ExtraHop Reveal(x) 360 vs Lacework comparison

ExtraHop Networks and Fortinet are both solutions in the Container Security category. ExtraHop Networks is ranked #26 with an average rating of 8.5, while Fortinet is ranked #12 with an average rating of 8.7. ExtraHop Networks holds a 0.2% mindshare in Container Security, compared to Fortinet’s 2.4% mindshare. Additionally, 100% of ExtraHop Networks users are willing to recommend the solution, compared to 90% of Fortinet users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 16, 2024

Lacework and ExtraHop Reveal(x) 360 are competing products in the cybersecurity domain. Based on user reviews, ExtraHop Reveal(x) 360 stands out due to its robust real-time threat detection capabilities, making it worth the higher price.

Features: Users appreciate Lacework for its intuitive setup, cloud security features, and simplicity. ExtraHop Reveal(x) 360 is highlighted for its superior real-time threat detection, network traffic analysis, and advanced threat detection capabilities.

Room for Improvement: Users suggest Lacework could improve its reporting tools, customization options, and flexibility. ExtraHop Reveal(x) 360 could benefit from enhanced integration capabilities, detailed documentation, and better user guidance.

Ease of Deployment and Customer Service: Lacework is recognized for its straightforward deployment process and responsive customer service. ExtraHop Reveal(x) 360, while also appreciated for its support team, has a more complex deployment model that may require extensive planning.

Pricing and ROI: Lacework is generally seen as cost-effective with a good return on investment, albeit with some premium pricing concerns. ExtraHop Reveal(x) 360 is viewed as expensive but justifiable due to its advanced features and impact on threat mitigation.

To learn more, read our detailed ExtraHop Reveal(x) 360 vs. Lacework Report (Updated: October 2024).

Buyer's Guide

ExtraHop Reveal(x) 360 vs. Lacework

October 2024

Download the complete report

Helped 815,209 peers since 2012

Categories and Ranking

SentinelOne Singularity Clo...

Mindshare comparison

As of November 2024, in the Container Security category, the mindshare of SentinelOne Singularity Cloud Security is 2.0%, up from 0.8% compared to the previous year. The mindshare of ExtraHop Reveal(x) 360 is 0.2%, up from 0.0% compared to the previous year. The mindshare of Lacework is 2.4%, down from 4.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Container Security

Featured Reviews

Andrew W

VP - Information Technology at a financial services firm with 201-500 employees

Aug 29, 2024

Tells us about vulnerabilities as well as their impact and helps to focus on real issues

Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.

Read full review

Maksym Toporkov

Head of Research And Development at Quipu GmbH

Nov 30, 2023

A competitive choice for network detection and response with exceptional user interface, ease of implementation and minimal false positives

We were seeking a solution that can effectively identify security incidents within our networks, providing a level of visibility that surpasses what other products with agents currently offer. Additionally, we have a critical need for robust asset management capabilities. Traditional agent-based…

Read full review

Robert Croteau

Director of Enablement at Avesha

Dec 16, 2022

It provides a good overview of our security posture

The most valuable feature is Lacework's ability to distill all the security and audit logs. I recommend it to my customers. Normally, when I consult for other customers that are getting into the cloud, we use native security tools. It's more of a rule-based engine. They have to go in and put their policies in place. It's hard for them to implement that, especially if they don't have a real security team. The team's policymakers don't do anything. Lacework takes out all the noise and gives them bits of things that actually matter with the application after it learns the behavior.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"PingSafe offers security solutions for both Kubernetes and CI/CD pipelines."

"There's real-time threat detection. It can show threats and find issues based on their severity and helps us with real-time monitoring."

"It gives me the information I need."

"PingSafe's graph explorer is a valuable tool that lets us visualize all connected services."

"Cloud Native Security offers attack path analysis."

"PingSafe offers an intuitive user interface that lets us navigate quickly and easily."

"Cloud Native Security offers a valuable tool called an offensive search engine."

"PingSafe offers three key features: vulnerability management notifications, cloud configuration assistance, and security scanning."

More SentinelOne Singularity Cloud Security pros

"It is scalable."

"It stands out for its intuitive and efficient user interface, robust detection capabilities with minimal false positives, and the ability to handle encrypted traffic, making it a valuable asset for network security and management."

"It is very easy to collect and handle data in ExtraHop Reveal(X) Cloud. Integration with Big Data is also easy. Many of our customers integrate it with Big Data platforms like Splunk or Elastic. It is also easy to handle and easy to understand."

"The most valuable feature is Lacework's ability to distill all the security and audit logs. I recommend it to my customers. Normally, when I consult for other customers that are getting into the cloud, we use native security tools. It's more of a rule-based engine."

