Try our new research platform with insights from 80,000+ expert users

Darktrace vs Fortra's Alert Logic MDR comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Darktrace
Average Rating
8.2
Reviews Sentiment
7.2
Number of Reviews
82
Ranking in other categories
Email Security (9th), Intrusion Detection and Prevention Software (IDPS) (1st), Network Traffic Analysis (NTA) (1st), Network Detection and Response (NDR) (1st), Extended Detection and Response (XDR) (6th), Cloud Security Posture Management (CSPM) (15th), Cloud-Native Application Protection Platforms (CNAPP) (11th), Attack Surface Management (ASM) (4th), AI-Powered Cybersecurity Platforms (2nd)
Fortra's Alert Logic MDR
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
11
Ranking in other categories
Vulnerability Management (28th), SOC as a Service (4th), Managed Detection and Response (MDR) (19th)
 

Mindshare comparison

While both are Security Software solutions, they serve different purposes. Darktrace is designed for Network Detection and Response (NDR) and holds a mindshare of 23.6%, down 25.5% compared to last year.
Fortra's Alert Logic MDR, on the other hand, focuses on Vulnerability Management, holds 0.5% mindshare, up 0.2% since last year.
Network Detection and Response (NDR)
Vulnerability Management
 

Featured Reviews

Malebo Lethoba Group - PeerSpot reviewer
Have found the AI analyst and detection functions highly valuable for network operations while managing complexity in initial setup
The functions I find most valuable in Darktrace ( /products/darktrace-reviews ) are the AI analyst as well as the detection.The autonomous response capabilities of Darktrace are not crucial for me because it doesn't work in a network where there are no core switches. In a modern network, the autonomous response doesn't work, especially when sitting in a shared data center.If I'm running a traditional network where I am not in a shared data center with a layer two dedicated for my resources, then it can work for me. However, if I am in a data center where I don't have layer two, it becomes an issue because the autonomous response is reliant on sending spoofed TCP resets to my core switch to block traffic, which is a major issue.
reviewer2191746 - PeerSpot reviewer
It's a highly mature, competitively priced solution that provides total visibility into your ecosystem. FORTRA's Alert Logic has the only Cybersecurity Platform that integrates XDR+WAF+VM+DLP in one.
Alert Logic offers total visibility into the client's IT ecosystem. The solution's intrusion detection system inspects 100 percent of the network packets and installs universal agents on all physical and virtual servers for log collection. Alert Logic also aggregates logs of the client's various 3rd Party security tools into a single pane of glass. All of the analytics from those data feeds got to a 24/7 SOC with sophisticated resources. Alert Logic has massive threat intelligence resources to provide additional context to the incident response declarations. They do all the heavy lifting for clients who lack the technology and resources to operate their own SOC. The client is solely responsible for the incident response component. The macro analytics resides on Alert Logic's cloud. You have the ECM response and business application team on the client side. Everything works in tandem, which is the only way you can deal with the advanced threats we face today, especially the ransomware families. If you don't respond in minutes, you're in trouble.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of Darktrace is its ability to detect and counter threats before they occur."
"The solution can scale."
"The ability to see what we have not seen before is most valuable. It is very interesting to find out the most vulnerable devices in our network."
"The most valuable feature has been the behavioral analytics that allows us to monitor all the traffic."
"I have found the automation and AI features to be valuable. If someone were to come in to the office at midnight and log in, Darktrace would flag it."
"The ability to detect activity on the network is very useful to us. Even if it's not necessarily an illegal activity, if it is abnormal activity, it is able to detect it and notify us."
"It is very stable and easy to use."
"The models, triggers, and alerts are customizable."
"The initial setup is pretty straightforward."
"The quicker implementation of changes to our infrastructure from Alert Logic tell us if there are any problems."
"We receive infrastructure security warnings from it. So, we know what is going on and what needs to be addressed."
"The installation and configuration were slick."
"It improves our security. Before, we didn't have anything scanning our containers. We had software scanning all the physical servers, but we had nothing to scan our containers. With Alert Logic, we can do that."
"Notifications and the detail of notifications are most valuable. It is a user-friendly solution."
"Everything is in one dashboard; I'm notified when there's an incident and advised on what steps to take."
"The most valuable aspect of Alert Logic is its technology platform. They have SOCs in the US and Europe, giving them global visibility of the threat landscape. They detect and respond to threats in minutes. Their biggest value is human expertise. You're being attacked by a human, and you cannot respond to it unless you have a human on the other side. They have the human and technological resources to respond."
 

