Fortra's Tripwire Enterprise vs LogRhythm NDR comparison

The compared Fortra and LogRhythm solutions aren't in the same category. Fortra is ranked #15 in ID , with an average rating of 10.0, and holds a 1.6% mindshare in the category. LogRhythm is ranked #16 in NDaR , with an average rating of 8.0, and holds a 0.8% mindshare. Additionally, 87% of Fortra users are willing to recommend the solution, compared to 100% of LogRhythm users who would recommend it.

Fortra's Tripwire Enterprise

Read 8 Fortra's Tripwire Enterprise reviews

878 Views
711 Comparison Views

87% willing to recommend

LogRhythm NDR

Read 3 LogRhythm NDR reviews

363 Views
319 Comparison Views

100% willing to recommend

Fortra's Tripwire Enterprise

LogRhythm NDR

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Fortra's Tripwire Enterprise and LogRhythm NDR based on real PeerSpot user reviews.

Find out what your peers are saying about Darktrace, Check Point Software Technologies, Fortinet and others in Intrusion Detection and Prevention Software (IDPS).

To learn more, read our detailed Intrusion Detection and Prevention Software (IDPS) Report (Updated: June 2025).

Buyer's Guide

Intrusion Detection and Prevention Software (IDPS)

June 2025

Download the complete report

Helped 862,543 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortra's Tripwire Enterprise

Average Rating

8.0

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

Intrusion Detection and Prevention Software (IDPS) (15th)

LogRhythm NDR

Average Rating

8.0

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Network Detection and Response (NDR) (16th)

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Fortra's Tripwire Enterprise is designed for Intrusion Detection and Prevention Software (IDPS) and holds a mindshare of 1.6%, up 1.5% compared to last year.
LogRhythm NDR, on the other hand, focuses on Network Detection and Response (NDR), holds 0.8% mindshare, down 0.9% since last year.

Intrusion Detection and Prevention Software (IDPS)

Network Detection and Response (NDR)

Featured Reviews

reviewer2093205

Senior Cybersecurity Analyst at a energy/utilities company with 1,001-5,000 employees

It has excellent scalability and allows you to execute custom COCR rules, letting you fine-tune agent monitoring

I'm using Tripwire Enterprise version 9.0. In my company, thirty to forty people use Tripwire Enterprise, mainly different types of engineers, governance, risk, compliance, and cybersecurity personnel. I advise people planning to use Tripwire Enterprise to take the training because the solution has a fairly complex interface. You can do a lot of work with it, but it isn't very easy. Tripwire Enterprise is a sophisticated tool. I rate the tool an eight on a scale of one to ten because it does an excellent job of handling the unique challenges of maintaining NERC CIP compliance and monitoring industrial controls.

Read full review

AshishDubey

Product manager at Tata Communications Ltd

A scalable and stable tool that offers users a great GUI

Though I have not extensively worked on LogRhythm NDR, I know the need for a compute side since, in the past, we had required the compute side to deploy the solution in one of our company's client's infrastructure. The product's setup phase was easy and not complicated. The deployment process of LogRhythm NDR can vary between three and four weeks, depending on the skill set of the people involved in the deployment process. For deployment of the product, you have to purchase the license from LogRhythm, and you have to ensure that the compute side is ready for LogRhythm. After you deploy NDR and sensors in the premises of our company's customer on the SPAN and TAP port, and once the logs go through throughput, you can see the logs coming to LogRhythm NDR's console.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature is the integrity."

"File monitoring is the most valuable feature of the solution."

"Even if you change a single word in Notepad, it will let you know whether it was added, removed, or modified."

"The product supports different platforms."

"We use Tripwire Enterprise as a tool to test the vulnerability of a network. That is the most valuable feature of the product for us."

"What's most valuable in Tripwire Enterprise is the ability to execute custom COCR rules that lets me fine-tune how I monitor Linux and Windows agents."

"The most valuable feature is integrity management. I had some discussions with service providers, and they also agreed."

"Its reporting features are great. It gives you an in-depth report. Its customization is also great, and it is working fine."

"The solution doesn't require the creation of rules or use cases from scratch, which assists our delivery team in installation and deployment. Its dashboard is user-friendly."

"It's an excellent security tool with a user-friendly interface that's easy for anyone to use."

"It is a stable solution...It is a scalable solution."

Cons

"The main way that it can be improved is through better reporting."

"A lot of network devices need a custom integration."

"The initial setup is complex."

"It needs more local support from the OEM side. It would be great if this can be improved."

"An area for improvement in Tripwire Enterprise is stability, as my company had stability issues with the last few versions of the solution. Tripwire Enterprise has been a bit buggy."

"Cloud monitoring could be better. It would also be better if the company followed a pay-as-you-use model."

"The Windows online integration license needs to be improved."

"The deployment with certain systems can be difficult and it needs to be simplified."

"The tool has one limitation compared to its competitors. It does have a mobile app for NDR monitoring. Moreover, there is only operational training and not deployment training."