"Lacework is helping a lot in reducing the noise of the alerts. Usually, whenever you have a tool in place, you have a lot of noise in terms of alerts, but the time for an engineer to look into those alerts is limited. Lacework is helping us to consolidate the information that we are getting from the agents and other sources. We are able to focus only on the things that matter, which is the most valuable thing for us. It saves time, and for investigations, we have the right context to take action."

"The most valuable aspects are identifying vulnerabilities—things that are out there that we aren't aware of—as well as finding what path of access attackers could use, and being able to see open SSL or S3 buckets and the like."

"I find the cloud configuration compliance scanning mature. It generates a lot of data and supports major frameworks like ISO 27001 or SOC 2, providing reports and datasets. Another feature I appreciate is setting custom alerts for specific events. Additionally, I value the agent-based monitoring and scanning for compute nodes. It gives us deeper insights into our workloads and helps identify vulnerabilities across our deployed assets."

"For the most part, out-of-the-box, it tells you right away about the things you need to work on. I like the fact that it prioritizes alerts based on severity, so that you can focus your efforts on anything that would be critical/high first, moderate second, and work your way down, trying to continue to improve your security posture."

"Polygraph compliance is a valuable feature. In our perspective, it delivers significant benefits. The clarity it offers, along with the ability to identify and address misconfigurations, is invaluable. When such issues arise, we promptly acknowledge and take action, effectively collaborating with our teams and the responsible parties for those assets. This enables us to promptly manage problems as soon as they arise."

"The best feature, in my opinion, is the ease of use."

"There are many valuable features that I use in my daily work. The first are alerts and the event dossier that it generates, based on the severity. That is very insightful and helps me to have a security cap in our infrastructure. The second thing I like is the agent-based vulnerability management, which is the most accurate information."

More Lacework pros

Cons

"Maybe container runtime security could be improved."

"It took us a while to configure the software to work well in this type of environment, as the support documents were not always clear."

"One area for improvement could be the internal analysis process, specifically the guidance provided for remediation."

"Singularity Cloud Security currently lacks a break-glass account function, which is a critical component for implementing Single Sign-On as it allows for regaining access in emergencies."

"Sometimes the Storyline ID is a bit wacky."

"There is a bit of a learning curve for new users."

"We've found a lot of false positives."

"There is room for improvement in the current active licensing model for PingSafe."

More SentinelOne Singularity Cloud Security cons

"There needs to be more support."

"A drawback includes bucket storage limitations for payload data, necessitating timely extraction for thorough investigations."

"They can include integration with SAP. Currently, no vendor provides network performance monitoring in the SAP market. It is a very big market. We have around 400 customers for SAP in Korea. In the USA, there are more than 10,000 customers."

"The configuration and setup of alerts should be easier. They should make it easier to integrate with systems like Slack and Datadog. I didn't spend too much time on it, but to me, it wasn't as simple as the alerting that I've seen on other systems."

"There are a couple of the difficulties we encounter in the realm of cybersecurity, or security as a whole, that relate to potentially limited clarity. Having the capacity to perceive the configuration aspect and having the ability to contribute to it holds substantial advantages, in my view. It ranks high, primarily due to its role in guaranteeing compliance and the potential to uncover vulnerabilities, which could infiltrate the system and introduce potential risks. I had been exploring a specific feature that captured my interest. However, just yesterday, I participated in a product update session that announced the imminent arrival of this feature. The feature involves real-time alerting. This was something I had been anticipating, and it seems that this capability is now being integrated, possibly as part of threat intelligence. While anomaly events consistently and promptly appear in the console, certain alerts tend to experience delays before being displayed. Yet, with the recent product update, this issue is expected to be resolved. Currently, a comprehensive view of all policies is available within the console. However, I want a more tailored display of my compliance posture, focusing specifically on policies relevant to me. For instance, if I'm not subject to HIPAA regulations, I'd prefer not to see the HIPAA compliance details. It's worth noting that even with this request, there exists a filtering mechanism to control the type of compliance information visible. This flexibility provides a workaround to my preference, which is why it's challenging for me to definitively state my exact request."

"The biggest thing I would like to see improved is for them to pursue and obtain a FedRAMP moderate authorization... I don't believe they have any immediate plans to get FedRAMP moderate authorized, which is a bit of a challenge for us because we can only use Lacework in our commercial environment."

"Lacework has not reduced the number of alerts we get. We've actually had to add resources as a result of using it because the application requires a lot of people to understand it to get the value out of it properly."

"The solution lacks a cohesive data model, making extracting the necessary data from the platform challenging. It uses its own LQL query language, and each database across different layers and modules is structured differently, complicating correlation efforts. Consequently, I had to create extensive custom reports outside Lacework because their default dashboards didn't communicate risk metrics. They're addressing these issues by redesigning their tools, including introducing the dashboard, which is a step closer to actionable insights but still needs refinement."

