Try our new research platform with insights from 80,000+ expert users

Coralogix vs NetWitness Platform comparison

Coralogix and NetWitness are both solutions in the Log Management category. Coralogix is ranked #21 with an average rating of 8.2, while NetWitness is ranked #33 with an average rating of 8.3. Coralogix holds a 0.9% mindshare in Log Management, compared to NetWitness’s 0.4% mindshare. Additionally, 92% of Coralogix users are willing to recommend the solution, compared to 75% of NetWitness users who would recommend it.
Coralogix
Read 11 Coralogix reviews
  • 2,838 Views
  • 1,164 Comparison Views
92% willing to recommend
NetWitness Platform
Read 37 NetWitness Platform reviews
  • 1,507 Views
  • 738 Comparison Views
75% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

NetWitness Platform and Coralogix are strong contenders in the network security and log analytics space. While users appreciate NetWitness Platform for its robust security features, Coralogix gains an edge with its user-friendly configuration and efficient performance.

Features: NetWitness Platform is noted for its comprehensive security capabilities and advanced threat detection, including detailed packet analysis and event correlation. Coralogix offers real-time log analytics, seamless integration with various data sources, and the automatic dynamic clustering of data. Coralogix stands out in ease of use and integration capabilities.

Room for Improvement: NetWitness users mention a steep learning curve and high resource consumption. They also seek more user-friendly documentation. Coralogix users note the need for enhanced alerting mechanisms, more detailed reporting features, and an expanded set of integrations to cover more platforms.

Ease of Deployment and Customer Service: NetWitness Platform has a complex deployment process that can be time-consuming and requires specialized skills for installation. Customer service is competent but may not always be responsive. Coralogix offers simpler deployment with quicker setup times and receives high satisfaction ratings for customer support.

Pricing and ROI: NetWitness Platform's pricing is on the higher side, justified for large-scale implementations due to its extensive capabilities. Coralogix offers competitive pricing, and users feel the ROI aligns well with the investment, particularly appreciating the cost-effectiveness for small and medium-sized enterprises.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Coralogix vs. NetWitness Platform Report (Updated: September 2025).
Buyer's Guide
Coralogix vs. NetWitness Platform
September 2025
Download the complete report
Helped 869,566 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Coralogix
Ranking in Log Management
21st
Ranking in Security Information and Event Management (SIEM)
23rd
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
11
Ranking in other categories
Application Performance Monitoring (APM) and Observability (21st), API Management (15th), Streaming Analytics (14th), Anomaly Detection Tools (1st)
NetWitness Platform
Ranking in Log Management
33rd
Ranking in Security Information and Event Management (SIEM)
30th
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
37
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of October 2025, in the Log Management category, the mindshare of Coralogix is 0.9%, up from 0.6% compared to the previous year. The mindshare of NetWitness Platform is 0.4%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management Market Share Distribution
ProductMarket Share (%)
Coralogix0.9%
NetWitness Platform0.4%
Other98.7%
Log Management
 

Featured Reviews

Jorge Florez - PeerSpot reviewer
SaaS platform used by developers to store and conveniently search for logs
If a company has the budget and the log service is critical for them, I would say use Coralogix. It is a very good service for that. I would rate Coralogix an eight out of ten. It is an excellent service for storing logs for a long time. The capacity is unlimited for unindexed logs. The cost model is also very efficient because you pay for the ingested data per month. This can be compared to a solution like New Relic where you have to pay it upfront and cannot limit the data ingestion. Coralogix provides an easy way to search for logs and to visualize them. This a great feature because developers are constantly looking for or browsing logs.
Read full review
MOTASHIM Al Razi - PeerSpot reviewer
It is a stable solution, but they should make the user interface easier to understand
The solution's initial setup takes work. We have to organize multiple paths and many features. The deployment process takes less than a week. But it takes a month to complete if we want to make the solution smarter by integrating it with various devices. I rate the process as a six out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"For now, we have not experienced any stability issues."
"The initial setup is straightforward."
"The best feature of this solution allows us to correlate logs, metrics and traces."
"A non-tech person can easily get used to it."
"Numerous data monitoring tools are available, but Coralogix somehow fine-tunes our policies and effectively supports our teams."
"Coralogix scales well, and I will rate it nine out of ten."
"The solution is easy to use and to start with."
"The log monitoring is good, and the dashboards that we create are beneficial."
More Coralogix pros
"In my opinion, the solution's most valuable feature is its capacity to monitor network traffic, logs from devices within the network, and network captures. This capability extends beyond logs to include full network capturing."
"The product's initial setup phase was not at all difficult."
"The most valuable features are its ingestion of logs and raising of alerts based on those logs."
"Performance and reporting are very good."
"Setting up NetWitness is straightforward. There are multiple connectors, including standard and specialized connectors. One purpose of the connectors is the enhanced capability integrate the custom applications. NetWitness comes with E6 appliances and application images that we use for the initial configurations and for the OS stack information. From there, you can consider the correlation rules, integrate the different log sources, and easily create correlation rules and backlog reports."
"It gives the ability to investigate into network traffic in the Net and the organization what we couldn't do before."
"The most valuable feature is the ability to write rules and triggers for network communication, and then being able to investigate based on that."
"NetWitness Platform is valuable for creating rules that the solution must detect."
More NetWitness Platform pros
 

