Try our new research platform with insights from 80,000+ expert users

Coralogix vs NetWitness Platform comparison

Coralogix and NetWitness are both solutions in the Log Management category. Coralogix is ranked #21 with an average rating of 8.2, while NetWitness is ranked #35 with an average rating of 8.0. Coralogix holds a 0.8% mindshare in Log Management, compared to NetWitness’s 0.4% mindshare. Additionally, 92% of Coralogix users are willing to recommend the solution, compared to 75% of NetWitness users who would recommend it.
Coralogix
Read 11 Coralogix reviews
  • 2,603 Views
  • 1,119 Comparison Views
92% willing to recommend
NetWitness Platform
Read 37 NetWitness Platform reviews
  • 1,469 Views
  • 690 Comparison Views
75% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

NetWitness Platform and Coralogix are strong contenders in the network security and log analytics space. While users appreciate NetWitness Platform for its robust security features, Coralogix gains an edge with its user-friendly configuration and efficient performance.

Features: NetWitness Platform is noted for its comprehensive security capabilities and advanced threat detection, including detailed packet analysis and event correlation. Coralogix offers real-time log analytics, seamless integration with various data sources, and the automatic dynamic clustering of data. Coralogix stands out in ease of use and integration capabilities.

Room for Improvement: NetWitness users mention a steep learning curve and high resource consumption. They also seek more user-friendly documentation. Coralogix users note the need for enhanced alerting mechanisms, more detailed reporting features, and an expanded set of integrations to cover more platforms.

Ease of Deployment and Customer Service: NetWitness Platform has a complex deployment process that can be time-consuming and requires specialized skills for installation. Customer service is competent but may not always be responsive. Coralogix offers simpler deployment with quicker setup times and receives high satisfaction ratings for customer support.

Pricing and ROI: NetWitness Platform's pricing is on the higher side, justified for large-scale implementations due to its extensive capabilities. Coralogix offers competitive pricing, and users feel the ROI aligns well with the investment, particularly appreciating the cost-effectiveness for small and medium-sized enterprises.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Coralogix vs. NetWitness Platform Report (Updated: July 2025).
Buyer's Guide
Coralogix vs. NetWitness Platform
July 2025
Download the complete report
Helped 865,295 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Coralogix
Ranking in Log Management
21st
Ranking in Security Information and Event Management (SIEM)
23rd
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
11
Ranking in other categories
Application Performance Monitoring (APM) and Observability (22nd), API Management (16th), Streaming Analytics (13th), Anomaly Detection Tools (1st)
NetWitness Platform
Ranking in Log Management
35th
Ranking in Security Information and Event Management (SIEM)
31st
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
37
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of August 2025, in the Log Management category, the mindshare of Coralogix is 0.8%, up from 0.5% compared to the previous year. The mindshare of NetWitness Platform is 0.4%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

Jorge Florez - PeerSpot reviewer
SaaS platform used by developers to store and conveniently search for logs
If a company has the budget and the log service is critical for them, I would say use Coralogix. It is a very good service for that. I would rate Coralogix an eight out of ten. It is an excellent service for storing logs for a long time. The capacity is unlimited for unindexed logs. The cost model is also very efficient because you pay for the ingested data per month. This can be compared to a solution like New Relic where you have to pay it upfront and cannot limit the data ingestion. Coralogix provides an easy way to search for logs and to visualize them. This a great feature because developers are constantly looking for or browsing logs.
Read full review
MOTASHIM Al Razi - PeerSpot reviewer
It is a stable solution, but they should make the user interface easier to understand
The solution's initial setup takes work. We have to organize multiple paths and many features. The deployment process takes less than a week. But it takes a month to complete if we want to make the solution smarter by integrating it with various devices. I rate the process as a six out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of Coralogix is that it is a very good vendor for metrics."
"The solution offers very good convenience filtering."
"The log monitoring is good, and the dashboards that we create are beneficial."
"Numerous data monitoring tools are available, but Coralogix somehow fine-tunes our policies and effectively supports our teams."
"The solution is easy to use and to start with."
"The initial setup is straightforward."
"For now, we have not experienced any stability issues."
"Coralogix scales well, and I will rate it nine out of ten."
More Coralogix pros
"NetWitness can be highly beneficial for incident detection and response."
"The solution is really scalable for the high-end power, enterprise customer."
"The newer 11.5 version that my team is using has found it to have good mapping."
"It's fully scalable. There is no limit. Of course, the license limits per day the number of terabytes. In my opinion, it's very flexible."
"The most valuable feature of RSA NetWitness Logs and Packets are the alerts and correlations tools."
"Setting up NetWitness is straightforward. There are multiple connectors, including standard and specialized connectors. One purpose of the connectors is the enhanced capability integrate the custom applications. NetWitness comes with E6 appliances and application images that we use for the initial configurations and for the OS stack information. From there, you can consider the correlation rules, integrate the different log sources, and easily create correlation rules and backlog reports."
"The most valuable feature is the correlation. It can report in real-time and monitor the management."
"The product's initial setup phase was not at all difficult."
More NetWitness Platform pros
 

