Coralogix vs NetWitness Platform comparison

Coralogix and NetWitness are both solutions in the Log Management category. Coralogix is ranked #19 with an average rating of 8.2, while NetWitness is ranked #38 with an average rating of 8.0. Coralogix holds a 0.7% mindshare in Log Management, compared to NetWitness’s 0.3% mindshare. Additionally, 92% of Coralogix users are willing to recommend the solution, compared to 75% of NetWitness users who would recommend it.

Coralogix

Read 11 Coralogix reviews

1,093 Views
218 Comparison Views

92% willing to recommend

NetWitness Platform

Read 37 NetWitness Platform reviews

733 Views
114 Comparison Views

75% willing to recommend

Coralogix

NetWitness Platform

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

NetWitness Platform and Coralogix are strong contenders in the network security and log analytics space. While users appreciate NetWitness Platform for its robust security features, Coralogix gains an edge with its user-friendly configuration and efficient performance.

Features: NetWitness Platform is noted for its comprehensive security capabilities and advanced threat detection, including detailed packet analysis and event correlation. Coralogix offers real-time log analytics, seamless integration with various data sources, and the automatic dynamic clustering of data. Coralogix stands out in ease of use and integration capabilities.

Room for Improvement: NetWitness users mention a steep learning curve and high resource consumption. They also seek more user-friendly documentation. Coralogix users note the need for enhanced alerting mechanisms, more detailed reporting features, and an expanded set of integrations to cover more platforms.

Ease of Deployment and Customer Service: NetWitness Platform has a complex deployment process that can be time-consuming and requires specialized skills for installation. Customer service is competent but may not always be responsive. Coralogix offers simpler deployment with quicker setup times and receives high satisfaction ratings for customer support.

Pricing and ROI: NetWitness Platform's pricing is on the higher side, justified for large-scale implementations due to its extensive capabilities. Coralogix offers competitive pricing, and users feel the ROI aligns well with the investment, particularly appreciating the cost-effectiveness for small and medium-sized enterprises.

To learn more, read our detailed Coralogix vs. NetWitness Platform Report (Updated: June 2025).

Buyer's Guide

Coralogix vs. NetWitness Platform

June 2025

Download the complete report

Helped 859,129 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Coralogix

Ranking in Log Management

19th

Ranking in Security Information and Event Management (SIEM)

22nd

Average Rating

8.2

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Application Performance Monitoring (APM) and Observability (20th), API Management (16th), Streaming Analytics (12th), Anomaly Detection Tools (1st)

NetWitness Platform

Ranking in Log Management

38th

Ranking in Security Information and Event Management (SIEM)

29th

Average Rating

7.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of June 2025, in the Log Management category, the mindshare of Coralogix is 0.7%, up from 0.5% compared to the previous year. The mindshare of NetWitness Platform is 0.3%, down from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Log Management

Featured Reviews

reviewer1915599

VP of Engineering at a financial services firm with 51-200 employees

Good capabilities, has a helpful interface and is straightforward to set up

We have asked for a couple of features from the company already. What typically happens is a lot of people - and developers are one of the biggest consumers of this product - go to this product to optimize their investigation process and specific configurations. That increases our data flow at times, so the cost changes. And a lot of changes happen due to that. We have asked the company to auto-revert the changes after a while so that the system works typically. We want it to work at what it is expected to work at and not really based on the updated configuration which one developer has decided to change.

Read full review

MOTASHIM Al Razi

CISO at One Bank Limited

It is a stable solution, but they should make the user interface easier to understand

The solution's initial setup takes work. We have to organize multiple paths and many features. The deployment process takes less than a week. But it takes a month to complete if we want to make the solution smarter by integrating it with various devices. I rate the process as a six out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The solution offers very good convenience filtering."

"Coralogix scales well, and I will rate it nine out of ten."

"The overall stability and reliability of Coralogix are excellent, and I rarely encounter issues."

"A non-tech person can easily get used to it."

"For now, we have not experienced any stability issues."

"The log monitoring is good, and the dashboards that we create are beneficial."

"The most valuable feature of Coralogix is that it is a very good vendor for metrics."

"The best feature of this solution allows us to correlate logs, metrics and traces."

More Coralogix pros

"Their technical support responds quickly and are knowledgable."

"The software is scalable to whatever is required, and you can also put a lot of resources in the cloud."

"The product's initial setup phase was not at all difficult."

"NetWitness can be highly beneficial for incident detection and response."

"The solution is really scalable for the high-end power, enterprise customer."

"The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it."

"Performance and reporting are very good."

"Alerting Module: It provides real-time event processing language on all the logs/packets stream for advanced alerting, i.e., using SQL LIKE statements."

More NetWitness Platform pros

Cons

"The customizable dashboards haven't really helped with my company's efficiency at all, and I think there's room for improvement."

"The user interface is not intuitive, especially when first onboarding, and improvements could be made here."

"The documentation of the tool could be improved"

"Maybe they could make it more user-friendly."

"The features we were missing in the past were related to the way we see our metrics and aggregate our data."