Cons

"We want it to work at what it is expected to work at and not really based on the updated configuration which one developer has decided to change."
"Maybe they could make it more user-friendly."
"The user interface could be more intuitive and explanatory."
"The user interface is not intuitive, especially when first onboarding, and improvements could be made here."
"The customizable dashboards haven't really helped with my company's efficiency at all, and I think there's room for improvement."
"Coralogix should have some AI capabilities to auto-detect anomalies and provide suggestions."
"From my experience, Coralogix has horrible Terraform providers."
"Coralogix should have some AI capabilities to auto-detect anomalies and provide suggestions. The increasing volume of data and the resulting bandwidth charges are concerns."
More Coralogix cons
"There is no support for this product in this country, so problems have to be resolved through global technical teams."
"If we have the ability to run a dynamic analysis through malware in the same suite, it would be great to have a sandbox solution to analyze malware through dynamic analysis."
"They should implement algorithms to digest that data and produce additional, more advanced reporting, alerting and support of internal security teams."
"It should have a monitoring feature. It would help us analyze the current state of attacks faster from a single platform."
"The solution should have more integration capabilities with different platforms."
"Sometimes, it gives me static when integrating Windows-based systems. It should produce a precise log of sorts as to where the problem is. For example, a few days ago because of the McAfee application firewall, I couldn't get access to the particular Windows machine. So, my team and I had to figure out by ourselves that there was a virus responsible for the obstacle. This solution should trigger a meaningful log or message indicating the reason the user or implementer can't get into the machine."
"Nowadays, their support is a little subpar compared to other solutions. I rate RSA support six out of 10."
"Its technical support could be better."
More NetWitness Platform cons
 

Pricing and Cost Advice

"The platform has a reasonable cost. I rate the pricing a three out of ten."
"We are paying roughly $5,000 a month."
"The cost of the solution is per volume of data ingested."
"Currently, we are at a very minimal cost, which is around $400 per month since we have reduced our usage. Initially, we were at $900 per month."
"In comparison to other SIEM solutions such as Splunk, NetWitness is less costly."
"The NetWitness Platform may be affordable only for enterprise-level customers, as it may not be within the budget of small and medium-sized businesses."
"It provides tools to assist in selecting the appropriate license and usage scenarios."
"Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day."
"The licenses are good but the cost is very expensive."
"The tool is very expensive, so I rate the pricing a ten out of ten. The solution has an annual subscription."
"We have yearly licensing costs. The license fee can be based on the volume of EPS. Some organizations may have, as a gentlemanly gesture, 10,000 EPS and get a 3,000 EPS license but actually use 5,000 EPS."
"The product price was reasonable for my region and the market."
More NetWitness Platform pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
See recommendations
869,566 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Manufacturing Company
9%
Computer Software Company
9%
Comms Service Provider
6%
Financial Services Firm
13%
Computer Software Company
12%
Comms Service Provider
7%
Performing Arts
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise1
Large Enterprise4
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise7
Large Enterprise20
 

Questions from the Community

What do you like most about Coralogix?
Numerous data monitoring tools are available, but Coralogix somehow fine-tunes our policies and effectively supports our teams.
See all answers
What is your experience regarding pricing and costs for Coralogix?
The pricing is expensive. We need to reduce logs to manage costs. Despite the expense, I believe it is worth the money to have Coralogix as a tool.
See all answers
What needs improvement with Coralogix?
Change might not be the correct word, but with every service, there is always room to improve. They are improving their services daily and deploy new features. When we had missing features that we ...
See all answers
What do you like most about NetWitness Platform?
The product's initial setup phase was not at all difficult.
See all answers
What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
See all answers
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
See all answers
 

Comparisons

Datadog vs Coralogix Logo
Datadog vs Coralogix
Compared 23% of the time
New Relic vs Coralogix Logo
New Relic vs Coralogix
Compared 11% of the time
Grafana vs Coralogix Logo
Grafana vs Coralogix
Compared 9% of the time
Logz.io vs Coralogix Logo
Logz.io vs Coralogix
Compared 7% of the time
Elastic Search vs Coralogix Logo
Elastic Search vs Coralogix
Compared 6% of the time
More Coralogix Competitors
IBM Security QRadar vs NetWitness Platform Logo
IBM Security QRadar vs NetWitness Platform
Compared 21% of the time
Splunk Enterprise Security vs NetWitness Platform Logo
Splunk Enterprise Security vs NetWitness Platform
Compared 16% of the time
Elastic Security vs NetWitness Platform Logo
Elastic Security vs NetWitness Platform
Compared 12% of the time
USM Anywhere vs NetWitness Platform Logo
USM Anywhere vs NetWitness Platform
Compared 9% of the time
Trellix Network Detection and Response vs NetWitness Platform Logo
Trellix Network Detection and Response vs NetWitness Platform
Compared 8% of the time
More NetWitness Platform Competitors
 

Product Reports

Buyer's Guide
Coralogix
October 2025
Coralogix reportDownload Coralogix product report
Buyer's Guide
NetWitness Platform
September 2025
NetWitness Platform reportDownload NetWitness Platform product report
 

Also Known As

No data available
RSA Security Analytics
 

Overview

Coralogix is a stateful streaming data platform that provides real-time insights and long-term trend analysis with no reliance on storage or indexing, solving the monitoring challenges of data growth in large-scale systems.

Ingest log, metric, and security data from any source for a single, centralized platform to monitor and alert on your applications. As data is ingested, Coralogix instantly narrows millions of events down to common patterns for deeper insights and faster troubleshooting. Proactive data storage optimization enables up to 70% savings on monitoring costs with better performance.

Coralogix

NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.

NetWitness
 

Sample Customers

Payoneer, AGS, Monday.com, Capgemini
Los Angeles World Airports, Reply
Buyer's Guide
Coralogix vs. NetWitness Platform
September 2025
Free Report: Coralogix vs. NetWitness Platform
Find out what your peers are saying about Coralogix vs. NetWitness Platform and other solutions. Updated: September 2025.
DOWNLOAD NOW
869,566 professionals have used our research since 2012.
See our Coralogix vs. NetWitness Platform report.
See our list of best Log Management vendors and best Security Information and Event Management (SIEM) vendors.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.