No more typing reviews! Try our Samantha, our new voice AI agent.

Bitdefender GravityZone Extended Detection and Response (XDR) vs NetWitness NDR comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Endpoint Detection and Response (EDR)
6th
Ranking in Extended Detection and Response (XDR)
4th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
113
Ranking in other categories
Endpoint Protection Platform (EPP) (4th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
Bitdefender GravityZone Ext...
Ranking in Endpoint Detection and Response (EDR)
30th
Ranking in Extended Detection and Response (XDR)
27th
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
8
Ranking in other categories
Network Detection and Response (NDR) (13th)
NetWitness NDR
Ranking in Endpoint Detection and Response (EDR)
59th
Ranking in Extended Detection and Response (XDR)
41st
Average Rating
8.0
Reviews Sentiment
6.9
Number of Reviews
15
Ranking in other categories
Endpoint Protection Platform (EPP) (49th), Threat Intelligence Platforms (TIP) (34th), Security Orchestration Automation and Response (SOAR) (23rd), Network Detection and Response (NDR) (19th)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
reviewer2165952 - PeerSpot reviewer
Company Advisor
Automated protection has reduced our management time and keeps all client environments consistently secure
Reporting in Bitdefender GravityZone Extended Detection and Response (XDR) could be improved. It has some reporting in it, but it's a little cumbersome to work with, so the reporting that is there could be improved. The analytics dashboards of Bitdefender GravityZone Extended Detection and Response (XDR) are quite useful, and they are nice in that we can see an overview very quickly and drill down into specific issues or specific clients. The dashboards are quite good, though it would be nice if we had the same with automated reports. It would be much more useful for us to have that via email or having a report. The only downside that we find is that the product is a little bit slow.
reviewer1799727 - PeerSpot reviewer
Manager, IT Security Operations at a non-profit with 11-50 employees
Reliable and good support but can be expensive
I have no real complaints about the solution. Threat detection could be better. They need to enhance their threat intelligence feeds. We would like to have more IOCs or more trade intelligence to not only rely on the intelligence of the engineer in charge but to have some threat intelligence and some seeds of IOCs and to have the host have some artificial intelligence to reduce the number of false positives. I don't see this solution being very scalable. The solution is pricey.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution's most valuable feature is the user interface."
"The behavior-based detection feature is valuable."
"The integrations are out-of-the-box, as are the playbooks."
"Cortex is the best tool for endpoint detection, and I have used it to verify hashes or domains to identify malicious activity, trigger playbooks that automate and gather endpoint logs, block malicious processes, and update incident tickets, showcasing end-to-end processes with automation in investigation and reducing the analysis workflow."
"The solution allows control over the user and his machine through Cortex XDR security policies."
"Previously, we had to install endpoint protection per machine and then scan and update, but Cortex XDR basically does that centrally and predictably, so we have more time to do day-to-day work rather than spend time chasing those endpoints."
"Palo Alto is one of the tech vendors that always provides top-of-the-line products."
"The most valuable features are incident creation, policy-based protection, IP whitelisting, and device encryption. These are beneficial for endpoint and server security."
"The quarantine computer functionality is very good for me."
"The threat detection rates are exceptionally good, better than most of the competition."
"We moved from Sophos antivirus to Bitdefender GravityZone Extended Detection and Response (XDR), and ever since then, we've been very happy with the product."
"Bitdefender GravityZone Ultra Plus is highly stable."
"The best thing about Bitdefender is that it has got top-notch features and it is not tied to specific countries like some other antivirus tools."
"I find Bitdefender GravityZone Ultra Plus to be a pretty good solution for the mid-level market, specifically for organizations with up to two hundred fifty users. I like that it is an averagely priced solution. It also has a straightforward installation that can be completed within three to five minutes. Its technical support is also good enough."
"We are using Bitdefender GravityZone Ultra Plus for the threat protection and security of our network."
"The product is easy to use."
"I would recommend others to use RSA NetWitness Endpoint at this time because they have evolved from an MD to an EDR solution to an XDR solution."
"RSA NetWitness does market analysis in a more granular form. It gives you full visibility."
"The log correlation is good."
"The solution is scalable; it creates 3,000 lab logs per second, and I think the solution is suitable for large companies or medium to large companies."
"The interface of this solution is very flexible and easy to use."
"The stability of the RSA NetWitness Endpoint is very good."
"It is very easy to use, and its usability is great. The use cases are also very easy. The visualizations of the use cases are magnificent. You cannot find this in any other solution. From my point of view, it is great."
"In my opinion, this is the best platform, world-wide, and I am happy with it."
 

