As the landscape evolves, they could provide a little more detail or specificity to map it to the MITRE ATT&CK framework. Even though it is done in the report, it could be done better.
The lack of appliance-based or on-premise options for this solution is its biggest downfall. Clients request them often. We cannot use the service on its own. Instead, we have to integrate it with another Threat Intelligence platform for on-premise deployment. Customers also often have questions relating to the expandability of the application when integrated to SOC platforms such as SIEM. We are still looking for more comprehensive turnkey integrations for this.
A Threat Intelligence Platform (TIP) is a solution that collects, analyzes, and distributes threat intelligence data. TIPs can help organizations to identify and mitigate cyber threats by providing them with insights into known and emerging threats.
As the landscape evolves, they could provide a little more detail or specificity to map it to the MITRE ATT&CK framework. Even though it is done in the report, it could be done better.
The dark web intelligence could be improved. It is not as good as the intelligence from other solutions.
Group-IB Threat Intelligence should improve integration for SIEM and SOAR solutions.
Threat Intelligence's OT security could be improved.
The lack of appliance-based or on-premise options for this solution is its biggest downfall. Clients request them often. We cannot use the service on its own. Instead, we have to integrate it with another Threat Intelligence platform for on-premise deployment. Customers also often have questions relating to the expandability of the application when integrated to SOC platforms such as SIEM. We are still looking for more comprehensive turnkey integrations for this.