Try our new research platform with insights from 80,000+ expert users

Cisco Secure IPS (NGIPS) vs ExtraHop Reveal(x) comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
6.7
Cisco Secure IPS effectively detects threats and integrates with NIST, yielding positive ROI despite setup costs and financial quantification challenges.
Sentiment score
6.5
ExtraHop Reveal(x) enhances MTTR and ROI by swiftly identifying issues, benefiting finance firms but costly for healthcare.
 

Customer Service

Sentiment score
7.2
Cisco Secure IPS customer service is praised for expertise but noted for inconsistent response times and initial contact challenges.
Sentiment score
7.6
Users highly rate ExtraHop Reveal(x) support for reliable, knowledgeable, and efficient issue resolution, despite occasional time zone delays.
Fortinet, on the other hand, offers quicker response times and same-day RMAs, which gives them an edge in customer service.
A few years ago, I had a very bad situation. We lost a lot of money, and I opened for the first time in my life, a case with priority one. The person responsible for the ticket didn't respond for two days.
The response was fast, and they provided experts to solve our issues quickly.
I would rate their technical support nine out of ten.
 

Scalability Issues

Sentiment score
7.0
Cisco Secure IPS scalability varies; effective for large environments but may need upgrades for extensive user capacity.
Sentiment score
6.5
ExtraHop Reveal(x) is scalable and manages up to 100GB, though cost and upgrades may pose challenges for some users.
 

Stability Issues

Sentiment score
7.5
Cisco Secure IPS is stable but has bugs; continuous improvements are needed to compete with Fortinet and Palo Alto.
Sentiment score
7.5
ExtraHop Reveal(x) is highly stable and reliable, consistently performing well with regular updates, despite minor hardware issues.
The software situation with Cisco is problematic.
 

Room For Improvement

Cisco Secure IPS needs better SIEM integration, user interface, stability, reporting, scalability, pricing, support, and cloud and endpoint integration.
ExtraHop Reveal(x) needs improvements in integrations, flexibility, reporting, pricing, and cloud capabilities, while offering better training options.
Incorporating AI capabilities would enhance its functionality.
Graphical interfaces are very nice, but when you've got thousands of objects in a big installation and have to configure many things, CLI is a much faster way to do it.
Currently, we have to check manually as we do not receive any notifications about new patches, maintenance, or firmware releases.
I would like to see improvements in areas where events are getting dropped; we're not able to view complete insights.
 

Setup Cost

Cisco Secure IPS is costly, especially versus competitors, with pricing influenced by features, support, and potential bundling discounts.
Enterprise buyers find ExtraHop Reveal(x) costly, with escalating costs for scaling and specific features, despite robust capabilities.
It's cheaper to integrate with existing IT security solutions compared to other expensive brands with subscription costs.
 

Valuable Features

Cisco Secure IPS provides robust protection with strong integration, intelligence, and ease of use for comprehensive cybersecurity measures.
ExtraHop Reveal(x) offers seamless integration, powerful analytics, and machine learning for effective threat detection and comprehensive network visibility.
Cisco Secure IPS (NGIPS) is quite powerful for threat detection and includes botnet detection.
They can discover new versions of malware, which is very beneficial.
If I want to know a specific IP and which server it has been connected to, it's easy to gather those kinds of trees from the NDR.
The solution offers a friendly GUI for security features.
 

Categories and Ranking

Cisco Secure IPS (NGIPS)
Average Rating
8.0
Reviews Sentiment
6.7
Number of Reviews
69
Ranking in other categories
Intrusion Detection and Prevention Software (IDPS) (10th)
ExtraHop Reveal(x)
Average Rating
8.6
Reviews Sentiment
7.1
Number of Reviews
15
Ranking in other categories
Network Traffic Analysis (NTA) (3rd), Network Detection and Response (NDR) (4th)
 