Cons

"The features we were missing in the past were related to the way we see our metrics and aggregate our data."
"It would be helpful if Coralogix could integrate the main modules that any organization requires into a single subscription."
"From my experience, Coralogix has horrible Terraform providers."
"The user interface could be more intuitive and explanatory."
"The user interface is not intuitive, especially when first onboarding, and improvements could be made here."
"Coralogix should have some AI capabilities to auto-detect anomalies and provide suggestions."
"We want it to work at what it is expected to work at and not really based on the updated configuration which one developer has decided to change."
"Coralogix should have some AI capabilities to auto-detect anomalies and provide suggestions. The increasing volume of data and the resulting bandwidth charges are concerns."
More Coralogix cons
"The system architecture is complex and sometimes it’s hard to troubleshoot potential problems."
"Lots of competing products have vulnerability protection built into their products, and this solution would be improved by including that support."
"Technical support could be improved."
"The log system is a bit complex and has room for improvement."
"The system looks like it is a mix of a bunch of different systems, and nothing looked like it was quite together."
"RSA NetWitness Logs and Packets can improve the threat level aspect, it is lacking compared to other solutions. Whenever any hacking activity or any other threat factor occurred they used to provide the coverages very fast when comparing RSA NetWitness Logs and Packets. I heard the other three solutions, from a discussion with my team members who had experience in other solutions, they used to say that. Whenever any issues happened across the globe RSA NetWitness Logs and Packets are a little bit slow improving those detection mechanisms."
"There are instances where you try to run the reports and then it does not give you the desired outcome."
"They should implement algorithms to digest that data and produce additional, more advanced reporting, alerting and support of internal security teams."
More NetWitness Platform cons
 

Pricing and Cost Advice

"Currently, we are at a very minimal cost, which is around $400 per month since we have reduced our usage. Initially, we were at $900 per month."
"The cost of the solution is per volume of data ingested."
"The platform has a reasonable cost. I rate the pricing a three out of ten."
"We are paying roughly $5,000 a month."
"The NetWitness Platform may be affordable only for enterprise-level customers, as it may not be within the budget of small and medium-sized businesses."
"The licenses are good but the cost is very expensive."
"Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day."
"The tool is very expensive, so I rate the pricing a ten out of ten. The solution has an annual subscription."
"The new pricing and licensing mechanisms are fair. I would advise always to get the full solution (i.e., not only Logs)."
"Compared to the competition, the is price is not that high."
"We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."
"It’s cheaper to run virtual machines in a VMware environment."
More NetWitness Platform pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
See recommendations
865,295 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Computer Software Company
11%
Manufacturing Company
8%
Healthcare Company
7%
Financial Services Firm
13%
Computer Software Company
13%
Comms Service Provider
6%
Manufacturing Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Coralogix?
Numerous data monitoring tools are available, but Coralogix somehow fine-tunes our policies and effectively supports our teams.
See all answers
What is your experience regarding pricing and costs for Coralogix?
The pricing is expensive. We need to reduce logs to manage costs. Despite the expense, I believe it is worth the money to have Coralogix as a tool.
See all answers
What needs improvement with Coralogix?
Change might not be the correct word, but with every service, there is always room to improve. They are improving their services daily and deploy new features. When we had missing features that we ...
See all answers
What do you like most about NetWitness Platform?
The product's initial setup phase was not at all difficult.
See all answers
What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
See all answers
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
See all answers
 

Comparisons

Datadog vs Coralogix Logo
Datadog vs Coralogix
Compared 25% of the time
New Relic vs Coralogix Logo
New Relic vs Coralogix
Compared 10% of the time
Grafana vs Coralogix Logo
Grafana vs Coralogix
Compared 9% of the time
Elastic Search vs Coralogix Logo
Elastic Search vs Coralogix
Compared 7% of the time
Sentry vs Coralogix Logo
Sentry vs Coralogix
Compared 6% of the time
More Coralogix Competitors
Splunk Enterprise Security vs NetWitness Platform Logo
Splunk Enterprise Security vs NetWitness Platform
Compared 23% of the time
IBM Security QRadar vs NetWitness Platform Logo
IBM Security QRadar vs NetWitness Platform
Compared 19% of the time
Elastic Security vs NetWitness Platform Logo
Elastic Security vs NetWitness Platform
Compared 12% of the time
RSA enVision vs NetWitness Platform Logo
RSA enVision vs NetWitness Platform
Compared 9% of the time
Trellix Network Detection and Response vs NetWitness Platform Logo
Trellix Network Detection and Response vs NetWitness Platform
Compared 9% of the time
More NetWitness Platform Competitors
 

Product Reports

Buyer's Guide
Coralogix
August 2025
Coralogix reportDownload Coralogix product report
Buyer's Guide
NetWitness Platform
August 2025
NetWitness Platform reportDownload NetWitness Platform product report
 

Also Known As

No data available
RSA Security Analytics
 

Overview

Coralogix is a stateful streaming data platform that provides real-time insights and long-term trend analysis with no reliance on storage or indexing, solving the monitoring challenges of data growth in large-scale systems.

Ingest log, metric, and security data from any source for a single, centralized platform to monitor and alert on your applications. As data is ingested, Coralogix instantly narrows millions of events down to common patterns for deeper insights and faster troubleshooting. Proactive data storage optimization enables up to 70% savings on monitoring costs with better performance.

Coralogix

NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.

NetWitness
 

Sample Customers

Payoneer, AGS, Monday.com, Capgemini
Los Angeles World Airports, Reply
Buyer's Guide
Coralogix vs. NetWitness Platform
July 2025
Free Report: Coralogix vs. NetWitness Platform
Find out what your peers are saying about Coralogix vs. NetWitness Platform and other solutions. Updated: July 2025.
DOWNLOAD NOW
865,295 professionals have used our research since 2012.
See our Coralogix vs. NetWitness Platform report.
See our list of best Log Management vendors and best Security Information and Event Management (SIEM) vendors.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.