Cons

"It's a very complex platform."
"Darktrace could improve by being more user-friendly."
"The module can improve so that every time it's more intelligent."
"The main portal needs improvement as it is difficult to use."
"Darktrace should have more automation and integrations with other security monitoring tools."
"Darktrace is a closed technology, meaning we know very little about how it works, including the architecture, which is significant. As a result, when we implement the system and find we're getting many false positives, we have minimal insight into why it's happening and what we can do to fix it. We don't know how the solution is configured, the criteria for threats to be determined, or the product's inner workings. We understand that they have to ensure privacy and their copyright, but we want to see some documentation or public research into the security Darktrace provides."
"Pricing bothers me and this is one of the major factors when choosing a solution."
"I feel that Darktrace could be improved, particularly in the support aspect which is currently very poor. We need to chase Darktrace instead of them being proactive with us."
"Could be more of an endpoint protector."
"As a user involved with the user interface, I believe there is a need to continue improving it based on feedback from our customers."
"This product needs to mature more. While it is a good product, there are some areas where it needs work."
"Its menu is not very intuitive. I would like to see the user menu expanded a bit. The user menu is very layered, and because of the layers, you have to go down a path that is not very intuitive."
"The setup process was complex."
"The documentation, especially with the initial setup, needs improvement."
"I would like to see it do initial scans and start capturing data, which it will truly analyze, not just be a reporting system saying, "Here is an email. Here is an email. Here is an email.""
"They have ideas and email you whatever they find, but they don't have a dedicated security team who will work on an attack or a specific security instance."
 

Pricing and Cost Advice

"The product is expensive."
"The pricing is subscription-based and it is high."
"They are too expensive compared with other vendors."
"It is expensive. I don't have the price for other competitors."
"Darktrace is pricey, but the price is reasonable for what the solution does, and it's comparable to other products."
"The pricing is quite high, estimated at around $350,000 per year."
"It was $3,600 a month or $2,000 plus or so. I am not sure. Its licensing is pretty simple."
"The price of the solution is not cheap. It is not a one-time purchase, there is a subscription that needs to be paid every one to five years depending on your choice. It is expensive but you can reduce the price by only using the services that you want."
"Our ROI would probably be zero. We don't even use it. It sits in there. We get emails and just delete them. Around the world, we don't even use it."
"Alert Logic has better competitive pricing than some of its competitors."
"Its pricing is very reasonable considering what you get for what you pay. There is quite a good value there. Its licensing is also very logical. They've got the licensing price points at a reasonable level. It is on a monthly license but a yearly contract. There are no additional costs to the standard licensing fees."
"Price of the solution was very reasonable considering the size of our organization at the time, and so it worked out perfectly."
"Almost any product that is on the AWS Marketplace is super easy to subscribe to."
report
Use our free recommendation engine to learn which Network Detection and Response (NDR) solutions are best for your needs.
861,481 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
13%
Manufacturing Company
8%
Financial Services Firm
8%
Government
7%
Computer Software Company
21%
Manufacturing Company
11%
Financial Services Firm
10%
Healthcare Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How does Crowdstrike Falcon compare with Darktrace?
Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a cl...
Which is better - SentinelOne or Darktrace?
Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is meant for smaller to medium-sized businesses. It is also a good option for organ...
What do you like most about Darktrace?
A very useful feature in Darktrace for real-time threat analysis is the packet inspection that analyzes the packet traffic in real time.
Ask a question
Earn 20 points
 

Also Known As

No data available
Alert Logic MDR, Alert Logic Managed Detection and ResponseAlert Logic Threat Manager, Alert Logic Cloud Defender, Critical Watch FusionVM
 

Overview

 

Sample Customers

Irwin Mitchell, Open Energi, Wellcome Trust, FirstGroup plc, Virgin Trains, Drax, QUI! Group, DNK, CreaCard, Macrosynergy, Sisley, William Hill plc, Toyota Canada, Royal British Legion, Vitol, Allianz, KKR, AIRBUS, dpd, Billabong, Mclaren Group.
Information Not Available
Find out what your peers are saying about Darktrace vs. Fortra's Alert Logic MDR and other solutions. Updated: May 2020.
861,481 professionals have used our research since 2012.