Sold by: eSENTIRE
Deployed on AWS
eSentire Threat Intelligence offers high-fidelity Indicators of Compromise (IOCs), rigorously vetted by eSentire experts. Use our cyber threat intelligence feed across your existing security tool stack to reduce false positive alerts and enhance your threat detection and response capabilities.
4.6
Overview
Mediocre threat intelligence has become common in cybersecurity, causing many security leaders to collect multiple threat intelligence feeds that have redundant, outdated data. Inaccurate threat intelligence sources can lead to false positives that waste valuable resources.
The eSentire Threat Intelligence feed offers a curated list of high-fidelity Indicators of Compromise (IOCs), meticulously vetted and approved by our Elite Threat Hunters and Threat Response Unit (TRU), so you can confidently integrate the actionable intelligence into your existing security tool stack.
Integrate our threat intelligence feed with your existing tools (e.g., firewalls, email servers, EDR) using the STIX™ format for a cost-effective approach to operationalize threat intelligence and enhance detection capabilities.
With coverage of 71 industries and a 99% true positive rate, leveraging our high-quality threat intelligence feed allows you to focus your threat detection and response on the critical threats that matter, not false positives.
The result? Your team can cut the noise, minimize false positive alerts, and improve the automated blocking capabilities of known cyber threats.
Highlights
- Get access to IOCs with 95% true positive rate that have been verified by our Elite Threat Hunters and Threat Response Unit (TRU).
- Our threat feed is refreshed every 24 hours and every IOC in the feed has been observed in positive investigations across customer environments, significantly reducing the number of false positives.
- Cover a broad spectrum of potential threats and malicious activities with multiple IOCs (i.e., IP addresses, domain names, file hashes) so your team can improve your detection accuracy and gain full context into the threat.
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
eSentire Threat Intelligence Feed | API access for organizations up to 250 users | $20,650.00 |
Vendor refund policy
All orders and fees are non-cancellable and non-refundable once placed except as required by law.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
eSentire MDR for Endpoint offers you the flexibility and choice of leveraging technology platforms from our best in class ecosystem of endpoint partners. We also go beyond other MDR providers by developing custom detection engineering based on our threat intelligence and proprietary Machine Learning (ML) applications that hunt and respond to endpoint threats.
eSentire MDR for Log provides critical visibility, data correlation, deep investigation and enhanced threat detection enabling complete response across your multi-cloud or hybrid environments.
See and understand cloud changes at scale without requiring manual interventions by your team every time a new cloud service or technology is adopted. Our Cloud Workload Protection Platform (CWPP) offering runs natively in the cloud and provides continuous build to run-time threat detection, behavioral anomaly detection, and compliance across multi-cloud environments, workloads, accounts, containers, and Kubernetes.
eSentire MDR for Network on AWS provides deep packet inspection and real-time traffic interruption capabilities at virtual firewalls in AWS cloud when malicious activities are detected, reducing the mean time to detect, and respond (MTTR).
Customer reviews
Chad R.
Security Alerts Made Effortless with eSentire
Reviewed on Mar 10, 2026
Review provided by G2
What do you like best about the product?
I use eSentire for security checks and reviews in our company's IT infrastructure and devices. It alerts us to issues with devices being compromised, which is incredibly helpful. I like that I can easily check alerts and drill down to see which devices should be looked at. The drill-down feature is valuable because it allows us to quickly act on threats and clear out issues on devices to help safeguard our company. Additionally, the initial setup was very easy, mostly handled by our account managers.
What do you dislike about the product?
I did have an issue with my SSO but was able to get another account made and tied to my company's account.
What problems is the product solving and how is that benefiting you?
I use eSentire for security checks and IT infrastructure review. It alerts us to device compromises, allowing us to quickly act on threats and safeguard our company.
Reuben T.
Streamlined Threat Protection with Intuitive Features
Reviewed on Feb 25, 2026
Review provided by G2
What do you like best about the product?
I like eSentire for its organizational protection, and the way it keeps me up to date with threats and proactive readiness. The new dashboard is great, with its filtering feature and ticketing module making it easier to focus on specific issues and create tickets efficiently.
What do you dislike about the product?
N/A
What problems is the product solving and how is that benefiting you?
eSentire offers protection with up-to-date threat knowledge and proactive readiness. The new dashboard's filtering feature and ticketing module make it easier to focus on specifics and create tickets.
Jason M.
eSentire SOC Is Essential for Always-On, After-Hours Monitoring
Reviewed on Feb 11, 2026
Review provided by G2
What do you like best about the product?
eSentire SOC is essential to our operations in monitoring our environment at all times but especially after hours
What do you dislike about the product?
No complaints, am looking forward to integrating Okta into eSentire enabling SOC to do session revokes for us when needed
What problems is the product solving and how is that benefiting you?
Monitoring our environment at all times and alerting us to threats and suspicious activities as well as recommendatoins on next steps
alawrence@torontofilmschool.ca L.
24/7 Security Monitoring with Responsive Support
Reviewed on Feb 10, 2026
Review provided by G2
What do you like best about the product?
I really appreciate eSentire's 24/7 human-led threat detection and response. Their Security Operations Center (SOC) team is highly responsive. I also like their vulnerability management, which provides clear visibility into real security risks and helps prioritize remediation. The initial setup was very easy, thanks to the step-by-step guidance provided by the eSentire team.
What do you dislike about the product?
Reporting customization could be improved
What problems is the product solving and how is that benefiting you?
eSentire handles 24/7 security monitoring, cuts through alert noise, identifies real threats, and helps us respond quickly with clear guidance. Reporting customization could be improved.
David H.
Proactive Cloud Security Alerts with Timely Suspicious Activity Notifications
Reviewed on Feb 09, 2026
Review provided by G2
What do you like best about the product?
it let us know by sending notifications about any suspicious operation that happens in our cloud provider.
What do you dislike about the product?
Sometimes it is too noisy. Somo notifications are important because it is about deletions, then we create a rule to ignore them. But whenever we have a new resource or a different role that does the same, the notification show up again until we create a new rule for it. Maybe in every notification we could have a button to create a rule that match the alert.
What problems is the product solving and how is that benefiting you?
It give us visibility about things that happen inside the org that would be harder to track if that required manual communication or announcements in other applications.