Sold by: CloudSEK
Deployed on AWS
Free Trial
AWS Free Tier
Protect your organization's digital footprint with XVigil, CloudSEK's External Digital Risk Protection platform. With coverage across the deep, dark, and surface web, XVigil monitors over 500 sources, providing real-time defense against 200+ IAVs, data leaks, and brand risks. Our advanced AI/ML engine adds valuable context to your digital risks, securing your business across 8 attack surfaces.
4.1
Overview
XVigil comprises three main modules: Deep and dark web monitoring, data leak monitoring, and brand threat monitoring. Each of these modules includes multiple sub-modules designed to address various use cases, by predicting and preventing Initial Access Vectors. You have the flexibility to purchase individual modules, or combinations of modules based on your specific use case.
- - Deep and Dark Web Monitoring: CloudSEK offers Cyber Threat Monitoring to help you stay ahead of evolving security risks across the Surface, Deep, and Dark web, including forums, data leak sites, and encrypted chat platforms.
- - Phishing and Brand Monitoring: Protect your brand with CloudSEK's Brand Monitoring, shielding against threats like phishing attacks, fake apps, and rogue social media profiles. Safeguard your reputation and credibility by predicting and preventing potential risks to your digital channels.
- - Cyber Threat Intelligence: Stay ahead of emerging threats using CloudSEK's Underground Threat Intelligence. Access comprehensive reports on attacker strategies, adversary profiles, vulnerabilities, and breach notifications, empowering your organization to proactively mitigate risks.
- - Data Leak Monitoring: Safeguard your sensitive data with CloudSEK's Data Leak Monitor. We utilize machine learning to swiftly detect and mitigate leaked credentials and secrets, prioritizing VIP & Executive Protection to ensure utmost security for your organization's critical information.
- - Takedowns: Rapidly neutralize threats with CloudSEK's takedown services. Prevent escalation by swiftly addressing issues like infringing domains, fake apps, and social media infringements, safeguarding your intellectual property and brand reputation.
Highlights
- Unified platform with granular tags and customizable alert rules so you receive specific actionable intel and instant reports
- Integrations with all major SIEM / SOAR solution providers/ Slack / ticketing tools, and more
- Easy to use SaaS solution supporting unlimited users
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Free trial
Try this product free according to the free trial terms set by the vendor.
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
DRP Module Deep, Dark Web, Brand Risk & Data Leak Monitoring 1000 Assets | 20 Users, 1000 Assets | $100,000.00 |
DRP Module Deep, Dark Web, Brand Risk & Data Leak Monitoring 500 Assets | 20 Users, 500 Assets | $55,000.00 |
Vendor refund policy
All sales and orders are final, and are non-cancellable and non-refundable.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
CloudSEK offers comprehensive support options, including on-call, email, and ticketing support. Your purchase includes the following offerings: Client Account Manager, Designated Customer Success Manager, Online Product Training, Quarterly Configuration Review, Tech Best practices, QBR (Quarterly Business Reviews). Additionally, we provide advanced support services to meet your specific needs. Contact information: Phone: +91 8860773040, Email:care@cloudsek.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Rapid7
Top
10
In Vulnerability and Patch Management, Data Governance
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Multi-Source Threat Monitoring
Monitors over 500 sources across surface, deep, and dark web including forums, data leak sites, and encrypted chat platforms to detect security risks and initial access vectors.
Machine Learning-Based Detection
Utilizes machine learning engine to detect and mitigate leaked credentials, secrets, and data breaches with prioritization for VIP and executive accounts.
Modular Architecture
Comprises three main modules (deep and dark web monitoring, data leak monitoring, and brand threat monitoring) with multiple sub-modules that can be purchased individually or in combinations based on specific use cases.
SIEM and SOAR Integration
Integrates with major SIEM and SOAR solution providers, Slack, and ticketing tools for streamlined alert management and incident response workflows.
Customizable Alert Configuration
Provides granular tagging and customizable alert rules to deliver specific actionable intelligence with instant reporting capabilities.
Underground Threat Monitoring
Infiltrates hidden underground forums, marketplaces, and messaging groups to monitor and hunt for emerging cybercrime threats and attack indicators.
Compromised Account Detection
Monitors and detects compromised accounts across organizational domains, subdomains, and SaaS accounts utilizing data from millions of infected machines.
