No more typing reviews! Try our Samantha, our new voice AI agent.

Binary Defense MDR vs Darktrace comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Binary Defense MDR
Average Rating
9.2
Reviews Sentiment
7.7
Number of Reviews
16
Ranking in other categories
Managed Detection and Response (MDR) (15th)
Darktrace
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
84
Ranking in other categories
Email Security (10th), Intrusion Detection and Prevention Software (IDPS) (2nd), Network Traffic Analysis (NTA) (1st), Network Detection and Response (NDR) (1st), Extended Detection and Response (XDR) (7th), Cloud Security Posture Management (CSPM) (10th), Cloud-Native Application Protection Platforms (CNAPP) (9th), Attack Surface Management (ASM) (4th), AI-Powered Cybersecurity Platforms (5th), AI Observability (6th)
 

Mindshare comparison

Binary Defense MDR and Darktrace aren’t in the same category and serve different purposes. Binary Defense MDR is designed for Managed Detection and Response (MDR) and holds a mindshare of 1.3%, up 0.6% compared to last year.
Darktrace, on the other hand, focuses on Network Detection and Response (NDR), holds 14.1% mindshare, down 23.7% since last year.
Managed Detection and Response (MDR) Mindshare Distribution
ProductMindshare (%)
Binary Defense MDR1.3%
SentinelOne Wayfinder Threat Detection and Response6.8%
CrowdStrike Falcon Complete MDR5.4%
Other86.5%
Managed Detection and Response (MDR)
Network Detection and Response (NDR) Mindshare Distribution
ProductMindshare (%)
Darktrace14.1%
Vectra AI10.3%
ExtraHop Reveal(x)5.8%
Other69.8%
Network Detection and Response (NDR)
 

Featured Reviews

reviewer2588769 - PeerSpot reviewer
Cybersecurity Architect, Information Technology Division at a healthcare company with 1,001-5,000 employees
Phenomenal response time and good handling of context in our diverse environment
We are going to have a meeting with them the following Monday. It will be our first quarterly business review. Half of it is going to be looking at new products and new functions that they are bringing out. So far, I do not have anything negative or a concern. There were two small mistakes that the technician made, and they were remedied immediately. Once we brought them to their attention, they were remedied. I do not have any complaints. They were just simple mistakes that anybody could make, and their response was a positive response. So far, I have not had anything negative to say. The only area for improvement that I can think of relates to statistical analysis for SLAs. They are in the middle of moving to a new product called D3 which is going to do some backend work for them. I know they are working to improve some of the help desk statistics, such as the time the tickets open and the time they are closed. They are working on that function. It is going to be resolved in the next month or two. We have service level agreements with them, but they can use improved statistics for service level agreements. This is the only point of improvement I can identify.
Pasan Jayarathna - PeerSpot reviewer
Network Security Engineer at Cyberwell Solution
Monitoring has improved data loss detection and now spots abnormal internal file transfers quickly
In my understanding, the best feature Darktrace offers is the identification of copying files, which acts as a DLP, and it is a main concern for companies because users sometimes copy data outside without knowing, especially those without a technical background. When I mention the DLP-like feature and file copying detection, the alerts have been very timely, as we get an alert within a couple of minutes, which is excellent. Even if some developers are working after hours and copying files, our SOC team detects this, and most of the time they call us so we can identify the users. The alerts are quite accurate and proactive.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Binary Defense has a human service department that provides live monitoring for our systems."
"Among the valuable features are the agent, continuous reporting, and dashboard. It has all the features we need and we haven't had to customize it, other than turning on certain features that we wanted."
"The speed at which their services are reactive is valuable. Nowadays, when a threat hits an endpoint, you've got minutes, not hours or days. Their average response time is about four minutes on an alert. For anything that needs to be sent to us, it's about fourteen minutes, which is pretty good. They're the third SOC that I've used in fifteen years. By far, they are the quickest ones to act. When you're looking at prevention, that's a key factor."
"In the six months we have been with Binary Defense on this, they run with the ball. They take care of our problems. When we get a ticket, they do not just give us a report."
"The most valuable features are the SIEM and the ticketing function; the latter is very smooth and easy to read and understand. We don't have any issues looking at the ticketing information when we're trying to identify what's going on."
"The biggest aspect for us is that they are able to conform to our environment and utilize our tools. That way, we still maintain ownership of all the data and access to the applications, and we never lose control of the ability to run the solution ourselves if we need to."
"Binary Defense is comprehensive. We see most of the questionable activity. Once you see things a couple of times and are familiar with the processes, you know what those are. The level of activity is definitely favorable."
"The customization has been the most valuable aspect and was really the reason we ended up selecting Binary Defense. They worked with us to provide exactly the level of support, features, response, and collaboration we needed."
"The models, triggers, and alerts are customizable."
"The most valuable feature of Darktrace and the most valuable feature is the artificial intelligence module because that is the tool that determines automatically if there is any risk or not in the network."
"This solution can reduce the resources required to run a security operation center by two-thirds."
"The features that are most valuable to me include detection, response with analytics, and network detection."
"Darktrace played an important role in the security detection strategy by reducing the time lost in detecting, analyzing, and incident resolving."
"The most valuable feature is the solution's ability to trim out the false positives and point your attention to the real important stuff."
"Implementing this solution has given us confidence that we are secure."
"I have found the most valuable features to be artificial intelligence for cybersecurity, advanced machine learning capabilities, enterprise Immune System, Antigena Network, and Antigena Email. The way the solution detects the threat over the network before it spreads is very good. It notifies you of what the threat is exactly doing and gives you all the details about the execution of that application that had created the threat over your network."
 

