have at least two dedicated technicians working with the solution since the learning curve is a little big. To use the solution to its maximum capacity for the first year, having at least two technicians working with Recorded Future is better.

Overall, I rate Recorded Future ten out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Recorded Future
December 2024
Learn what your peers think about Recorded Future. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,053 professionals have used our research since 2012.
Cyber security analyst at Systems Limited
Real User
Top 20
Offers dark web monitoring, but it should call other related websites when you add one
Pros and Cons
  • "The most valuable feature is Recorded Future's protection of exposed customer data on the hardware side."
  • "When you add one website to Recorded Future, it should automatically call all other websites and social media platforms."

What is our primary use case?

We use Recorded Future for threat intelligence.

What is most valuable?

The most valuable feature is Recorded Future's protection of exposed customer data on the hardware side.

What needs improvement?

When you add one website to Recorded Future, it should automatically call all other websites and social media platforms.

For how long have I used the solution?

I deployed Recorded Future for a client. They've used the product for more than three years. 

What do I think about the stability of the solution?

Every cloud solution is stable. Recorded Future also has auto-scaling. 

What do I think about the scalability of the solution?

Recorded Future is a scalable product. 

How was the initial setup?

Setting up Recorded Future is straightforward.  It's a cloud-based service, so you only need to contact their team and ask them to create an instance. Everything is hosted on their cloud so it takes no time to deploy.

What was our ROI?

We see an ROI from using Recorded Future. It has dark web monitoring, which our previous solution lacked.

What's my experience with pricing, setup cost, and licensing?

We have a yearly subscription. The license is based on the modules and features you use. For example, it's a different cost if you want to cover the dark web and deep scanning. 

What other advice do I have?

I rate Recorded Future seven out of 10. I can recommend Recorded Future, depending on a company's budget and the features it needs. 

Which deployment model are you using for this solution?

Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
reviewer1545591 - PeerSpot reviewer
Security Operations Lead at a tech vendor with 10,001+ employees
MSP
Great dashboard, pretty stable, and good at threat intelligence gathering
Pros and Cons
  • "As a threat intelligence tool, it's very helpful."
  • "The solution would benefit from introducing automation."

What is our primary use case?

Recorded Future covers a lot of different use cases. For example, we are using it for threat intelligence research. We do use the tool to make active research on what is found around the threat. We look at patterns, for example, and see what can be elaborated on from that. 

In another use case, we use it to get all the IOCs registered and use it after that to allow other intelligence technologies to feed into that to prevent any issues for customers.

We can also use it for active monitoring in the customer interface. We can monitor the business side of a campaign. We can monitor for specific threats or market activity on the dashboard. We can develop queries to run in a continuous mode in order to get the best reviews. 

How has it helped my organization?

With all the related IOCs we were able to provide really deep information about the impact, about where we are with the big campaign, and also provide tools that were a priority to be a preventative block on the customer side. It was helpful in that sense.

What is most valuable?

As a threat intelligence tool, it's very helpful.

The stability is very good.

Technical support has been helpful.

It's really easy to create dashboards and modify them to fit what you need.

What needs improvement?

The product is too big. The vast majority of data you have. You can run queries and you can get more data than you probably want, and you have to take a deep dive a lot of the time.

The solution would benefit from introducing automation. When you are running a query just to get the data you're looking for, the result comes back so big, as it will be able to return a lot of results from different sources. Sometimes it could be a bit messy. Automation would help streamline and simplify.

The tool can be pricey, especially for smaller companies.

For how long have I used the solution?

I was working with the tool in November. I've used it in the last 18 months or so.

What do I think about the stability of the solution?

I have a good impression of the stability of the product. Any time that we needed it, it was there. It is always up and running and we didn't have any issues with it. There are no bugs or glitches, for example, and it didn't crash or freeze.

What do I think about the scalability of the solution?

We haven't attempted to scale or optimize the solution. I can't say how easy or difficult the process would be.

We only have one license feed and have up to ten users on it. We're already beginning to increase usage a bit.

How are customer service and technical support?

Technical support has been pretty good so far. I haven't had any issues with them. We're quite satisfied with the level of service provided.

Which solution did I use previously and why did I switch?

I didn't previously use a different solution.

How was the initial setup?

By the time I joined the company, the tool was already in place. Therefore, I can't speak to the initial implementation or deployment process. I can't say if it was difficult or simple or how long it took.

As a cloud solution, it doesn't require much maintenance. Anything else, such as automation using a document, would be on our side, and we'd update it as needed.

What was our ROI?

We haven't seen an ROI. The area that it was used for, as a report, initially was assigned to be used internally only and after that, we decided to try it out as a service to our customers. However, we never sold that service, so we never got a return immediately. 

What's my experience with pricing, setup cost, and licensing?

The pricing is quite high compared to other intelligence tools.

The licensing is based on the user and also the amount of usage. It's expensive in terms of what you can get. You need to be a very sizable company in order to get any real value as it's quite a sizable tool. There are other tools on the market that are less expensive - especially for smaller companies.

There aren't any additional costs above the standard licensing fee, although there are some add-ons you can get that can expand the solution's capabilities. 

What other advice do I have?

At the moment the solution is hosted on a SaaS. It's hosted on their own cloud that they are managing. We only have access to a part that is completely isolated from other customers and in another area. 

As far as I know, we are using the latest version of the solution. As it's cloud-based, it's constantly updated independently.

If a company is ready to introduce the solution, my main recommendation would be to have a really, really good threat intelligence team working on-site beforehand. If you don't have a good design or a good knowledge of threat intelligence you will never get the insights you need or use the tool to its full potential.

I'd rate the solution nine out of ten. It's quite an expensive solution. If it was less expensive, I'd likely rate it higher.

Which deployment model are you using for this solution?

Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Download our free Recorded Future Report and get advice and tips from experienced pros sharing their opinions.
Updated: December 2024
Buyer's Guide
Download our free Recorded Future Report and get advice and tips from experienced pros sharing their opinions.