Coming October 25: PeerSpot Awards will be announced! Learn more

Cisco Sourcefire SNORT vs Darktrace comparison

Cancel
You must select at least 2 products to compare!
Cisco Logo
3,664 views|2,770 comparisons
Darktrace Logo
48,339 views|31,433 comparisons
Comparison Buyer's Guide
Executive Summary

We performed a comparison between Cisco Sourcefire SNORT and Darktrace based on real PeerSpot user reviews.

Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Cisco Sourcefire SNORT vs. Darktrace report (Updated: September 2022).
633,184 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"It is quite an intelligent product.""Cisco Sourcefire SNORT is easy to configure and the reporting is great. It's also very user-friendly."

More Cisco Sourcefire SNORT Pros →

"The main valuable feature is that we don't need a lot of analysts. With few analysts, we have all the network monitored, 24/7.""The product offers us a very good user interface and we've found the network visibility to be very good so far.""Darktrace is very useful for us because it has a large number of models for detecting threats.""The ability to see what we have not seen before is most valuable. It is very interesting to find out the most vulnerable devices in our network.""It is very stable and easy to use.""We are able to detect a lot of things, actually, and see what is happening in our network.""The models, triggers, and alerts are customizable.""It's a very stable product."

More Darktrace Pros →

Cons
"I did not experience any pain points that required improvement. Maybe a couple of false-positives, but that's about it.""The implementation could be a bit easier."

More Cisco Sourcefire SNORT Cons →

"In an upcoming release, there could be more customizable playbooks or a library of playbooks to choose from.""I would like to see more protection in the endpoint. Especially because we have a lot of people using VPNs. If they would improve end point security, it would give more control there.""Darktrace requires numerous configurations. It would be beneficial if the configuration could be made simpler.""There aren't so many third-party vendor platforms natively integrated with the platform.""It is expensive, but everything else has been great so far.""In the next version, I'd like to see penetration testing.""The initial setup is more complex and time-consuming than some solutions.""The solution can improve the reporting."

More Darktrace Cons →

Pricing and Cost Advice
Information Not Available
  • "Our customers feel that the price of Darktrace is quite high compared to other solutions."
  • "The pricing is very flexible for Darktrace. Sometimes, a customer does not have the appropriate budget, but Darktrace can handle that. They offer monthly payments, so the customer can acquire the solution very easily."
  • "When it comes to large installations, it can be expensive, but for small accounts it's fine."
  • "It is a very expensive product."
  • "It is expensive. I don't have the price for other competitors."
  • "This solution is expensive."
  • "The price of the solution is not cheap. It is not a one-time purchase, there is a subscription that needs to be paid every one to five years depending on your choice. It is expensive but you can reduce the price by only using the services that you want."
  • "It was $3,600 a month or $2,000 plus or so. I am not sure. Its licensing is pretty simple."
  • More Darktrace Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
    633,184 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:Cisco Sourcefire SNORT is easy to configure and the reporting is great. It's also very user-friendly.
    Top Answer:We bought the appliance, which comes with a license as well. While I don't know the exact pricing, most of these products are through subscription. In our case, we bought the complete appliance with… more »
    Top Answer:I did not experience any pain points that required improvement. Maybe a couple of false-positives, but that's about it.
    Top Answer:Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a… more »
    Top Answer:Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is meant for smaller to medium-sized businesses. It is also a good option for… more »
    Top Answer:The most valuable feature has been the behavioral analytics that allows us to monitor all the traffic.
    Ranking
    Views
    3,664
    Comparisons
    2,770
    Reviews
    2
    Average Words per Review
    700
    Rating
    7.5
    Views
    48,339
    Comparisons
    31,433
    Reviews
    27
    Average Words per Review
    439
    Rating
    8.3
    Comparisons
    Also Known As
    Sourcefire SNORT
    Learn More
    Overview

    Snort is an open-source, rule-based, intrusion detection and prevention system. It combines the benefits of signature-, protocol-, and anomaly-based inspection methods to deliver flexible protection from malware attacks. Snort gained notoriety for being able to accurately detect threats at high speeds.

    Darktrace is a world leader in Autonomous Cyber AI and offers several different desirable tools available to provide a wide array of outstanding support and superior threat security. Darktrace works with many different popular solutions, such as Microsoft 365, Azure, AWS, and many more.

    Darktrace offers many different products to keep every type of business enterprise safe.

    Darktrace’s Enterprise Immune System is uniquely designed to learn the status quo of your operating system and is thereby quickly able to discover any anomalies, abusive behavior, and potential cyber threats and stop them immediately before there is any threat to your organization. With Darktrace’s Enterprise Immune System, you have complete transparency across your entire operational system. Darktrace utilizes intuitive self-learning to discover potential new known attacks externally and also locate any internal threats. Darktrace is intuitively self-adapting and will quickly learn the best way to keep your critical systems safe at all times, even as your business changes and grows.