Threat Actor Intelligence Hub
Centralizes comprehensive information on threat actors from diverse web sources with links to related actors, threat actor profiles, identities, and hacking discussions.
Automated Technical Intelligence API
Provides SOC teams with automated detection and monitoring of potentially compromised IPs and domains involved in cybercrime activity through API integration.
Third-Party Vendor Risk Assessment
Proactively monitors, evaluates, and mitigates risks from third-party vendors to strengthen supply chain security posture.
Attack Surface Management
Aggregates comprehensive attack surface visibility across hybrid environments with external attack surface scans to provide 360-degree view of entire attack surface
Vulnerability Management
Delivers complete visibility across on-premise and remote endpoints to identify, communicate, and remediate vulnerabilities, misconfigurations, and risks
Cloud Security
Provides code-to-cloud protection for cloud-native applications with seamless CI/CD pipeline integration and agentless risk assessment based on reachability, exploitability, and potential impact
Next-Generation SIEM and XDR
Delivers accelerated detection and response with SaaS deployment, intuitive interface, out-of-the-box detections informed by MDR SOC, and built-in automation capabilities
Threat Intelligence
Delivers high-fidelity actionable threat intelligence infused with proprietary threat and vulnerability research from Rapid7 Labs and community-driven tools
Standard contract
No
No
No
Customer reviews
reviewer2834472
OSINT monitoring has strengthened credential security and supports proactive red teaming
Reviewed on Apr 30, 2026
Review from a verified AWS customer
What is our primary use case?
My main use case for CloudSEK XVigil is to meet our cybersecurity needs.
I used CloudSEK XVigil mostly in red teaming, where we had red teaming requirements that required using the Contextual AI engine that was recently introduced for various use cases. I also used it to provide organizational safety for employees at my previous company, where we had to monitor the darknet and data breaches to ensure that our credentials did not get compromised.
How has it helped my organization?
CloudSEK XVigil has positively impacted our organization by being easy to use for our small tier organization. We do not require a professional or a cybersecurity person within the team to handle it, so we were able to do it with less manpower.
I do not have any benchmarks on this, but overall the confidence within the company in terms of making sure that our credentials were secure was felt after we started using CloudSEK XVigil.
What is most valuable?
The best features that CloudSEK XVigil offers are mostly the OSINT features.
Regarding the OSINT features, ensuring that our email IDs were not involved in any phishing or data breaches was very valuable for us.
What needs improvement?
I feel that some improvements in alerts and notifications can be really useful.
There are no other improvements needed for CloudSEK XVigil that I have not discussed yet.
For how long have I used the solution?
I have been using CloudSEK XVigil for about two years, though not recently.
Which other solutions did I evaluate?
The reason I choose a rating of eight for CloudSEK XVigil is that I am not really sure about other alternatives, so I cannot compare it to another solution. I do know some open-source software, but CloudSEK XVigil has better SLAs and service level agreements.
What other advice do I have?
I checked out some SDKs and tried to use CloudSEK XVigil in our developer tooling side of things.
My advice for others looking into using CloudSEK XVigil is that the resources are really good and it is easy to get started, so I suggest reviewing the resources before diving into the software.
I have given CloudSEK XVigil an overall rating of eight.
Which deployment model are you using for this solution?
Private Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Arsalaan Mistry
Fraud monitoring has reduced fake pages and credential leaks and protects financial transactions
Reviewed on Apr 20, 2026
Review provided by PeerSpot
What is our primary use case?
My main use case for CloudSEK XVigil is for fraud transactions, takedown of fake pages, and fraud calls. To monitor those things, credentials leak, and SSL certificates are essential. These are the main use cases, including code repository monitoring, which we use in CloudSEK XVigil .
For a specific example of how I used CloudSEK XVigil to tackle a fraud transaction or take down a fake page, we used it to monitor social media accounts where we can find fake numbers for job posts or loan requirements. We use it to monitor and take down those fake pages.
In addition to my main use cases, we also take down fake WhatsApp numbers. We monitor code leaks where we can click on the link and see the page.
Regarding monitoring fake pages, we can directly get links to Instagram pages, Facebook pages, or other social media pages and YouTube channels. There are categories where we can identify that a link comes from YouTube or Facebook, and we take down the pages accordingly.