Cons

"Binary Defense MDR could be even better with additional features, like automatic scans and file quarantine."
"The most significant area for improvement is in support for non-English speakers; we're a global organization, so many of our users are not English speakers, which can make interacting with them a challenge. There's no Chinese language support, so we must rely on what we can do with the internet. We don't expect Binary Defense to build a language staff, but details can get lost in translation when we assume the whole world speaks English."
"It's hard to think of anything that they need to improve on, but just to point out something, I would like to see them provide advanced XDR."
"We found a couple of bugs in the user interface."
"While my understanding is that they're working on this, I would like to see some more of the quantification or reporting."
"The only area for improvement that I can think of relates to statistical analysis for SLAs. They are in the middle of moving to a new product called D3 which is going to do some backend work for them. I know they are working to improve some of the help desk statistics, such as the time the tickets open and the time they are closed."
"The current reporting system could benefit from improvement."
"We should be able to isolate devices faster. They should shorten the time between clicking on a device to contain it and carrying out the action. That would be a welcome improvement."
"Upper management wasn't sold on the value proposition."
"It is expensive, but everything else has been great so far."
"The solution can improve the reporting. Currently, it only runs weekly and the reporting is complex."
"It takes time to go through the interface and pick up things. If it were a more straightforward interface, then it would free up time."
"Updates keep coming, which is great, but I prefer a unified UI experience. The intelligence section and the incident view should be seamlessly connected in one view to avoid jumping between pages."
"I believe their network monitoring device licensing module could use some improvement."
"The price point for the product was too high for what our possible use case could be."
"The solution's user interface and stability could be improved."
 

Pricing and Cost Advice

"The solution's price is spot on; if anything, it's slightly below the norm for most services. Compared to building the same team internally, it would cost more to create the same amount of capability than what we get from an external team. Price-wise, Binary Defense is in a great spot."
"It's valued at the right price. Even with the number of endpoints we have, we don't feel that it's a lot more than any competitor. In fact, it might be less expensive when you look at the fact that you're getting a full flex SOC out of it along with the tools."
"It has been good. We have saved money, and we have a better product."
"Binary Defense MDR is priced competitively and may be slightly lower than CrowdStrike."
"Binary Defense has changed its pricing model from being primarily based on the volume of data to one based on escalations and incidents they handle."
"After we acquired this platform, we met with a number of different vendors. Binary Defense came in with a proposal that was surprisingly affordable. In fact, we were able to recoup the cost of their services within a short period of time. This is because Binary Defense is able to provide the same level of security as a team of two or three in-house analysts but at a fraction of the cost. As a result, Binary Defense is saving us an estimated $250,000 to $300,000 per year."
"The pricing isn't that bad, it's very competitive. I don't feel that it's over-priced and I don't feel that it's under-priced."
"From the initial cost that Binary Defense came in with, we pared it down quite a bit over the course of 30 or 60 days. My leadership would say that their cost was high, but realistically, they were in line with the market."
"There is an annual license to use Darktrace."
"It was $3,600 a month or $2,000 plus or so. I am not sure. Its licensing is pretty simple."
"The cost is moderate."
"The pricing is quite high, estimated at around $350,000 per year."
"I'm unfamiliar with the exact cost, but we have a yearly license and had to pay for Darktrace's services before the deployment. The product is very expensive, so some organizations can't afford to pay the total amount directly, meaning they often seek a partner or pay in installments, which increases the price more."
"It's an expensive solution."
"Our customers feel that the price of Darktrace is quite high compared to other solutions."
"They are too expensive compared with other vendors."
report
Use our free recommendation engine to learn which Managed Detection and Response (MDR) solutions are best for your needs.
904,146 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
8%
Insurance Company
8%
Manufacturing Company
6%
Manufacturing Company
10%
Financial Services Firm
9%
Computer Software Company
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise4
Large Enterprise7
By reviewers
Company SizeCount
Small Business44
Midsize Enterprise20
Large Enterprise29
 

Questions from the Community

What is your experience regarding pricing and costs for Binary Defense MDR?
It has been good. We have saved money, and we have a better product. We are a company that has become an enterprise from a small medium business in two years. Our company passed a certain dollar ma...
What needs improvement with Binary Defense MDR?
We are going to have a meeting with them the following Monday. It will be our first quarterly business review. Half of it is going to be looking at new products and new functions that they are brin...
What is your primary use case for Binary Defense MDR?
They co-manage our Sentinel SIEM instance, and they provide a Security Operations Center (SOC) with 24/7 coverage. They perform research and remediation. They have a separate team for phishing. Tha...
How does Crowdstrike Falcon compare with Darktrace?
Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a cl...
Which is better - SentinelOne or Darktrace?
Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is meant for smaller to medium-sized businesses. It is also a good option for organ...
What is your experience regarding pricing and costs for Darktrace?
Concerning pricing for the product, I would say it is somewhat expensive.
 

Also Known As

Binary Defense Vision, Binary Defense Managed Detection and Response, Binary Defense Managed Detection & Response
No data available
 

Overview

 

Sample Customers

Securitas USA, Black Hills Energy, Lincoln Electric,The J.M. Smuckers Company, New York Community Bank, State of Connecticut, NCR
Irwin Mitchell, Open Energi, Wellcome Trust, FirstGroup plc, Virgin Trains, Drax, QUI! Group, DNK, CreaCard, Macrosynergy, Sisley, William Hill plc, Toyota Canada, Royal British Legion, Vitol, Allianz, KKR, AIRBUS, dpd, Billabong, Mclaren Group.
Find out what your peers are saying about Huntress, CrowdStrike, SentinelOne and others in Managed Detection and Response (MDR). Updated: June 2026.
904,146 professionals have used our research since 2012.