The depth of their file reputation intelligence. We integrate ReversingLabs' file reputation service into our CDR pipeline, and the quality of the verdicts, particularly for complex or obfusive file types, is a clear differentiator. The coverage across file formats is excellent and aligns well with the threat landscape.

I primarily use Spectra Analyze to check files that come up during the discovery phase, such as open directories, that trigger honeypot alarms, etc. Disclaimer: I received access as part of my role as a Security Researcher. I have been using Spectra Analyze for about 1 year now for ~6 hours a week. Let's start with the interface. There are exactly 2 things that personally bother me. 1. There is no dark mode or I haven't found it. 2. The main dashboard is sometimes overloaded - this also applies to other areas - more on that later. Otherwise, I must say I find the interface successful. It looks clean, in most cases you immediately see what the status is, and it is thematically well sorted. There are other providers where you feel like you have 10 popups before you find the information. That is not the case here. For some things, like contacted URLs, I would wish for a copy button. That would simplify things a bit more. Otherwise, you have to click 2x more and still get the information - please understand this more as "complaining at a high level." File Upload You can upload the data via the GUI or via API. Personally, I have used the GUI now and then, but relatively quickly built an upload script based on the available SDK and now upload 99.9% via API to ReversingLabs. File Report On the overview page of the individual file, you immediately see what exactly is going on. Classification, which part (static analysis, dynamic analysis, etc.) rated the file, a graph, network information if available, and much more can be seen at first glance. If you want, you can also get lost in the respective sub-items. Personally, the overview page is usually enough for me. YARA What I find pretty good is that I can store my own YARA rules. A "matching" also takes place for files that were uploaded in the past. It is immediately apparent which ones match, you can adjust your rule, etc. - in short, pretty solid. Support & Feedback This is the point that surprised me the most. Whether general inquiries or hints about what I didn't like - it was always answered promptly. I was particularly surprised that some requests for possible interface improvements were added within a very short time. I know it differently from other large companies. If I had to give stars, it would be 4.5.

Comprehensive, clear, great customer support!