What is most valuable?
The portal's ease of use significantly helps my team, as we can identify credential leaks quickly. We receive multiple credential leaks, and we can identify which ones are from employees currently in the company, allowing us to take immediate action.
CloudSEK XVigil has positively impacted my organization, resulting in fewer credential leaks. We have implemented two-factor authentication, and because of that, we change employee credentials regularly. We monitor fake pages as well, and in the past three years, we have taken down more than 1000 pages, monitored more than 700 credential leaks, and identified at least around 300 code leaks.
In my experience, the best features CloudSEK XVigil offers are its very easy-to-understand portal and easy monitoring capabilities, allowing us to identify alerts according to various scenarios. The XVigil console is great to work on.
Taking down those thousand pages has been made much easier by CloudSEK XVigil. We just need to identify, go on the portal, click on takedown, and within three to four working days, the page gets taken down. The console is very easy to use.
What needs improvement?
CloudSEK XVigil could be improved by adding more data on vendor assessment. That would be a great addition if it included vendor assessment features where we can monitor vendors' credentials and everything.
I give it nine out of ten because sometimes I need to coordinate with the backend team for the takedown process. If we identify something not in the portal, it takes some time to handle those issues, and I have faced a few challenges with that.
For how long have I used the solution?
I have been using CloudSEK XVigil for the past three years.
What do I think about the stability of the solution?
CloudSEK XVigil is stable.
What do I think about the scalability of the solution?
The scalability of CloudSEK XVigil is really good.
How are customer service and support?
The customer support for CloudSEK XVigil is quick and prompt.
Which solution did I use previously and why did I switch?
We did not use any other solution besides CloudSEK. We assessed other tools in comparison with CloudSEK, but no tool matched the capabilities of CloudSEK. CloudSEK was way better than the others.
Before choosing CloudSEK XVigil, I evaluated Kaspersky, but it was no match for CloudSEK.
What was our ROI?
I have seen a return on investment with this product because, as we work in the NBFC finance company, we must protect our credentials and fraud transactions. CloudSEK XVigil has helped us a lot in minimizing risks.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing is that it is very easy, and there were not many challenges, so it was fine.
NishantKandpal
Proactive monitoring has protected our assets and delivers early alerts from hidden threats
Reviewed on Apr 06, 2026
Review from a verified AWS customer
What is our primary use case?
We are using Cysiv and SIM technologies. We also researched and implemented CloudSEK XVigil . We use CloudSEK XVigil for deep dark web monitoring and credential harvesting. Anything exposed to the dark web triggers a notification related to our organization.
We also use B-Vigil, which focuses more on attack surface management, while CloudSEK XVigil is dedicated to deep dark web monitoring.
We use CloudSEK XVigil as a prevention tool. It will not automatically prevent incidents, but instead sends us critical alerts. After taking multiple confirmations to determine whether a particular alert is legitimate, we take the necessary action.
CloudSEK XVigil identifies if any assets critical to our organization have been exposed to the dark web or what type of services have been exposed. It provides alerts before a disaster occurs, allowing us to receive notification and rectify issues before they happen again.
We have integrated CloudSEK XVigil with our Cysiv tool.
What is most valuable?
We are receiving real-time alerts. If any alerts are categorized as high or critical, they are converted into a ticket management system for us to work on. Regarding ransomware, there is currently no case, but CloudSEK XVigil is a notification tool that analyzes and correlates everything to notify us if something will occur. If a ransomware attack were to happen, it would notify us a few minutes or a few hours before, informing us that a particular asset has been exposed and that this exposure could create a ransomware attack in our environment.
Regarding reports, we have automated all reports we receive on a weekly basis. With over ten thousand employees, we identify which users' email IDs or passwords have been exposed outside the environment and receive those notifications in our reports. The report generation has been fully automated.
What needs improvement?
The dashboard is good, but I want to make it more mature with additional features so that we can view all the services we use and all critical notifications in a unified platform. More features should be included in security terms so that everyone can see one dashboard and check all relevant things regarding what is happening in our environment and what is being monitored.
Additionally, there are modern advancements in AI technology. I want CloudSEK XVigil to introduce new AI technologies, including GenAI and agentic AI, which would help us generate reports more efficiently.
