No more typing reviews! Try our Samantha, our new voice AI agent.

Fortinet FortiSandbox vs NetWitness Platform comparison

The compared Fortinet and NetWitness solutions aren't in the same category. Fortinet is ranked #7 in ATP , with an average rating of 7.8, and holds a 5.3% mindshare in the category. NetWitness is ranked #32 in Log Management , with an average rating of 9.0, and holds a 0.9% mindshare. Additionally, 94% of Fortinet users are willing to recommend the solution, compared to 75% of NetWitness users who would recommend it.
Fortinet FortiSandbox
Read 39 Fortinet FortiSandbox reviews
  • 3,569 Views
  • 3,034 Comparison Views
94% willing to recommend
NetWitness Platform
Read 36 NetWitness Platform reviews
  • 2,953 Views
  • 1,595 Comparison Views
75% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Fortinet FortiSandbox and NetWitness Platform based on real PeerSpot user reviews.

Find out in this report how the two Advanced Threat Protection (ATP) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Fortinet FortiSandbox vs. NetWitness Platform Report (Updated: September 2022).
Buyer's Guide
Fortinet FortiSandbox vs. NetWitness Platform
September 2022
Download the complete report
Helped 886,932 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiSandbox
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
39
Ranking in other categories
Advanced Threat Protection (ATP) (7th), Threat Deception Platforms (4th)
NetWitness Platform
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
36
Ranking in other categories
Log Management (32nd), Security Information and Event Management (SIEM) (34th)
 

Mindshare comparison

Fortinet FortiSandbox and NetWitness Platform aren’t in the same category and serve different purposes. Fortinet FortiSandbox is designed for Advanced Threat Protection (ATP) and holds a mindshare of 5.3%, down 8.1% compared to last year.
NetWitness Platform, on the other hand, focuses on Log Management, holds 0.9% mindshare, up 0.3% since last year.
Advanced Threat Protection (ATP) Mindshare Distribution
ProductMindshare (%)
Fortinet FortiSandbox5.3%
Palo Alto Networks WildFire7.5%
Microsoft Defender for Office 3656.9%
Other80.3%
Advanced Threat Protection (ATP)
Log Management Mindshare Distribution
ProductMindshare (%)
NetWitness Platform0.9%
Splunk Enterprise Security6.6%
Wazuh6.1%
Other86.4%
Log Management
 

Featured Reviews

AN
AhmedNatil
Security Manager at a computer software company with 11-50 employees
Advanced sandboxing has protected users from zero-day threats and has simplified secure file scanning
The smooth integrations between Fortinet FortiSandbox and other Fortinet solutions such as FortiWeb and FortiFirewall and with other Fortinet environments are what I really appreciate. We have minimum false positives during threat detection. Our clients have not given negative feedback from detection. As you know, it still needs some tuning after implementation. However, we never receive negative feedback for many false positives during implementation.
Read full review
reviewer2256927 - PeerSpot reviewer
reviewer2256927
Head of Information Security, Cyber Defense and IT Risk Management at HCT. at a transportation company with 201-500 employees
A solid SIEM solution that should improve technical support and online resources to be easier to use
A big problem with the product is that we don't have much professional experience in Israel installing, implementing, and integrating this product. There is not enough of a knowledge base. There is no support for this product in this country, so problems have to be resolved through global technical teams. We like to work locally because of the language, and when the product is only supported outside the country, it's a little difficult to implement and use this product. Moreover, AI is something that must be added immediately. Artificial intelligence is a part of the competitors' products, and it's not been implemented for us.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I'm very satisfied with this product."
"Setup and installation is very easy with the Fortinet Portal."
"The scanner office document as well as PDF are useful. The most valuable thing is that you can emulate different operating systems without having the danger of getting something infected. It emulates several operating systems, and as a result, you either get the file or you don't get the file."
"We have seen a measurable decrease in the mean time to detect or respond to threats, on the order of 20 percent."
"If there is malicious traffic that is going through the web application, we can halt that action, instead of waiting for the AntiVirus to take action."
"The real-time analysis capability of FortiSandbox is beneficial for email analysis."
"Fortinet FortiSandbox's most valuable feature is the security it provides against threats, such as ransomware. Additionally, it integrates well with APIs."
"The dynamic behavior analysis is excellent. We have many attacks caught by the FortiSandbox as zero-day attacks. Additionally, the administration is simple and can be customized to fit your companies needs."
More Fortinet FortiSandbox pros
"The most valuable feature of RSA NetWitness Logs and Packets are the alerts and correlations tools."
"The most valuable features are the packet inspection and the automated incident response."
"The solution is really scalable for the high-end power, enterprise customer."
"The newer 11.5 version that my team is using has found it to have good mapping."
"Their technical support responds quickly and are knowledgable."
"The most valuable feature is the ability to write rules and triggers for network communication, and then being able to investigate based on that."
"The detection of ransomware in the internal network has benefited my organization."
"The most valuable feature is the correlation, as it can report in real-time and monitor the management."
More NetWitness Platform pros
 

