We performed a comparison between Cisco Sourcefire SNORT, Darktrace, and RedSeal based on real PeerSpot user reviews.
Find out what your peers are saying about Darktrace, Vectra AI, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS)."The most valuable feature of this solution is the filtering."
"The most valuable feature is the visibility that we have across the virtual environment."
"It has a huge rate of protection. It's has a low level of positives and a huge rate of threat protection. It's easy to deploy and easy to implement. It has an incredible price rate compared to similar solutions."
"Cisco Sourcefire SNORT is easy to configure and the reporting is great. It's also very user-friendly."
"Cisco technical support is unbeatable. It offers a premium service every time."
"It simplifies the configuration process by offering pre-defined base configurations, including security and connectivity settings."
"The solution can be integrated with some network electors like Cisco Stealthwatch, Cisco ISE, and Active Directory to provide the client with authentication certificates."
"Solid intrusion detection and prevention that scales easily in very large environments."
"One member of staff is enough for deployment and maintenance because Darkforce is AI-driven. It does a lot of things by itself."
"I have found the automation and AI features to be valuable. If someone were to come in to the office at midnight and log in, Darktrace would flag it."
"The most valuable features of Darktrace are the tracing of unusual external emails and monitoring the local network."
"It is very easy to work with Darktrace once you know how it works and the type of permissions that you need to get related to the security over a network. The interface is awesome. I'm sure that you have seen Ironman, and you know Jarvis, the computer of Tony Stark. The interface of Darktrace is very similar, and you can see in 3D, like a hologram, the whole network, traffic, and all the traces inside the network. The interface is awesome, and it provides a lot of information. At least for us, it is very easy to handle this interface, get the reports, and do the interpretation of those reports. Darktrace also provides mobile monitoring. With an app on your mobile phone, you can view the information live, which is very useful for area directors and field engineers. Darktrace can be also correlated with any type of big data solution, such as Splunk."
"The most valuable feature of this solution is that it does not require human intervention to eliminate a threat."
"It is a very simple product to use."
"I have used multiple solutions, but its graphical user interface is quite interesting and quite descriptive. There are a lot of video animations, and we can easily see how the data is transferred between various points. That's something really interesting. It is also quite easy to understand for a new user."
"The AI-based pattern is the most valuable feature."
"The most valuable features are network mapping and configuration."
"RedSeal integrates the network and gives us a visual or graphical overview of our network. If an organization is geographically dispersed, for instance, with one office in Canada and one office in the Philippines, the whole network, including all devices, is integrated into RedSeal, and you can see from where the traffic is going in and out."
"This is the only solution in the world that gives you a digital resilience score."
"We are unhappy with technical support for this solution, and it is not as professional as what we typically expect from Cisco."
"I would like to have analytics included in the suite."
"The solution's approach to managing traffic blocking is confusing and impractical."
"The cloud can be improved."
"The pricing needs to be improved. We have lots of low-budget clients around us. Budget constraints are always a deterrent in our market."
"The customization of the rules can be simplified."
"I don't think this solution is a time-based control system, because one cannot filter traffic based on time."
"I did not experience any pain points that required improvement. Maybe a couple of false-positives, but that's about it."
"Darktrace does not have any capabilities to configure."
"I would like to see more protection in the endpoint. Especially because we have a lot of people using VPNs. If they would improve end point security, it would give more control there."
"I think there is some MSSP missing."
"The interface is too mathematical and it should be simplified."
"Getting logs from different sources can be a challenge."
"It's a very complex platform."
"I would like to see some additional enhancements."
"The user interface and the configuration are a bit complex and should be improved or simplified."
"The dashboard should be improved to make correlating data easier to do."
"Sometimes, it required us to refresh the configuration. When we integrated any of the configurations into the device, sometimes, it could not detect the exact picture of that device. So, we had to reset the device to see that if it was giving true-positive results or false-positive results. In some cases, we were not able to get true-positive results. There was some kind of bug in that version. Its interface is not user-friendly and needs to be improved. It takes time to understand the interface and various options. Skybox has quite a user-friendly interface. They could provide a feature for compliance audit policy if it is already not there. A compliance audit policy ensures that all configurations are based on the best practices standards, such as CIS benchmarks standard or other similar standards. It provides visibility about whether your device configuration is based on best practices or not. Usually, such a feature is provided by other solutions such as Meteor or Tenable Nessus."
"One of the areas of concern is the GUI. It is important to our customers that the GUI looks beautiful. It's a Java Client, so you have a Java dependency."
Earn 20 points