We performed a comparison between Group-IB Threat Intelligence and NetWitness XDR based on real PeerSpot user reviews.
Find out in this report how the two Threat Intelligence Platforms solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The tool's most valuable feature is the sandbox."
"The totality of the recordings is quite important. The networks, the new threat actors, the new methods, tactics, techniques, and procedures."
"Threat Intelligence's best feature is threat activation."
"The most valuable Group-IB Threat Intelligence features are their detections, especially in terms of account and card information leakage. This data sets Group-IB apart from some of the competition."
"We have found the site intelligence features to be the most valuable."
"The log correlation is good."
"It is stable. We have been using it for some time, without any issues."
"This solution allows us to locate the malware in real-time."
"We've contacted technical support several times. They've been very good. They have been able to help us resolve our issues."
"It helps our security team respond more accurately when there are threats, then we get less false positives or negatives."
"RSA NetWitness does market analysis in a more granular form. It gives you full visibility."
"Technical support is knowledgeable."
"The interface of this solution is very flexible and easy to use."
"Group-IB Threat Intelligence should improve integration for SIEM and SOAR solutions."
"The lack of appliance-based or on-premise options for this solution is its biggest downfall. Clients request them often."
"Threat Intelligence's OT security could be improved."
"As the landscape evolves, they could provide a little more detail or specificity to map it to the MITRE ATT&CK framework."
"The web intelligence could be improved. It is not as good as the intelligence from other solutions."
"Threat detection could be better."
"I would like to see Security Orchestration and Response Automation (SOAR) integration."
"This solution needs an upgrade in reporting. I have heard from RSA that they are working on this, but as of yet it is not available."
"The deployment process is complex. I don't know why, but this solution will suddenly stop working. Logs stop coming. Often, one thing or another stops working. Most of the time, one of my team members is working with troubleshooting and working with technical support. Log passing is also one of the biggest challenge."
"RSA NetWitness Network could improve on integration with non-native application integration."
"The contamination feature could be improved."
"The initial setup requires a high level of skill."
"The threat intelligence could improve in RSA NetWitness Endpoint."
Group-IB Threat Intelligence is ranked 9th in Threat Intelligence Platforms with 5 reviews while NetWitness XDR is ranked 13th in Threat Intelligence Platforms with 15 reviews. Group-IB Threat Intelligence is rated 8.8, while NetWitness XDR is rated 8.0. The top reviewer of Group-IB Threat Intelligence writes "Easy to setup, highly stable and scalable and efficiently tracks threat actors and analyze their tactics". On the other hand, the top reviewer of NetWitness XDR writes "Beneficial single unified dashboard, good native application integration, and high availability". Group-IB Threat Intelligence is most compared with Recorded Future, Kaspersky Threat Intelligence Services, CrowdStrike Falcon, Mandiant Advantage and Anomali ThreatStream, whereas NetWitness XDR is most compared with Darktrace, ExtraHop Reveal(x), CrowdStrike Falcon, SentinelOne Singularity Complete and Microsoft Defender for Endpoint. See our Group-IB Threat Intelligence vs. NetWitness XDR report.
See our list of best Threat Intelligence Platforms vendors.
We monitor all Threat Intelligence Platforms reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.