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Cisco Secure IPS (NGIPS) is designed for Intrusion Detection and Prevention Software (IDPS) and holds a mindshare of 4.5%, up 4.2% compared to last year.
ExtraHop Reveal(x), on the other hand, focuses on Network Traffic Analysis (NTA), holds 15.1% mindshare, down 18.0% since last year.
Intrusion Detection and Prevention Software (IDPS) Market Share Distribution
ProductMarket Share (%)
Cisco Secure IPS (NGIPS)4.5%
Darktrace18.0%
Vectra AI10.6%
Other66.9%
Intrusion Detection and Prevention Software (IDPS)
Network Traffic Analysis (NTA) Market Share Distribution
ProductMarket Share (%)
ExtraHop Reveal(x)15.1%
Darktrace24.4%
Cisco Secure Network Analytics15.3%
Other45.2%
Network Traffic Analysis (NTA)
 

Featured Reviews

Yosevan Sinaga Sinaga - PeerSpot reviewer
Effectively identifies malicious behavior while future automation and AI advancements hold potential
Cisco Secure IPS (NGIPS) is quite powerful for threat detection and includes botnet detection. It effectively blocks unwanted software, hashes, and suspicious behaviors. The tool is easy to integrate with other IT security solutions due to similar protocols. The system offers effective threat detection features, although automation capabilities are not yet fully utilized.
Henri Heuvel - PeerSpot reviewer
Cloud-based administration streamlines network security management
ExtraHop Reveal(x) can improve regarding integration capabilities. For instance, the market is getting really flooded with Microsoft Sentinel, and I know there is an integration possible, but the tools on the market right now indicate that integration should not be a skill from an integrator point of view. It should be quite easy for customers to integrate that solution into SOCs, SIEMs, or any other integration with other tools. There are various integrations from which there's a manual on how to do it, but specifically, the Microsoft portfolio, particularly Sentinel, integration is not yet there. If you score them on a scale of one to ten, ExtraHop scores around a 7.5 to an 8 on an integration basis, but there's actually room for improvement on that side. In the older days, ExtraHop had a license model where you could do all you can eat, so if you had a sensor with 10 gig of capacity, you could use all the entire 10 gig of throughput. They changed that to an asset-based license model, and that's an absolute downside of the solution, where it is harder for smaller companies to acquire the solution itself. That has given us quite some problems in positioning the solution properly within the network, so the licensing model is an absolute downside where they need to improve.
report
Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
866,561 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
University
16%
Computer Software Company
12%
Comms Service Provider
7%
Educational Organization
7%
Financial Services Firm
16%
Computer Software Company
12%
Healthcare Company
7%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business26
Midsize Enterprise17
Large Enterprise26
By reviewers
Company SizeCount
Small Business3
Midsize Enterprise4
Large Enterprise9
 

Questions from the Community

What do you like most about Cisco NGIPS?
The product's initial setup phase was easy.
What is your experience regarding pricing and costs for Cisco NGIPS?
Cisco is one of the top brands known for cost-effectiveness, making it worth the money. It's cheaper to integrate with existing IT security solutions compared to other expensive brands with subscri...
What needs improvement with Cisco NGIPS?
In the future, I hope to see automation features like automatic blocking and rule creation. Additionally, incorporating AI capabilities would enhance its functionality.
What is the best network monitoring software for large enterprises?
We just did an assessment for our 47 datacenters around North America. The top two enterprise-level network monitoring solutions were ExtraHop first, Riverbed SteelCenter second. Their negotiated c...
What open source tool can one use to measure bandwidth from one's upstream service provider?
One I am looking closely at is AppNeta. They have an appliance that can digest the flow and do a better job than Netflow. The other one we are using is ExtraHop. This has both a Datacenter Hig...
What do you like most about ExtraHop Reveal(x)?
With ExtraHop Reveal(x), it gives me more visibility into the packets. It doesn't provide the entire packet capture, but it offers more information on how connections are made at the network layer....
 

Also Known As

Sourcefire NGIPS, Firepower NGIPS
Reveal(x), Revealx
 

Overview

 

Sample Customers

American Electric Power, Huntington Bank, Keycorp, Nationwide, Transunion, Marriott, Inova Health, Ford, Thomson Reuters, Dow Chemical, Equifax, Chevron, Walmart, Coca Cola
Wood County Hospital
Find out what your peers are saying about Darktrace, Check Point Software Technologies, Fortinet and others in Intrusion Detection and Prevention Software (IDPS). Updated: August 2025.
866,561 professionals have used our research since 2012.