Cons

"The solution should offer more dashboards and they should be better customized."
"The technical support is not very good. I find the process difficult."
"The playbooks could be improved to include more functionalities or actions."
"I would like to see them include NDR (Network Detection Response). Then it would work well with SIEM Response."
"There are some default policies which sometimes affect our applications and cause them to run around."
"I think sometimes Cortex XDR agent automatically stops event capturing from the device, and then even the dashboard does not get any notifications from the agent."
"It takes time to scan the servers and devices."
"Palo Alto Networks Cortex XDR does not detect malicious activity like in other anti-virus solutions like Trend Micro and Windows with Cisco."
"I would like automatic issue fixing for users without needing to physically open the PC. I'd prefer updates and fixes from the cloud to avoid headaches and save time."
"The solution must improve its management features."
"Some customers would like additional features that aren't available through the current GravityZone platform. Some feedback has been about the deletion of other software not going smoothly during the installation of Bitdefender, particularly the removal of previous software like Sophos."
"Detection and response is a disadvantage that could be improved."
"Reporting in Bitdefender GravityZone Extended Detection and Response (XDR) could be improved."
"The solution seems to be pretty amateur for an EDR solution, and it should be more in sync in terms of features, with solutions such as FireEye and SentinelOne."
"Adding a feature like Data Loss Prevention would be beneficial."
"I would like to see Security Orchestration and Response Automation (SOAR) integration."
"The problem with this product is that it's a bit slow."
"The initial setup requires a high level of skill, then the setup is good and smooth."
"The integration of the solution needs to be improved. The dashboard needs lots of updates as well. In the next release, we would like to see advanced fraud detection features."
"One of the drawbacks of using this product is that when you deploy, you have to create MSI files."
"The contamination feature could be improved."
"The threat intelligence could improve in RSA NetWitness Endpoint."
"The solution doesn't have a reporting engine which would be helpful."
 

Pricing and Cost Advice

"Every customer has to pay for a license because it doesn't work with what you get from a managed services provider."
"It's way too expensive, but security is expensive. You pay for your licensing, and then you pay for someone to monitor the stuff."
"The price was fine."
"Our customers have expressed that the price is high."
"Cortex XDR by Palo Alto Networks is quite an expensive solution."
"The price of the product is not very economical."
"I don't recall what the cost was, but it wasn't really that expensive."
"It has reasonable pricing for the use cases it provides to the company."
"We have purchased licenses for the use of Bitdefender GravityZone Ultra Plus. The price of the solution is reasonable but could be better."
"Bitdefender GravityZone Ultra Plus is pretty average, meaning it's not cheaper, but it's pretty good. It has average pricing."
"With RSA, there is flexibility in choosing the service, products, and the range that meets your requirement, as well as they are flexible in terms of pricing."
"They can easily adjust if you have the requirements which are required. If you have a budget cut or a budget constraint, they can bend."
"The pricing is not very economical. It is a quite costly product for India. One thing is that when you purchase it, you have to purchase a module separately."
"It is an expensive product."
"NetWitness Endpoint is less costly than its competitors, but it offers fewer features."
"The cost depends on the number of endpoints that you want to monitor, but it is not expensive."
"I do not have any opinion on the pricing or licensing of the product."
"The price of the solution depends on the environment. If the environment is large then it will cost more. However, the larger the environment with more endpoints, you will receive an increased discount. If the environment is very small, then you might think it is expensive. It is always better to buy in bulk to receive a discount. The minimum number of assets is usually 500, with discounts on 1000 and 2000."
report
Use our free recommendation engine to learn which Network Detection and Response (NDR) solutions are best for your needs.
902,894 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Construction Company
14%
Comms Service Provider
13%
University
7%
Manufacturing Company
6%
Financial Services Firm
12%
Manufacturing Company
9%
Construction Company
8%
Computer Software Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise52
By reviewers
Company SizeCount
Small Business6
Large Enterprise1
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise2
Large Enterprise6
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What is your experience regarding pricing and costs for Bitdefender GravityZone Ultra Plus?
The pricing and licensing of Bitdefender GravityZone Extended Detection and Response (XDR) is reasonable. We moved fr...
What needs improvement with Bitdefender GravityZone Ultra Plus?
Reporting in Bitdefender GravityZone Extended Detection and Response (XDR) could be improved. It has some reporting i...
What is your primary use case for Bitdefender GravityZone Ultra Plus?
Our customers typically use Bitdefender GravityZone Extended Detection and Response (XDR) primarily as an antivirus s...
Ask a question
Earn 20 points
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
GravityZone Ultra Plus
RSA ECAT, NetWitness Network
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Archdiocese, Northstar, SeSa, W&W Informatik, Yamaha Motor Europe
ADP, Ameritas, Partners Healthcare
Find out what your peers are saying about Bitdefender GravityZone Extended Detection and Response (XDR) vs. NetWitness NDR and other solutions. Updated: June 2026.
902,894 professionals have used our research since 2012.