No more typing reviews! Try our Samantha, our new voice AI agent.

Cynet vs Netwrix Auditor comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 18, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
114
Ranking in other categories
Endpoint Protection Platform (EPP) (4th), Endpoint Detection and Response (EDR) (6th), Extended Detection and Response (XDR) (4th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
Cynet
Average Rating
8.8
Reviews Sentiment
7.3
Number of Reviews
45
Ranking in other categories
Security Information and Event Management (SIEM) (20th), Endpoint Protection Platform (EPP) (18th), User Entity Behavior Analytics (UEBA) (8th), Endpoint Detection and Response (EDR) (17th), Threat Deception Platforms (2nd), Network Detection and Response (NDR) (8th), Extended Detection and Response (XDR) (13th), Ransomware Protection (3rd)
Netwrix Auditor
Average Rating
9.2
Reviews Sentiment
7.2
Number of Reviews
8
Ranking in other categories
GRC (14th), Security Information and Event Management (SIEM) (33rd), Identity and Access Management as a Service (IDaaS) (IAMaaS) (15th), Active Directory Management (3rd)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
Roshan Jadhav - PeerSpot reviewer
Technical Consultant at Vincacyber
Has improved threat detection and streamlined incident analysis through centralized control and AI-driven insights
People are looking for Cynet because it has next-generation threat protection that detects zero-day threats. It has UEBA (user entity behavior analysis), threat hunting features, and storage device control where we can create profiles and block unauthorized USB storage devices. We can also create threat protection policies to detect malware, ransomware, and many other threats. The most valuable feature is the UBA (User behavior analysis). It has integration with SIEM solutions, allowing us to share our logs to third-party SIEM servers. Cynet has AI integration which showcases complete forensic data about threats, making it very easy to understand what happened with the system and what type of incident was detected. Autonomous breach protection is a feature of Cynet which can detect and mitigate known and unknown threats based on signatures. If there are any signature-less files, malware, or ransomware, it will detect them based on autonomous breach protection capabilities. The centralized management console provides a dashboard where we can see four types of attack vectors and incident counts in real-time. It continuously scans the radar and shows open alerts related to files, hosts, users, or networks. We can easily export these alerts and send reports via email.
RishiPandit - PeerSpot reviewer
Lead - Technical Services at Impetus
Optimizing time and effort through comprehensive auditing features
Netwrix Auditor doesn't have many competitors at the level in which it is placed. All other companies provide auditing solutions but not up to the feature list; it is very broad and robust. The best features include flexibility to interact directly with MS-SQL. Real-time alerts help identify potential security threats. The ability to streamline audits with insights into configuration states is helpful, as the access reviews and audit reports are really insightful. This is a good tool. The search functionality is available, but comparative to other vendors, this is a bit slower. Reports are effective; the compliance reports and all the reports are very insightful. That is good.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The information the dashboard provides is very clear."
"This software helps us understand any issues that may arise when someone is not at work."
"The product's initial setup phase is very easy."
"Stability-wise, it is good; I did not hear about any issues in terms of stability, and Cortex XDR by Palo Alto Networks can be trusted completely."
"The protection offered by this product is good, as is the endpoint reporting."
"Palo Alto is the core of the security infrastructure in the environment."
"Monitoring is most valuable."
"In one single alert, we are getting the network telemetry, endpoint telemetry, email security telemetry, and proxy telemetry all in one single ticket, making it very easy."
"A good feature is how the solution packages varied information into a single dashboard that's readable and meets our needs."
"We have definitely seen an ROI because we have very sensitive information, and we never had any viruses."
"This solution requires less management and is very easy to use."
"This solution covers the endpoint and protects your files, users, devices, and network significantly better than the other solutions in the market."
"Cynet's most valuable features are laptop and server performance, internal network monitoring, and external firewall lock management."
"We are very satisfied with the level of performance we get."
"The clients are surprised at the coverage and the peace of mind they get where they don't have to worry about certain things."
"A reliable security system that automatically quarantines anything suspicious."
"I have found user behavior analysis and the ability to run risk assessments important features, and additionally the interface and online documentation are very good."
"Without Netwrix, it's impossible to take control of things."
"I am impressed with the tool's reporting feature and notifications."
"The most valuable feature is the real-time monitoring."
"Netwrix Auditor was the easiest to use, most straightforward, and it had competitive pricing."
"What I find the most valuable about Netwrix Auditor is the way it shows risk. The reports are very clear."
"Netwrix provides features that no other solution on the market does."
"It maintains audit logs for the duration of time that you wish, as long as you have the storage capacity to do so."
 