    Darktrace offers an Industrial Immune System, which is specifically designed to understand the unique technologies of industrial systems and aggressively protect the integrity and durability of those ecosystems. You will get full transparency of OT, IT, and industrial IoT.

    Darktrace Antigena combines the best of the Autonomous Response technology to keep your enterprise ecosystems safe at all times. Darktrace Antigena has the decision-making ability to easily identify suspicious behavior and can stop in-progress threats such as cyber-attacks, ransomware, and threats to your cloud or proprietary infrastructure. Darktrace Antigena will provide protection to keep your systems safe and avoid any downtime or negative impact on your organization's productivity.

    Darktrace Cyber AI Analyst works as an investigative solution that instantly rates, interprets, and reports on the entire range of potential security threats. Darktrace Cyber AI Analyst uses an intuitive analysis process to investigate 100% of all potential threats. Each and every threat is rated and a response plan is created to direct your teams on the best possible course of action needed to immediately resolve the issue. Darktrace AI Analyst also handles Zero-day malware and ransomware. The automated threat investigation can work faster to develop a plan, follow issues, and investigate than any human component. Darktrace AI will save time and money by adding an additional supplemental layer of security to your organization.

    Darktrace provides outstanding enterprise-wide cyber defense to more than 5,500 organizations worldwide that rely on Darktrace daily to keep their business ecosystems running at maximum efficiency and productivity without any unplanned downtime within the overall business operation. Darktrace has a super-fast, machine-speed defense supported by the unique Autonomous Response that can take some of the pressure off of your security team and at the same time mount an aggressive fightback continuing to develop a safer defense every day.

    Reviews from Real Users

    Imad A., Group IT Manager at a manufacturing company, says, “"I have found the most valuable features to be artificial intelligence for cybersecurity, advanced machine learning capabilities, enterprise Immune System, Antigena Network, and Antigena Email. The way the solution detects the threat over the network before it spreads is very good. It notifies you of what the threat is exactly doing and gives you all the details about the execution of that application that had created the threat over your network."

    A Security Engineer at a real estate/law firm states, "The Antigena feature is most valuable. Once it learns your environment, Antigena can step in and block a denial of service attack, a ransomware attack, or just about anything that doesn't belong in the environment. It can detect any type of attack that hits the environment because it understands what normal looks like for the network. It is very useful for an autonomous response."







    Offer
    Learn more about Cisco Sourcefire SNORT
    Learn more about Darktrace
    Sample Customers
    CareCore, City of Biel, Dimension Data, LightEdge, Lone Star College System, National Rugby League, Port Aventura, Smart City Networks, Telecom Italia, The Department of Education in Western Australia
    Irwin Mitchell, Open Energi, Wellcome Trust, FirstGroup plc, Virgin Trains, Drax, QUI! Group, DNK, CreaCard, Macrosynergy, Sisley, William Hill plc, Toyota Canada, Royal British Legion, Vitol
    Top Industries
    VISITORS READING REVIEWS
    Comms Service Provider25%
    Computer Software Company16%
    Government10%
    Financial Services Firm7%
    REVIEWERS
    Financial Services Firm19%
    Computer Software Company16%
    Construction Company6%
    Manufacturing Company6%
    VISITORS READING REVIEWS
    Computer Software Company18%
    Comms Service Provider17%
    Government7%
    Financial Services Firm6%
    Company Size
    REVIEWERS
    Small Business33%
    Midsize Enterprise33%
    Large Enterprise33%
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise16%
    Large Enterprise63%
    REVIEWERS
    Small Business52%
    Midsize Enterprise17%
    Large Enterprise31%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise20%
    Large Enterprise53%
    Buyer's Guide
    Cisco Sourcefire SNORT vs. Darktrace
    September 2022
    Find out what your peers are saying about Cisco Sourcefire SNORT vs. Darktrace and other solutions. Updated: September 2022.
    633,184 professionals have used our research since 2012.

    Cisco Sourcefire SNORT is ranked 15th in Intrusion Detection and Prevention Software (IDPS) with 2 reviews while Darktrace is ranked 1st in Intrusion Detection and Prevention Software (IDPS) with 32 reviews. Cisco Sourcefire SNORT is rated 7.6, while Darktrace is rated 8.4. The top reviewer of Cisco Sourcefire SNORT writes "Intelligent with good threat detection capabilities but could be easier to implement". On the other hand, the top reviewer of Darktrace writes "A 10/10 solution with an awesome interface, good stability and scalability, flexible pricing, and good support". Cisco Sourcefire SNORT is most compared with Check Point IPS, Fortinet FortiGate IPS, Palo Alto Networks Threat Prevention, Cisco NGIPS and Cisco Secure Network Analytics, whereas Darktrace is most compared with CrowdStrike Falcon, Cisco Secure Network Analytics, Vectra AI, SentinelOne and Cortex XDR by Palo Alto Networks. See our Cisco Sourcefire SNORT vs. Darktrace report.

    See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.

    We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.