Share your experience using Snare

Review over the phone

The easiest route - we'll conduct a 15 minute phone interview and write up the review for you.

Schedule an interview
Review online

Use our online form to submit your review. It's quick and you can post anonymously.

Write my review
Your review helps others learn about this solution
The PeerSpot community is built upon trust and sharing with peers.
It's good for your career
In today's digital world, your review shows you have valuable expertise.
You can influence the market
Vendors read their reviews and make improvements based on your feedback.
Examples of the 84,000+ reviews on PeerSpot:
Ganesh-Jadhav - PeerSpot reviewer
Senior Cyber Security Analyst at Securonix
Real User
Top 5
Download
Provides a consistent format and is used to ingest data into a SIEM solution
Pros and Cons
  • "The best thing about Snare is its format and consistency."
  • "Users will initially find it difficult to identify the event types and installation in Snare."

What is our primary use case?

We need Snare to ingest the data into our SIEM solution. We do the mappings, and then we configure the rules on top of the data we receive from Snare.

What is most valuable?

The best thing about Snare is its format and consistency. There are different standards of logs, but Snare's format is consistent from the beginning and doesn't change.

What needs improvement?

Users will initially find it difficult to identify the event types and installation in Snare.

For how long have I used the solution?

I have been using Snare for three years.

What do I think about the stability of the solution?

The solution's basic functions work smoothly, but some complex functions take some time to load on GUI.

What do I think about the scalability of the solution?

The solution has good scalability. I work with more than 600 customers, and most of them are using the Snare solution.

How was the initial setup?

The solution's initial setup is very easy and just takes some clicks.

What's my experience with pricing, setup cost, and licensing?

Snare is a cheap solution because a lot of customers are using it.

What other advice do I have?

We are an MSSP, and we have different customers. I'm not working on Snare directly, but I'm working on the actual data. We collect the data and create the rules on top of the data and Snare events. I am happy with the solution's GUI. I would recommend Snare to other users because it is better for sending data, installing, and forwarding the data.

Users will initially find it difficult to identify the event types and installation, but it gets easier as you use it. Snare is a well-known format, and most SIEM solutions are utilizing it. So, it's very easy to configure on their end as well. Snare sends data into a specific format, including security data and non-security data.

Overall, I rate the solution an eight out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Flag as inappropriate
Frank Eargle - PeerSpot reviewer
Information Security Engineer at Glasshouse Systems
Real User
Top 5
Download
A highly scalable solution that is easy to manage and super easy to set up
Pros and Cons
  • "The most valuable feature of Snare is flexibility or the ability to filter all things you don't want and don't have security value."
  • "Snare should modernize its GUI a little bit."

What is our primary use case?

We use Snare for picking up Windows logs, and we used to use it for SQL as well. We had used it for Linux once or twice. We're mainly using it for Windows and Windows flat files.

What is most valuable?

The most valuable feature of Snare is flexibility or the ability to filter all things you don't want and don't have security value.

What needs improvement?

Snare should modernize its GUI a little bit. The solution's GPO support is kludgy and could be more straightforward.

For how long have I used the solution?

I have been using Snare for seven to eight years.

What do I think about the stability of the solution?

Years back, when they did upgrades, the solution failed to remove the previous one and install the new one completely. However, the newer versions have not had that problem.

I rate Snare a nine out of ten for stability.

What do I think about the scalability of the solution?

The solution is deployed on 2,000 machines, and four users use it in our organization.

I rate Snare ten out of ten for scalability.

How are customer service and support?

Our experience with the solution's technical support was good. I rate Snare's technical support a four or five out of ten.

How would you rate customer service and support?

Neutral

Which solution did I use previously and why did I switch?

I previously used IBM AL. I switched to Snare because IBM AL was being deprecated.

How was the initial setup?

Snare’s initial setup is super easy. I rate Snare an eight out of ten for the ease of its initial setup.

What about the implementation team?

We implemented Snare through an in-house team. The solution’s deployment takes a couple of weeks.

What's my experience with pricing, setup cost, and licensing?

Snare is competing with solutions like Splunk, LogRhythm, QRadar, and WinCollect, and those are free. Snare has a pretty reasonable cost. Years back, the solution cost $10 to $15 a node. The SQL agent is not cheap.

On a scale from one to ten, where one is cheap, and ten is expensive, I rate Snare's pricing a four out of ten.

What other advice do I have?

Snare is a great product that is easy to roll out and manage.

Overall, I rate Snare an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate