Name: Threat Detection Marketplace
Rating: 4.6 (20 reviews)

Overview

Product Information on Threat Detection Marketplace

Updated 5th July 2023

What is Threat Detection Marketplace?

SOC Prime’s Threat Detection Marketplace (TDM) empowers cyber defenders with access to the global feed of security news, tailored threat intelligence, and a curated Sigma rule repository continuously enriched with new detection ideas. Security engineers can download selected SOC content, automatically stream detection rules into SIEM of their choice, create custom content lists with selected detection algorithms matching current cyber defense priorities, edit and customize detection code by leveraging data schemas, presets and filters. Leveraging Threat Detection Marketplace, cybersecurity professionals can reach the latest ready-to-deploy behavioral detection algorithms and explore relevant context on any cyber attack or threat, including zero-days, CTI and ATT&CK references, and Red Team tooling.

Overall experience with Threat Detection Marketplace

SENIOR SECURITY MANAGEMENT SPECIALIST

500M - 1B USD, Banking

FAVORABLE

“Platform with a large library and strong focus on up-to-date detection content”

4.0

Sep 25, 2024

We recently started using the vendor and so far, the experience has been positive. Onboarding went smoothly and support has been responsive.

There are no reviews in this category.

CRITICAL

About Company

Company Description

SOC Prime is a cybersecurity entity centred on the development of an advanced platform for collective cyber defense. Leveraging the Sigma language and MITRE ATT&CK as integral components, the company emphasizes the enhancement of smart data orchestration, increased attack surface visibility, and cost-effective threat hunting processes. Its innovation is grounded in a zero-trust and multi-cloud methodology. Regardless of recognition and clientele base, SOC Prime's primary goal is to solve core cybersecurity issues and facilitate a transformational shift in the industry.

Company Details

Company type

Private

Year Founded

2015

Head office location

Boston, United States

Number of employees

51 - 200

Website

https://socprime.com/

Do You Manage Peer Insights at SOC Prime?

Access Vendor Portal to update and manage your profile.

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

Reviewer Insights for: Threat Detection Marketplace

Threat Detection Marketplace Likes & Dislikes

- Widest coverage observed, both in supported security tools and platforms covered (OS, appliances, cloud platforms, etc.) - New content created very fast to address new threats - Onboarding process and initial setup with the vendor has gone smoothly - They take feedback from customers seriously and improve their product based on that (e.g. license, RBAC controls)

The volume of content

The range and quantity of SIEM rules. The easy to use search functionality. The price is very reasonable.

Note. We were looking for a content provider for Threat Hunting specifically, which typically means analyzing large data & results sets manually. - We deemed the documentation of the content to be lacking. Descriptions are very short. They provide intelligence articles, which are time consuming to review, which are the only documentation providing background to the content. - Typically content doesn't have grouping or other commands to assist in the analysis process, which makes it more challenging for junior hunters to use the content. This is totally fine for detections since only very few or no results are expected. - Free content with slight or no modification provided as premium 3rd party content. Flip side is that the vendor allows us to use the content almost out-of-the-box to save time and reduce errors due manual work. - The sheer amount of content creates a new problem, it's not easy to select which content is relevant to you. Platform does provide filters, but you can still end up having 100s content to choose from.

Ways/Information for testing/emulating detections are not seamlessly part of the product.

Not all SIEM's are supported. I had to manually take the Sigma yaml files and recreate the SIEM rule for my SIEM. To be fair, my SIEM is not well known.

Top Threat Detection Marketplace Alternatives

Peer Discussions

Threat Detection Marketplace Reviews and Ratings

4.6

(20 Ratings)

Rating Distribution

5 Star: 75%
4 Star: 25%
3 Star: 0%
2 Star: 0%
1 Star: 0%

Customer Experience

Evaluation & Contracting

4.8

Integration & Deployment

4.6

Service & Support

4.8

Product Capabilities

4.7

Filter Reviews

Sort By:

Most helpful

Last 12 Months

Star Rating

Reviewer Type

Reviewer's Company Size

Reviewer's Industry

Reviewer's Region

Reviewer's Job Function

SENIOR SECURITY MANAGEMENT SPECIALIST
50M-1B USD
Banking
Review Source
Platform with a large library and strong focus on up-to-date detection content
4.0
Sep 25, 2024
We recently started using the vendor and so far, the experience has been positive. Onboarding went smoothly and support has been responsive.
Director, Detection Engineering
10B+ USD
Media
Review Source
Leader in Content Volume
4.0
Jul 22, 2024
For detection and hunting content, this is the most exceptional vendor that I know of, especially with the change in licensing for unlocking detections. As far as product capabilities go, there are opportunities for integrating emulation/validation of detections. I also find threat profiling important (for prioritizing content) and detection lifecycle features (for deprecating stale content)
SOC Manager
Gov't/PS/Ed
Government
Review Source
Broadening Your SOC with Additional SIEM Rules and Detection Logic
5.0
Apr 17, 2024
My SOC requires additional SIEM rules and detection logic. Our SIEM out of the box ruleset was not broad enough to meet our requirements. TDM provides thousands of detections written in Sigma. Some of the content is free and we bought a Subscription to see the premium content. The TDM catalogue uses Mitre ATT&CK for tagging and this made it easier to find the rules we needed for our requirements. Great product to help SOC do their own detection engineering.
IT SECURITY & RISK MANAGEMENT ASSOCIATE
10B+ USD
Banking
Review Source
Excellent Product for SIEM Migration and Threat Hunting
5.0
Mar 12, 2024
SOC Prime provided exceptional guidance and resources during and after our SIEM migration.
CYBERSECURITY CONTENT MANAGEMENT
50M-1B USD
Healthcare and Biotech
Review Source
If you manage a SIEM you need Soc Prime
5.0
Jul 12, 2023
We use SOC Prime daily and it is the best resource for SIEM rules

Showing Result 1-5 of 20

Threat Detection Marketplace

Overview

Product Information on Threat Detection Marketplace

What is Threat Detection Marketplace?

Threat Detection Marketplace Pricing

Threat Detection Marketplace Product Images

Overall experience with Threat Detection Marketplace

“Platform with a large library and strong focus on up-to-date detection content”

About Company

Company Description

Company Details

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

Reviewer Insights for: Threat Detection Marketplace

Threat Detection Marketplace Likes & Dislikes

Top Threat Detection Marketplace Alternatives

Peer Discussions

Threat Detection Marketplace Reviews and Ratings

4.6

(20 Ratings)

Rating Distribution

Customer Experience

Product Capabilities

Platform with a large library and strong focus on up-to-date detection content

Leader in Content Volume

Broadening Your SOC with Additional SIEM Rules and Detection Logic

Excellent Product for SIEM Migration and Threat Hunting

If you manage a SIEM you need Soc Prime

Recommended Gartner Insights