Cons

"The response time from technical support should be improved."
"The reporting tools could be improved in Fortinet FortiSandbox."
"If they plan to provide a feature that would make it easier for the customer to configure themselves, that would be appropriate."
"When there are passwords in the password-protected files, it can't scan them or do things like this."
"The initial setup is not too complex but could be easier."
"If we can have more dashboards, it would be good."
"The use cases in Fortinet FortiSandbox are not good. It is difficult to upload a custom VM for Fortinet FortiSandbox."
"It can be difficult if you need to use the Command Line Interface (CLI). It's much easier if you only have to deal with the GUI."
More Fortinet FortiSandbox cons
"The solution should have more integration capabilities with different platforms."
"If we have the ability to run a dynamic analysis through malware in the same suite, it would be great to have a sandbox solution to analyze malware through dynamic analysis."
"The system architecture is complex and sometimes it’s hard to troubleshoot potential problems."
"The user interface is a little bit difficult for new users and it needs to be improved."
"Sometimes, it gives me static when integrating Windows-based systems. This solution should trigger a meaningful log or message indicating the reason the user or implementer can't get into the machine."
"The product continues to crash. Even with tech support help, it does not resolve itself."
"The initial setup was complex because it took a lot of time to complete the implementation."
"The implementation needs assistance."
More NetWitness Platform cons
 

Pricing and Cost Advice

"I rate the product's pricing a five or six on a scale of one to ten, where one is low, and ten is high."
"Fortinet is more reasonable than Palo Alto."
"The license for Fortinet FortiSandbox depends on the use case."
"Altogether, it is about €10,000 for the Sandbox and Email Gateway."
"FortiSandbox is a subscription that can be purchased from Fortinet directly. Only using FortiSandbox as features purchased as a subscription in the cloud."
"The price is competitive."
"Fortinet FortiSandbox is a nominally priced product, so I would not say that it is a very cheap tool."
"It is an expensive solution."
More Fortinet FortiSandbox pricing and cost advice
"It is cheap."
"In comparison to other SIEM solutions such as Splunk, NetWitness is less costly."
"The licenses are good but the cost is very expensive."
"The tool is very expensive, so I rate the pricing a ten out of ten. The solution has an annual subscription."
"This is a pricey solution; it's not cheap."
"Compared to the competition, the is price is not that high."
"The NetWitness Platform may be affordable only for enterprise-level customers, as it may not be within the budget of small and medium-sized businesses."
"The product price was reasonable for my region and the market."
More NetWitness Platform pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
See recommendations
886,932 professionals have used our research since 2012.
 