"Its integrations with third-party SIEMs can be better. That is one of the things that we discussed with them."

"Visibility is lacking, and both compliance-related metrics and IAM security control could be improved."

"I would like to see a remote access assistance feature. And the threat-hunting platform could be better."

More Lacework cons

Pricing and Cost Advice

"PingSafe is fairly priced."

"PingSafe's primary advantage is its ability to consolidate multiple tools into a single user interface, but, beyond this convenience, it may not offer significant additional benefits to justify its price."

"The licensing is easy to understand and implement, with some flexibility to accommodate dynamic environments."

"The pricing for PingSafe in India was more reasonable than other competitors."

"For pricing, it currently seems to be in line with market rates."

"PingSafe is not very expensive compared to Prisma Cloud, but it's also not that cheap. However, because of its features, it makes sense to us as a company. It's fairly priced."

"Pricing is based on modules, which was ideal for us."

"Its pricing is constant. It has been constant over the previous year, so I am happy with it. However, price distribution can be better explained. That is the only area I am worried about. Otherwise, the pricing is very reasonable."

More SentinelOne Singularity Cloud Security pricing and cost advice

"When compared to other solutions, it aligns with the market average, indicating a competitive pricing level."

"The pricing has gotten better. That scenario was somewhat unstable. They have a rather interesting licensing structure. I believe you get 200 resources per "Lacework unit." It was difficult, in the beginning, to figure out exactly what a "resource" was... That was a problem until about a year or so ago. They have improved it and it has stabilized quite a bit."

"It is slightly expensive. It depends on how big your environment is, but it is expensive. Right now, we are spending a lot of money. We have covered all of the cloud providers and most of our colocation facilities as well, so we cannot complain, but it is slightly expensive. It is not super expensive."

"The licensing fee was approximately $80,000 USD, per year."

"My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz."

See which vendors are best for you

Use our free recommendation engine to learn which Container Security solutions are best for your needs.

See recommendations

815,209 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

19%

Financial Services Firm

16%

Manufacturing Company

10%

Insurance Company

Financial Services Firm

13%

University

Computer Software Company

Insurance Company

Computer Software Company

18%

Financial Services Firm

14%

Manufacturing Company

Retailer

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

See all answers

What is your experience regarding pricing and costs for PingSafe?

I am personally not taking care of the pricing part, but when we moved from CrowdStrike to Singularity Cloud Native S...

See all answers

What needs improvement with PingSafe?

They can provide some kind of alert when a new type of risk is there. There can be a specific type of alert showing t...

See all answers

What do you like most about ExtraHop Reveal(x) 360?

It stands out for its intuitive and efficient user interface, robust detection capabilities with minimal false positi...

See all answers

What needs improvement with ExtraHop Reveal(x) 360?

The NDR feature analyzes network traffic, creating records with connection details. While these records offer insight...

See all answers

What advice do you have for others considering ExtraHop Reveal(x) 360?

I recommend prioritizing demos over POCs when engaging with vendors. Organizing POCs involves significant time and re...

See all answers

How would you compare Wiz vs Lacework?

Wiz and Lacework sucks... Buy Orca.

See all answers

What do you like most about Lacework?

Polygraph compliance is a valuable feature. In our perspective, it delivers significant benefits. The clarity it offe...

See all answers

What is your experience regarding pricing and costs for Lacework?

My smaller deployments cost around 200,000 a year, which is probably not as expensive as Wiz.

See all answers

Comparisons

Wiz vs SentinelOne Singularity Cloud Security

Compared 32% of the time

Prisma Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security

Compared 25% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 8% of the time

Orca Security vs SentinelOne Singularity Cloud Security

Compared 7% of the time

Qualys VMDR vs SentinelOne Singularity Cloud Security

Compared 3% of the time

More SentinelOne Singularity Cloud Security Competitors

ExtraHop Reveal(x) vs ExtraHop Reveal(x) 360

Compared 53% of the time

Corelight vs ExtraHop Reveal(x) 360

Compared 16% of the time

Forescout Platform vs ExtraHop Reveal(x) 360

Compared 15% of the time

Wiz vs ExtraHop Reveal(x) 360

Compared 15% of the time

More ExtraHop Reveal(x) 360 Competitors

Wiz vs Lacework

Compared 30% of the time

Prisma Cloud by Palo Alto Networks vs Lacework

Compared 11% of the time

AWS GuardDuty vs Lacework

Compared 9% of the time

Aqua Cloud Security Platform vs Lacework

Compared 6% of the time

Qualys VMDR vs Lacework

Compared 2% of the time

More Lacework Competitors

Product Reports

Buyer's Guide

SentinelOne Singularity Cloud Security

October 2024

SentinelOne Singularity Cloud Security report

Download SentinelOne Singularity Cloud Security product report

Buyer's Guide

Intrusion Detection and Prevention Software (IDPS)

October 2024

Download ExtraHop Reveal(x) 360 product report

Buyer's Guide

Lacework

November 2024

Download Lacework product report

Also Known As

PingSafe

ExtraHop Reveal(X) Cloud, Reveal(X) Cloud

Polygraph

Learn More

SentinelOne

Video not available

ExtraHop Networks

Video not available

Fortinet

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?

