We performed a comparison between Avanan and Darktrace based on real PeerSpot user reviews.
Find out in this report how the two Email Security solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature of Microsoft Defender for Office 365 is the ease of use."
"The most valuable feature is protection against malicious links, fishing, and impersonation. You can train people to be aware of these threats, but they're not always careful. When they're using their phones between meetings, they click on a link, and it's game over."
"Microsoft Defender has a feature to protect each and every attachment. Even if it's an encrypted attachment, it will check for any potential threats."
"Defender enables us to secure all 365-related activity from a single place. It gives us visibility into everything happening in Outlook, protecting us against phishing and other email-based threats. Defender helps us detect any suspicious behaviors."
"The initial setup is straightforward. You just add the license, click it, and then you can set up the rules. It is quite simple."
"The most valuable feature is the integration. It's a single console, so we don't have to switch around between multiple products. Another valuable feature is the ease of operations and maintenance."
"Defender is a SaaS platform, so it offers more flexibility. Managing the permissions is easier. The solution's automated detection and response features are scalable."
"The good part is that you don't have to configure it, which is very convenient."
"It can retract unsafe emails and remove them from the entire communication channel."
"It is simple to deploy this platform and interact with the set features."
"Email inspection has saved many employees from spam attacks and viruses from unauthorized sources."
"The ease of installation and the AI capacity of the product are valuable."
"The integration with all our existing and new applications is great."
"Easy to use for non-technical users."
"Avanan is a stable software. My company hasn't faced any issues, bugs, or problems with the performance of Avanan."
"I like Avanan's SmartDLP module. It's seamless, and the administrative overhead is low. We aren't a very sophisticated operation. We just want to reduce our exposure, so we find ThreatCloud helpful. Avanan's acquisition by Check Point was beneficial for them."
"I like the Antigena feature in Darktrace, as it offers immediate response and is helpful."
"Technical support is helpful and responsive."
"The most valuable features of Darktrace are the tracing of unusual external emails and monitoring the local network."
"What I like about Darktrace, is that you can quickly identify threats."
"We are able to detect a lot of things, actually, and see what is happening in our network."
"I like the dashboards, which are cool. They are more user-friendly, in my experience. Its learning capabilities are really good."
"A very useful feature in Darktrace for real-time threat analysis is the packet inspection that analyzes the packet traffic in real time."
"We liked their approach to identifying intrusions or network anomalies using AI."
"You should be able to deploy Defender for every subscription without the need to add servers."
"There's room for improvement regarding the time frame for retrieving emails."
"In one of the reports I can get the exact place where a vulnerable file resides. But for that, I need to explicitly go into the device and check. If they could include that file part in the report, without my having to go to the device itself, that would help."
"The phishing and spam filters could use some improvement."
"The only thing they should improve is the licensing model. They should stop changing it. A year ago, the five features I mentioned were included in one product. Now, three of them are bundled into one product, and you have to pay extra for the other two. I don't mind paying extra, but I don't want them to change it every year or every six months. I need to know what I'm looking at and not worry about it next year."
"Microsoft Defender for Office 365 should improve the troubleshooting tools. It's unclear whether the device is blocked at the firewall level or at the device itself. The granularity needed for troubleshooting is currently lacking. From my perspective, Microsoft should address this issue to benefit many users who likely share the same sentiment."
"There is room for improvement with the UI."
"About eight months ago, we started to measure the quantity of phishing and spam that we have been receiving, and it has been increasing a lot. That means that protection for our email is not as good as we were expecting."
"The cost can be reviewed to enable SMEs to acquire it and enjoy great security features."
"Being cloud first and because we are in the movie business, we use a lot of Macintoshes. So, there is absolutely no reason for us to have Active Directory whatsoever. However, if you are using Office 365, you must have Active Directory in order to reset passwords. Even though we have a single sign-on provider, we must have Azure Active Directory for Office 365, which is really stupid. As a cloud application, you would think that I don't need Active Directory, which I don't need for anything else except Office 365. We have one server inside that space to help us manage Active Directory just for Office 365. This is a very sore point, but it is what it is."
"The user experience must be improved."
"It is very difficult to find the required documentation."
"It is complicated for new users unfamiliar with the modern cloud networking infrastructure."
"The unified dashboard that it displays needs some improvements in terms of the KPIs that they have."
"Sometimes it seemed like the allow list wasn't working. I've created many allow list rules however, they still seem to be blocked; the same is true with the blocked list rules."
"In Avanan, the email channel is one of the channels where data leakage happens, and they need to consider it from a DLP perspective."
"They just need to work on their price. In terms of features, we are trying to understand all the features that we have. We're still exploring everything that we have so that we can fully utilize it. At this point in time, it is not about the features. It is more about utilization. We're just trying to utilize everything to full capacity."
"One thing I would like is for Darktrace to flag SMB traffic more accurately. Currently, it only flags that SMB traffic has occurred, but it doesn't specify which file was being transferred. This makes it difficult to investigate incidents involving SMB traffic, as we don't have concrete evidence of what was being sent."
"Its documentation is not up to the mark. At times, I have a lot of trouble finding a solution. Even when I posted questions on the community chats, it took a lot of time for me to get answers. That's something that can be improved. Darktrace can focus on creating a more interactive community. If there are more people from Darktrace to focus on community chats, it would be better."
"This is quite an expensive product so the pricing is something that can be improved."
"In terms of improvements, fine-tuning is the area where we have to spend some time because it works on unsupervised machine learning. It would be good if they can improve their algorithm or technical functionality to reduce the fine-tuning effort. They can also come up with something at the endpoint level. So far, Darktrace has been a network detection response (NDR) solution. It does not offer much at the endpoint level or on user-client devices or servers. There should be more visibility at the endpoint level. It would be good to have the detection and response at the endpoint level by Darktrace. It should also have integration with an agile environment so that we can have continuous development and continuous integration in the application development environment. This is currently not there. It should also have internet-facing platform visibility, which is currently missing. They also need to improve the reporting and management dashboards. Currently, these are not so easy for a non-technical person. All these features would make Darktrace much better, and they would also be helpful in selling more solutions."
"Darktrace is a closed technology, meaning we know very little about how it works, including the architecture, which is significant. As a result, when we implement the system and find we're getting many false positives, we have minimal insight into why it's happening and what we can do to fix it. We don't know how the solution is configured, the criteria for threats to be determined, or the product's inner workings. We understand that they have to ensure privacy and their copyright, but we want to see some documentation or public research into the security Darktrace provides."
"The product doesn't have an endpoint agent that can react to triggers set on the device,"
"Darktrace could improve its features, such as monitoring and detecting ransomware."
More Microsoft Defender for Office 365 Pricing and Cost Advice →
Avanan is ranked 6th in Email Security with 21 reviews while Darktrace is ranked 13th in Email Security with 65 reviews. Avanan is rated 9.2, while Darktrace is rated 8.2. The top reviewer of Avanan writes "We've noticed a significant decline from people accidentally or intentionally clicking on things". On the other hand, the top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". Avanan is most compared with Check Point Harmony Email & Collaboration, IRONSCALES, Perception Point Advanced Email Security, Abnormal Security and Mimecast Email Security, whereas Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and Cisco Secure Network Analytics. See our Avanan vs. Darktrace report.
See our list of best Email Security vendors.
We monitor all Email Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.