For how long have I used the solution?
We have been using it for the last two years.
How are customer service and support?
Technical support is good, and I rate it nine out of ten.
Which solution did I use previously and why did I switch?
When I was part of Dalmia Bharat Group, my previous company was using Cybel, which is similar to CloudSEK XVigil.
What was our ROI?
We are getting a return on investment with CloudSEK XVigil. Last month we had a meeting where they showcased their ROI data from the last two and a half years of their partnership with us. They presented a ROI analysis which we subsequently showcased to our leadership team and promoter's team. We are definitely getting the return on investment and experiencing benefits from this tool.
What's my experience with pricing, setup cost, and licensing?
The pricing is good because this is a premium feature. I am focused on my company's assets, and if paying a slightly higher price ensures my devices will not be exposed to the environment in a negative manner, that is acceptable. I want my assets to be exposed in a positive way. If my assets expose negative information, ransomware attacks and other serious issues could occur. The pricing is average, but considering the services provided, it is good value. If I am paying ten thousand or one lakh extra, but receiving quality services and complete satisfaction, the investment is justified.
What other advice do I have?
We completed a proof of concept for B-Vigil a few months back and discussions are still ongoing. I have been in cybersecurity for almost twelve years. We purchased CloudSEK XVigil with help from a partner distributor. I have a team of six people who all use this tool, as we have multiple tools here and CloudSEK XVigil is one component of our security infrastructure. CloudSEK XVigil is very advanced with automated features and AI capabilities. I would definitely recommend CloudSEK XVigil to anyone. I rate this product nine out of ten.
Aditya Vikram Raj
Brand risk monitoring has accelerated takedowns but needs richer attack surface insights
Reviewed on Mar 19, 2026
Review provided by PeerSpot
What is our primary use case?
I primarily use CloudSEK XVigil for brand and risk monitoring for a pharmaceutical client.
CloudSEK XVigil has a module for executive impersonations where we configured use cases and alerts rules by taking the emails and phone numbers of the executives of the particular organization and monitoring those numbers constantly in the tool. If anything gets flagged on the clear, deep, or dark web, alerts notify us of incidents which can be monitored via the tool.
My main use case for CloudSEK XVigil is brand and risk monitoring.
What is most valuable?
In my experience, the best feature of CloudSEK XVigil is its user-friendly interface, and I really appreciate that I can tweak the alert rules according to my needs. I can monitor various incidents, domains, URLs, or any kind of artifacts, and those are some of the features I really appreciate about that particular platform, including their integrated intelligence monitoring sections.
The integrated intelligence monitoring section of CloudSEK XVigil rolled out a feature to provide updates on the latest threat intelligence developments worldwide, and when I was using it in my last organization six months back, we even had customer success review calls from their support managers. At that time, they were in the process of releasing STIX and TAXII modules for indicators of compromise, allowing us to integrate those tools, which provided options to directly connect that data to our SIEM tools.
CloudSEK XVigil positively impacted my organization, allowing us to initiate a lot of takedowns for applications with our brand and logo that were wrongly listed on third-party websites, and thankfully, those were removed.
If I did not have CloudSEK XVigil, it would take me two or three days to identify a problematic application because the takedown process involves going through the domain registrar and a lot of paperwork. However, with CloudSEK XVigil, it is just one click away. I only need confirmation from my organization to proceed, and in one day, I can tackle anywhere from five to twenty incidents, depending on approval, and most of those takedowns get successful within a week. This is quite a good number of metrics compared to the traditional way.
What needs improvement?
I think CloudSEK XVigil could improve its B-Vigil suite, particularly regarding attack surface monitoring application headers as compared to Bitsight , which provides a good amount of data that could be included in CloudSEK XVigil.
I am satisfied with the improvements I have mentioned regarding CloudSEK XVigil.
For how long have I used the solution?
I have used this particular tool for more than one and a half year.
What do I think about the stability of the solution?
CloudSEK XVigil is stable in my experience.
What do I think about the scalability of the solution?
CloudSEK XVigil's scalability is quite good, as it handles increased workloads and users well.
How are customer service and support?
The customer support for CloudSEK XVigil is excellent for me, and we have regular bi-weekly calls with their customer support executive to answer our inquiries and support our work.
