Try our new research platform with insights from 80,000+ expert users

Darktrace vs ManageEngine NetFlow Analyzer comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jun 15, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Darktrace
Ranking in Network Traffic Analysis (NTA)
1st
Average Rating
8.2
Reviews Sentiment
7.2
Number of Reviews
82
Ranking in other categories
Email Security (9th), Intrusion Detection and Prevention Software (IDPS) (1st), Network Detection and Response (NDR) (1st), Extended Detection and Response (XDR) (6th), Cloud Security Posture Management (CSPM) (15th), Cloud-Native Application Protection Platforms (CNAPP) (11th), Attack Surface Management (ASM) (4th), AI-Powered Cybersecurity Platforms (2nd)
ManageEngine NetFlow Analyzer
Ranking in Network Traffic Analysis (NTA)
9th
Average Rating
9.6
Reviews Sentiment
3.9
Number of Reviews
2
Ranking in other categories
Network Troubleshooting (8th)
 

Mindshare comparison

As of July 2025, in the Network Traffic Analysis (NTA) category, the mindshare of Darktrace is 25.8%, up from 26.1% compared to the previous year. The mindshare of ManageEngine NetFlow Analyzer is 1.3%, down from 2.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Network Traffic Analysis (NTA)
 

Featured Reviews

Malebo Lethoba Group - PeerSpot reviewer
Have found the AI analyst and detection functions highly valuable for network operations while managing complexity in initial setup
The functions I find most valuable in Darktrace ( /products/darktrace-reviews ) are the AI analyst as well as the detection.The autonomous response capabilities of Darktrace are not crucial for me because it doesn't work in a network where there are no core switches. In a modern network, the autonomous response doesn't work, especially when sitting in a shared data center.If I'm running a traditional network where I am not in a shared data center with a layer two dedicated for my resources, then it can work for me. However, if I am in a data center where I don't have layer two, it becomes an issue because the autonomous response is reliant on sending spoofed TCP resets to my core switch to block traffic, which is a major issue.
Aneesh Mangla - PeerSpot reviewer
High cost-effectiveness and reliable alerting ensure proactive network management
Sometimes customers are unaware about their own network. For example, we need SMTP credentials for Layer 2 switches to do automatic discovery of network devices. Sometimes the network management teams are unaware of their SMTP credentials because the teams have been shuffled since the network was deployed. Or sometimes, when we support our government and defense customers, they don't have clearance to share these credentials with us. Some of the features, such as auto discoverability, get hampered if the customer is not aware of their own network or somehow can't share privileges and credentials with our tool for them to work properly. Not in ManageEngine NetFlow Analyzer in particular, but there are other features of the OpManager suite that could afford to be updated. There is something called a CLI, command-line interface, that allows us to configure network devices such as switches. This is old technology. This product suite has CLI-based configurations, but as of last year, most network devices come with Zero Touch Provisioning (ZTP). OpManager does not support this functionality, and we don't really have a timeline on when ZTP functionality will be available. In ManageEngine NetFlow Analyzer, we have to set custom thresholds to get alerted if there is a problem in network connectivity. It would be helpful if we could automate the tool such that we don't have to set thresholds manually, and the tool automatically alerts us when it detects issues. When experts deploy this tool, we already know what thresholds should be normal. But customers in general may not have this skill set. For newer customers who need to adopt this product, an automated method of alerting would definitely be beneficial.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of Darktrace is the AI that detects abnormal network activity."
"It is a stable solution without downtime."
"The solution can scale."
"Its AI technology supports cybersecurity by learning my environment and accurately responding to threats."
"The initial setup is simple."
"The most valuable feature is the endpoint protection."
"The features that are most valuable to me include detection, response with analytics, and network detection."
"It provides a comprehensive, detailed view of network activity and whatever is happening inside it."
"I give this solution a rating of 10 out of 10 and absolutely recommend it based on our experience."
"ManageEngine NetFlow Analyzer has detection capabilities for flow, event, and service flow."
 

Cons

"One thing I would like is for Darktrace to flag SMB traffic more accurately. Currently, it only flags that SMB traffic has occurred, but it doesn't specify which file was being transferred. This makes it difficult to investigate incidents involving SMB traffic, as we don't have concrete evidence of what was being sent."
"The pricing model is a little too high and could be more flexible."
"The solution would benefit from automation. Currently, you have to know what you are searching for."
"The product doesn't have an endpoint agent that can react to triggers set on the device,"
"Getting logs from different sources can be a challenge."
"In the next version, I'd like to see penetration testing."
"I would like to see some additional enhancements."
"It is expensive, but everything else has been great so far."
"In ManageEngine NetFlow Analyzer, we have to set custom thresholds to get alerted if there is a problem in network connectivity. It would be helpful if we could automate the tool such that we don't have to set thresholds manually, and the tool automatically alerts us when it detects issues."
 

Pricing and Cost Advice

"All of the other modules, such as the licensing modules, are on par. It's one for one."
"There is an annual license to use Darktrace."
"The cost is moderate."
"The solution is about $6,000 per quarter."
"They are too expensive compared with other vendors."
"It is expensive. I don't have the price for other competitors."
"Darktrace is quite an expensive solution."
"The cost of the solution can be reduced to make it more appealing to customers."
Information not available
report
Use our free recommendation engine to learn which Network Traffic Analysis (NTA) solutions are best for your needs.
861,481 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
13%
Manufacturing Company
9%
Financial Services Firm
8%
Government
7%
Financial Services Firm
17%
Energy/Utilities Company
15%
Educational Organization
12%
Construction Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

How does Crowdstrike Falcon compare with Darktrace?
Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a cl...
Which is better - SentinelOne or Darktrace?
Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is meant for smaller to medium-sized businesses. It is also a good option for organ...
What do you like most about Darktrace?
A very useful feature in Darktrace for real-time threat analysis is the packet inspection that analyzes the packet traffic in real time.
What is your experience regarding pricing and costs for ManageEngine NetFlow Analyzer?
The cost varies from industry to industry as the cost of a malicious or security incident varies largely among customers. ManageEngine NetFlow Analyzer is definitely among the most cost-effective t...
What needs improvement with ManageEngine NetFlow Analyzer?
Sometimes customers are unaware about their own network. For example, we need SMTP credentials for Layer 2 switches to do automatic discovery of network devices. Sometimes the network management te...
What is your primary use case for ManageEngine NetFlow Analyzer?
ManageEngine NetFlow Analyzer is an essential piece for anyone who wants to monitor their network because network monitoring is a general term that could mean several things. If you want to measure...
 

Overview

 

Sample Customers

Irwin Mitchell, Open Energi, Wellcome Trust, FirstGroup plc, Virgin Trains, Drax, QUI! Group, DNK, CreaCard, Macrosynergy, Sisley, William Hill plc, Toyota Canada, Royal British Legion, Vitol, Allianz, KKR, AIRBUS, dpd, Billabong, Mclaren Group.
Metro Rail, Micron21, Lotus F1 Team, Elizabeth Board of Education, Queen’s University Belfast, DHL, Praxair, Adventist Health, Wipro Infotech, Tropical Shipping USA
Find out what your peers are saying about Darktrace, Auvik, SolarWinds and others in Network Traffic Analysis (NTA). Updated: July 2025.
861,481 professionals have used our research since 2012.