Cons

"Basically, they don't provide customer support tools just to investigate the logs."
"Enhancing UI simplicity and playbook flexibility are areas that could benefit from more low-code automation options for smoother integrations."
"I think sometimes Cortex XDR agent automatically stops event capturing from the device, and then even the dashboard does not get any notifications from the agent."
"Based on our experience so far, its implementation is quite complex."
"There are some limitations on the Traps agents."
"Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth."
"There's an overall lack of features."
"Cortex XDR should have a lightweight agent, and the agent size should not be heavy."
"The reporting is a little weak and could be improved. The other downside is that Cynet does not use the local time zone. It's based off of Greenwich Mean Time."
"In terms of what could be improved, I would say the usability of this product for new threats. Meaning, not everything which is new is properly seen by the product and not all the required actions are taken."
"The reporting is a little weak and could be improved."
"Maybe they should add more cloud-to-cloud integrations and also focus on integrations with local, on-premises services."
"Cynet could improve when a reverse proxy is being used to connect to the servers. There could be an easier configuration because it is not plug-and-play."
"The solution just needs to keep maturing and they need to keep up with the threat landscape to ensure they're protecting clients well as time passes."
"They have some things in the pipeline, we understand, and they're going to be able to support Android and all these other devices soon. The key is the devices - which is an aspect that is lacking right now. Every company has that problem, not just Cynet."
"Sometimes, it is necessary for me to make important changes to a hard drive of a computer, and because Cynet does not allow me to do that, I have to go to the console and remove the computer from the security group just for Cynet. After that, I have to wait for 10 or 15 minutes for that to take effect. I would like to be able to disable Cynet locally. I shouldn’t have to go to the console to find the PC and then take it out of the group and then add it again to the group. I should locally be able to disable Cynet on a computer with a password or something like that, but it is currently not possible."
"There is room for improvement with the introduction of AI functionality."
"When there are issues I would like remediation to be in one place."
"The Linux compatibility of this solution could be improved."
"There is room for improvements when it comes to the licensing."
"If you buy direct, there is a minimum of 150 licenses that must be procured. The price point and barrier of entry is a little bit higher than it would be if you purchased the solution from an authorized reseller partner, rather than buying it and managing yourself."
"In the UI, we have to adjust and resize our console many times, and sometimes it appears, sometimes you have to close and open it, and sometimes it does not give a scroll bar to navigate."
"The solution lacks self-service on password reset. It also needs to improve its scalability."
"An improvement would be if there was an another way to manage the logs besides email because it's not so practical."
 

Pricing and Cost Advice

"Every customer has to pay for a license because it doesn't work with what you get from a managed services provider."
"It has a higher cost than other solutions, like CrowdStrike or Microsoft’s EDR tools, but it reduces the cost of our operations because it’s a new generation antivirus tool."
"Cortex XDR by Palo Alto Networks is an expensive solution."
"The cost of Cortex XDR by Palo Alto Networks is $55 to $90 USD per endpoint per month."
"The pricing seems fair, and I do like the licensing model. You use wherever they are, and it is elastic."
"This is an expensive solution."
"If one wishes to work with another team or large number of users at a future point, he must purchase a license for them."
"We didn't have to pay any additional fee for the cloud instance. It just came with the renewal, which was nice."
"We purchase the product’s yearly license."
"My company's customers have to make yearly payments towards the licensing costs of the solution. Cynet is not expensive."
"There is an extra cost if you want the support of Cynet."
"Pricing wise, Cynet seems to be very competitive. The cost is probably lower than that offered by many of its competitors for all the functions and features it offers."
"The licensing for Cynet is yearly. The solution pricing depends on the customer, but it is not very expensive."
"The pricing was good."
"Cynet is very affordable."
"The price should not be less than $100 which is quite reasonable for this solution because you are getting multiple components."
"The tool's price is fair."
"There is a license for this solution and we are on an annual license. The price is reasonable."
"This solution is reasonably priced. I would rate it a nine out of ten."
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Manufacturing Company
12%
Financial Services Firm
10%
Comms Service Provider
9%
Computer Software Company
8%
Financial Services Firm
10%
Construction Company
9%
Manufacturing Company
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise53
By reviewers
Company SizeCount
Small Business30
Midsize Enterprise7
Large Enterprise12
By reviewers
Company SizeCount
Small Business3
Midsize Enterprise1
Large Enterprise4
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
When evaluating User Activity Monitoring, what aspect do you think is the most important to look for?
The support team that stands behind the detection and response. Is there adequate expertise and are they behind you ...
What is your experience regarding pricing and costs for Cynet?
Cynet is not very costly. We can refer it to other customers because Cynet does not ask for additional costs for add-...
What needs improvement with Cynet?
One area where Cynet needs improvement is tamper protection for Mac and Linux agents. It currently has tamper protect...
What is your experience regarding pricing and costs for Netwrix Auditor?
I don't know about the pricing of this, but it is good at this price point because our organization has purchased it,...
What needs improvement with Netwrix Auditor?
The areas of improvement include the front end, as the UI should be more intuitive and there should be fewer bugs. In...
What is your primary use case for Netwrix Auditor?
We use Netwrix Auditor for auditing, log centralizing, centralizing the logs, log management, and for permission acce...
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
No data available
No data available
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Meuhedet, East Boston Neighborhood Health Center
AT&T, SanDisk, Siemens, Verizon, Electrolux, Allianz, Societe Generale
Find out what your peers are saying about Cynet vs. Netwrix Auditor and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.