"There are opportunities for improvement, particularly in upgrading the expertise of local professionals and addressing support issues, which could potentially lead to cost reduction."

"From an improvement perspective, I would like LogRhythm NDR to reduce the compute size. I would also like LogRhythm NDR to improve the pricing model."

Pricing and Cost Advice

"Cloud monitoring could be better. It could also be cheaper. It would be better if the company followed a pay-as-you-use model."

"The licensing depends on the equipment, how many devices and the types of devices."

"Tripwire is more expensive than Netwrix."

"There are certain payments to be made towards the licensing costs attached to the product yearly. The pricing of LogRhythm NDR falls under the mid-range, in my opinion."

"When looking at the market and comparing it with other vendors, the cost seems relatively high."

"The tool costs are two million rupees for 5000 users."

See which vendors are best for you

Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.

See recommendations

862,543 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Manufacturing Company

12%

University

11%

Financial Services Firm

Computer Software Company

16%

Financial Services Firm

16%

Manufacturing Company

12%

Marketing Services Firm

10%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Tripwire Enterprise?

The product supports different platforms.

See all answers

What is your experience regarding pricing and costs for Tripwire Enterprise?

Tripwire is more expensive than Netwrix.

See all answers

What needs improvement with Tripwire Enterprise?

The solution has some limitations in OT, IoT, and AIX. The product must provide whitelisting services.

See all answers

What do you like most about LogRhythm NDR?

It is a stable solution...It is a scalable solution.

See all answers

What is your experience regarding pricing and costs for LogRhythm NDR?

The tool costs are two million rupees for 5000 users.

See all answers

What needs improvement with LogRhythm NDR?

The tool has one limitation compared to its competitors. It does have a mobile app for NDR monitoring. Moreover, there is only operational training and not deployment training.

See all answers

Comparisons

Trend Micro Deep Discovery vs Fortra's Tripwire Enterprise

Compared 24% of the time

Change Tracker Gen7 R2 vs Fortra's Tripwire Enterprise

Compared 21% of the time

Darktrace vs Fortra's Tripwire Enterprise

Compared 15% of the time

Cisco IOS Security vs Fortra's Tripwire Enterprise

Compared 13% of the time

Forcepoint Next Generation Firewall vs Fortra's Tripwire Enterprise

Compared 13% of the time

More Fortra's Tripwire Enterprise Competitors

Darktrace vs LogRhythm NDR

Compared 50% of the time

NetWitness NDR vs LogRhythm NDR

Compared 50% of the time

More LogRhythm NDR Competitors

Product Reports

Buyer's Guide

Intrusion Detection and Prevention Software (IDPS)

June 2025

Download Fortra's Tripwire Enterprise product report

Buyer's Guide

Network Detection and Response (NDR)

July 2025

Download LogRhythm NDR product report

Also Known As

No data available

LogRhythm MistNet

Overview

Tripwire Enterprise is a comprehensive security solution trusted for compliance monitoring, file integrity monitoring, security configuration management, and policy enforcement.

Key features include real-time threat detection, audit/compliance reporting, and scalable configuration management.

Users benefit from improved operations, efficiency, and decision-making capabilities, making it valuable for organizations of all sizes.

Fortra

Securing your network against advanced persistent threats (APTs) requires greater visibility to detect actors and their actions so that you can reduce your response time. As threats increase, real-time network detection and response (NDR) solutions are more critical than ever.

While other NDR solutions rely solely on machine learning (ML) based threat detection, LogRhythm uses hybrid analytics that combine machine learning, rules-based detection, and threat intelligence to analyze network, user, and host activity. This holistic approach provides a true representation of all activity within the enterprise domain, making it possible to detect lateral movement, exfiltration, malware compromise, ransomware, and other threats in real time.

LogRhythm

Sample Customers

1. Aetna 2. Adobe 3. ADP 4. Airbus 5. Amazon 6. American Express 7. Aon 8. ATT 9. Bank of America 10. Barclays 11. Baxter International 12. Bechtel 13. Boeing 14. Cisco Systems 15. CocaCola 16. Comcast 17. Dell 18. ETRADE 19. ExxonMobil 20. Ford Motor Company 21. General Electric 22. General Motors 23. Google 24. JPMorgan Chase 25. Kraft Foods 26. Lockheed Martin 27. McDonald's 28. Merck 29. Microsoft 30. Morgan Stanley 31. Nike 32. Oracle

EMW, Conduent, University of Massachusetts, Deloitte Canada, Central Bank of Barbados, Coalfire

Buyer's Guide

Intrusion Detection and Prevention Software (IDPS)

June 2025

Download Free Report

Find out what your peers are saying about Darktrace, Check Point Software Technologies, Fortinet and others in Intrusion Detection and Prevention Software (IDPS). Updated: June 2025.

DOWNLOAD NOW

862,543 professionals have used our research since 2012.

We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.