Which solution did I use previously and why did I switch?
I did not use any other solutions before CloudSEK XVigil; it is the only solution I have used for this particular case scenario and business use case.
How was the initial setup?
I deploy CloudSEK XVigil as a SaaS-based tool, meaning I just have to go to my browser, access the login portal, and use it.
What about the implementation team?
I use CloudSEK XVigil as an independent tool from CloudSEK without being deployed over my cloud environment, so I do not see the need for a cloud provider in this case.
What was our ROI?
I believe there is a return on investment with CloudSEK XVigil, as we were able to identify numerous true positive incidents and take action on them.
What's my experience with pricing, setup cost, and licensing?
I do not have visibility on the pricing, setup cost, and licensing for CloudSEK XVigil because, as I mentioned, I work as an associate, and all those decisions are made by my bosses and senior management.
Which other solutions did I evaluate?
I do not have visibility into whether my organization evaluated other options before choosing CloudSEK XVigil because that decision was made by my manager and senior managers.
What other advice do I have?
I have rated CloudSEK XVigil a seven out of ten.
I have rated it a seven because of the suggested improvements, and if those can be included, it could be a nine or ten for me. I think CloudSEK XVigil is a good tool that you can evaluate according to your business needs, as it truly adds value. However, it also depends on the specific requirements of different organizations, as there may be scenarios where other tools could benefit you more than CloudSEK XVigil, but this is definitely one tool worth trying.
Sudheer Devanaboina
Automated deep web monitoring has transformed large‑scale oversight but still needs stronger OWASP focus
Reviewed on Mar 15, 2026
Review from a verified AWS customer
What is our primary use case?
My main use case for CloudSEK XVigil is vulnerability assessment and active monitoring.
A specific example of how I use it for vulnerability assessment and active monitoring is that there are 35,000 applications running at National Informatics Center with an IC made infrastructure, so we are looking into deep web monitoring for compromised credentials and also using CloudSEK XVigil for extracting vulnerability assessment reports of our website and the applications that are integrated with it.
What is most valuable?
The best features CloudSEK XVigil offers include deep web monitoring and vulnerability assessment.
The most useful feature is deep web monitoring and vulnerability assessment in my cases where we actively look after the vulnerabilities in all 35,000 applications.
What makes deep web monitoring and vulnerability assessment stand out for me is that, because of the large infrastructure at NIC, CloudSEK XVigil especially manages large applications integrated with it, making it easy and useful for us to monitor all applications at once and generate reports. Additionally, deep web monitoring provides valuable insights where user credentials have been stolen or misused.
CloudSEK XVigil has positively impacted my organization by automating processes that were previously manual, which we struggled with due to our large network, and since integrating CloudSEK XVigil, it has dramatically changed our workflow and reduced the manpower needed.
What needs improvement?
CloudSEK XVigil can be improved by focusing more on vulnerabilities like open redirection, broken access control, and OWASP Top 10, which need to be enhanced and made more accurate.
In relation to open redirection vulnerability, I would add that there is concern over SEO poisoning, so if CloudSEK XVigil can detect SEO poisoning and the keywords redirecting to pages including gaming and betting apps, that would be useful to collect all websites using one phrase or keyword at once.
For how long have I used the solution?
I have been using CloudSEK XVigil for nine months.
What do I think about the stability of the solution?
CloudSEK XVigil is stable.
What do I think about the scalability of the solution?
The scalability of CloudSEK XVigil is pretty good.
How are customer service and support?
The customer support for CloudSEK XVigil is really helpful.
I would rate the customer support an eight on a scale of one to ten.
Which solution did I use previously and why did I switch?
I have not previously used a different solution; this is the first one, as before it was all manual.
What's my experience with pricing, setup cost, and licensing?
I did purchase CloudSEK XVigil through the AWS Marketplace , and my experience with pricing, setup cost, and licensing is that everything is manageable.
Which other solutions did I evaluate?
Before choosing CloudSEK XVigil, I did not evaluate other options because it was the organization's decision.
What other advice do I have?
I rate CloudSEK XVigil a seven on a scale of one to ten. I give it a seven because it is a good tool, but there needs to be improvement.
My advice for others looking into using CloudSEK XVigil is that I would give a good review about CloudSEK XVigil because it handles large networks well.