Comparison Review

VS
Vinod Shankar
Manager, Enterprise Risk Consulting at a tech company with 1,001-5,000 employees
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
10%
Comms Service Provider
10%
Government
8%
Computer Software Company
7%
Financial Services Firm
12%
Construction Company
8%
Performing Arts
7%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business15
Midsize Enterprise13
Large Enterprise9
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise7
Large Enterprise20
 

Questions from the Community

What do you like most about Fortinet FortiSandbox?
The real-time analysis capability of FortiSandbox is beneficial for email analysis.
See all answers
What is your experience regarding pricing and costs for Fortinet FortiSandbox?
The cost is in the mid-range. It is not low and it is not high.
See all answers
What needs improvement with Fortinet FortiSandbox?
I think Fortinet FortiSandbox could introduce more automation tools and AI tools.
See all answers
What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
See all answers
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
See all answers
What is your primary use case for NetWitness Platform?
I use NetWitness Platform ( /products/netwitness-platform-reviews ) in the financial industry as a good product with excellent capabilities and integration with various devices.
See all answers
 

Comparisons

Palo Alto Networks WildFire vs Fortinet FortiSandbox Logo
Palo Alto Networks WildFire vs Fortinet FortiSandbox
Compared 22% of the time
Check Point SandBlast Network vs Fortinet FortiSandbox Logo
Check Point SandBlast Network vs Fortinet FortiSandbox
Compared 11% of the time
SonicWall Capture Advanced Threat Protection vs Fortinet FortiSandbox Logo
SonicWall Capture Advanced Threat Protection vs Fortinet FortiSandbox
Compared 7% of the time
Trellix Network Detection and Response vs Fortinet FortiSandbox Logo
Trellix Network Detection and Response vs Fortinet FortiSandbox
Compared 7% of the time
Commvault Cloud vs Fortinet FortiSandbox Logo
Commvault Cloud vs Fortinet FortiSandbox
Compared 5% of the time
More Fortinet FortiSandbox Competitors
IBM Security QRadar vs NetWitness Platform Logo
IBM Security QRadar vs NetWitness Platform
Compared 7% of the time
Splunk Enterprise Security vs NetWitness Platform Logo
Splunk Enterprise Security vs NetWitness Platform
Compared 7% of the time
RSA enVision vs NetWitness Platform Logo
RSA enVision vs NetWitness Platform
Compared 4% of the time
Palo Alto Networks WildFire vs NetWitness Platform Logo
Palo Alto Networks WildFire vs NetWitness Platform
Compared 4% of the time
Elastic Security vs NetWitness Platform Logo
Elastic Security vs NetWitness Platform
Compared 3% of the time
More NetWitness Platform Competitors
 

Product Reports

Buyer's Guide
Fortinet FortiSandbox
April 2026
Fortinet FortiSandbox reportDownload Fortinet FortiSandbox product report
Buyer's Guide
NetWitness Platform
April 2026
NetWitness Platform reportDownload NetWitness Platform product report
 

Also Known As

FortiSandbox
RSA Security Analytics
 

Overview

Fortinet FortiSandbox is a behavior-based threat detection solution that prevents and detects malicious code in files transferred within the organization. It is integrated with FortiGate firewalls and FortiMail for threat protection and can be used for monitoring and reporting. The solution inspects files in a virtual environment with different types of virtual machines and can block or quarantine files based on their score. 

The most valuable features include dynamic behavior analysis, manual scan features, easy management and configuration, fast scanning, scalability, customization, and ICAP protocol. The solution is cost-effective and faster than other sandbox solutions, with a good user interface.

Fortinet

NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.

NetWitness
 

Sample Customers

Lush, Barnabas Health, Options, Riverside Healthcare, Hillsbourough County Schools, Columbia Public Schools, Schiller AG
Los Angeles World Airports, Reply
Buyer's Guide
Fortinet FortiSandbox vs. NetWitness Platform
September 2022
Free Report: Fortinet FortiSandbox vs. NetWitness Platform
Find out what your peers are saying about Fortinet FortiSandbox vs. NetWitness Platform and other solutions. Updated: September 2022.
DOWNLOAD NOW
886,932 professionals have used our research since 2012.
See our Fortinet FortiSandbox vs. NetWitness Platform report.

We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.