Real-time Threat Detection: Identifies and mitigates threats as they occur.
Automated Response: Automatically responds to threats to minimize impact.
Ease of Deployment: Simple setup process with scalable options.
Machine Learning Insights: AI-driven insights enhance threat prevention.
Seamless Integration: Integrates with cloud environments for unified security management.

What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?

Enhanced Threat Mitigation: Improved security against real-time threats.
Reduced Manual Intervention: Automated processes save time and resources.
Scalability: Easily adapts to growing security requirements.
Centralized Management: Manage security across platforms from a single console.
Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

Cloud is where your business operates, where it innovates, how it enables employees, and how it connects with customers. Adversaries know this, and that's why attacks against cloud assets in IaaS, PaaS, and SaaS environments are increasing. With Reveal(x) 360, you can mitigate the blast radius of advanced threats like ransomware and supply chain attacks with unified security across multicloud and hybrid environments in a single management pane.

Lacework is a cloud security platform whose Polygraph Data Platform automates cloud security at scale so customers can innovate with speed and safety. Lacework is the only security platform that can collect, analyze, and accurately correlate data across an organization’s AWS, Azure, GCP, and Kubernetes environments, and narrow it down to the handful of security events that matter. As a breach detection and investigation tool, Lacework provides information on when and how a breach happened, including the users, machines, and applications involved in the breach. By using machine learning and behavioral analytics, the solution can automatically learn what's normal for your environment and reveal any abnormal behavior. In addition, Lacework gives you continuous visibility to find vulnerabilities, misconfigurations, and malicious activity across your cloud environment.

Lacework Features

Lacework has many valuable key features. Some of the most useful ones include:

Dashboards
Reports
Workflow management
Administration console
Governance
Policy enforcement
Auditing
Access control
Workflow management
Compliance monitoring
Anomaly detection
Data loss prevention
Cloud gap analytics
Host compliance

Lacework Benefits

There are many benefits to implementing Lacework. Some of the biggest advantages the solution offers include:

Security visibility: Get deep observability into your cloud accounts, workloads, and microservices to give you tighter security control.

Threat detection: By using Lacework, your organization can identify common security events that target your cloud servers, containers, and infrastructure-as-a-service (IaaS) accounts so you can take action on them quickly.

Flexible deployment: With Lacework, you have the option to deploy the way you prefer - either agent or agentless - which provides the visibility needed to have maximum security for cloud accounts and systems. Because Lacework offers an easy-to-deploy layered approach, you gain quick time to value.

Configuration compliance: With the Lacework solution, you can easily spot IaaS account configurations that are non-compliant and identify opportunities to apply security best practices.

Synced teams: Lacework allows your teams to operate smarter and bridge the gap between security, Dev, and Ops regardless of your team's size or experience level.

Gain meaningful security insights: Lacework provides meaningful security insights, alerting you of issues before they reach production from your existing workflows. This way you can build apps quickly and confidently.

Increased revenue streams: Because the solution has built-in security from the first line of code early on, it helps users unlock higher revenue streams.

Helps avoid development delays: The Lacework solution helps you better prioritize security fixes by making security information accessible to DevOps and security teams for earlier risk mitigation that speeds innovation.

Increased productivity: Lacework provides alerts with all the context you need and eliminates data silos and costly investigations, enabling you to boost productivity.

Correlate and contextualize behaviors: Lacework can take attributes and data points from your unique environment and correlate them together into behaviors.

Simplified cloud security posture and compliance: With the Lacework platform, you can get comprehensive visibility and continuous tracking to reduce risks and meet compliance requirements so you can improve your bottom line.

Address vulnerabilities before it is too late: Lacework enables you to limit your attack surface so you can address the riskiest vulnerabilities early in the development cycle.

Sample Customers

Information Not Available

Wizards of the Coast

J.Crew, AdRoll, Snowflake, VMWare, Iterable, Pure Storage, TrueCar, NerdWallet, and more.

Buyer's Guide

ExtraHop Reveal(x) 360 vs. Lacework

October 2024

Free Report: ExtraHop Reveal(x) 360 vs. Lacework

Find out what your peers are saying about ExtraHop Reveal(x) 360 vs. Lacework and other solutions. Updated: October 2024.

DOWNLOAD NOW

815,209 professionals have used our research since 2012.

See our ExtraHop Reveal(x) 360 vs. Lacework report.

See our list of best Container Security vendors.

We monitor all Container Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.