"We want it to work at what it is expected to work at and not really based on the updated configuration which one developer has decided to change."

"From my experience, Coralogix has horrible Terraform providers."

"The user interface could be more intuitive and explanatory."

More Coralogix cons

"An area for improvement would be better automation and more inbuilt use cases."

"The tool's integration capability isn't so great."

"Sometimes, it gives me static when integrating Windows-based systems. It should produce a precise log of sorts as to where the problem is. For example, a few days ago because of the McAfee application firewall, I couldn't get access to the particular Windows machine. So, my team and I had to figure out by ourselves that there was a virus responsible for the obstacle. This solution should trigger a meaningful log or message indicating the reason the user or implementer can't get into the machine."

"They should implement algorithms to digest that data and produce additional, more advanced reporting, alerting and support of internal security teams."

"The initial setup is very complex and should be simplified."

"The solution should have more integration capabilities with different platforms."

"The log system is a bit complex and has room for improvement."

"There are instances where you try to run the reports and then it does not give you the desired outcome."

More NetWitness Platform cons

Pricing and Cost Advice

"The cost of the solution is per volume of data ingested."

"The platform has a reasonable cost. I rate the pricing a three out of ten."

"We are paying roughly $5,000 a month."

"Currently, we are at a very minimal cost, which is around $400 per month since we have reduced our usage. Initially, we were at $900 per month."

"Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day."

"We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."

"Our license is for one year."

"The product is expensive."

"We have yearly licensing costs. The license fee can be based on the volume of EPS. Some organizations may have, as a gentlemanly gesture, 10,000 EPS and get a 3,000 EPS license but actually use 5,000 EPS."

"This is a pricey solution; it's not cheap."

"The licenses are good but the cost is very expensive."

"We are on an annual license for the use of the solution."

More NetWitness Platform pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Log Management solutions are best for your needs.

See recommendations

859,129 professionals have used our research since 2012.

Comparison Review

Vinod Shankar

Manager, Enterprise Risk Consulting at Deloitte & Touche

Feb 26, 2015

HP ArcSight vs. IBM QRadar vs. McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm

We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…

Read full review

Top Industries

By visitors reading reviews

Computer Software Company

13%

Financial Services Firm

11%

Manufacturing Company

Healthcare Company

Computer Software Company

18%

Financial Services Firm

18%

Government

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Coralogix?

Numerous data monitoring tools are available, but Coralogix somehow fine-tunes our policies and effectively supports our teams.

See all answers

What is your experience regarding pricing and costs for Coralogix?

The pricing is expensive. We need to reduce logs to manage costs. Despite the expense, I believe it is worth the money to have Coralogix as a tool.

See all answers

What needs improvement with Coralogix?

Change might not be the correct word, but with every service, there is always room to improve. They are improving their services daily and deploy new features. When we had missing features that we ...

See all answers

What do you like most about NetWitness Platform?

The product's initial setup phase was not at all difficult.

See all answers

What is your experience regarding pricing and costs for NetWitness Platform?

The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.

See all answers

What needs improvement with NetWitness Platform?

There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.

See all answers

Comparisons

Datadog vs Coralogix

Compared 31% of the time

New Relic vs Coralogix

Compared 10% of the time

Grafana vs Coralogix

Compared 10% of the time

Elastic Search vs Coralogix

Compared 8% of the time

Sentry vs Coralogix

Compared 7% of the time

More Coralogix Competitors

Splunk Enterprise Security vs NetWitness Platform

Compared 22% of the time

IBM Security QRadar vs NetWitness Platform

Compared 19% of the time

Elastic Security vs NetWitness Platform

Compared 13% of the time

RSA enVision vs NetWitness Platform

Compared 10% of the time

Trellix Network Detection and Response vs NetWitness Platform

Compared 8% of the time

More NetWitness Platform Competitors

Product Reports

Buyer's Guide

Coralogix

June 2025

Download Coralogix product report

Buyer's Guide

NetWitness Platform

June 2025

Download NetWitness Platform product report

Also Known As

No data available

RSA Security Analytics

Overview

Coralogix is a stateful streaming data platform that provides real-time insights and long-term trend analysis with no reliance on storage or indexing, solving the monitoring challenges of data growth in large-scale systems.

Ingest log, metric, and security data from any source for a single, centralized platform to monitor and alert on your applications. As data is ingested, Coralogix instantly narrows millions of events down to common patterns for deeper insights and faster troubleshooting. Proactive data storage optimization enables up to 70% savings on monitoring costs with better performance.

Coralogix

NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.

NetWitness

Sample Customers

Payoneer, AGS, Monday.com, Capgemini

Los Angeles World Airports, Reply

Buyer's Guide

Coralogix vs. NetWitness Platform

June 2025

Free Report: Coralogix vs. NetWitness Platform

Find out what your peers are saying about Coralogix vs. NetWitness Platform and other solutions. Updated: June 2025.

DOWNLOAD NOW

859,129 professionals have used our research since 2012.

See our Coralogix vs. NetWitness Platform report.

See our list of best Log Management vendors and best Security Information and Event Management (SIEM) vendors.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.