We performed a comparison between Lumu and Vectra AI based on real PeerSpot user reviews.
Find out in this report how the two Network Detection and Response (NDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The context provided by the tool is very complete, it includes the miter matrix, playbooks, links, hashes, and much more."
"Most of it is automated, so I do not have to watch it to get alerts."
"Lumu protects against threats immediately and handles them in time."
"You can access external links, playbooks, MITRE Matrix, and a lot of information."
"It's been helpful for overall extended network visibility."
"Vectra produces actionable data using automation. That has helped us. It's less manpower now to look at incidents, which has definitely increased efficiency. Right now, in a lot of cases, our mean time to detection is within zero days. This tells me by the time something happened, and we were able to detect it, it was within the same day."
"One of the core features is that Vectra AI triages threats and correlates them with compromised host devices. From a visibility perspective, we can better track the threat across the network. Instead of us potentially finding one device that has been impacted without Vectra AI, it will give us the visibility of everywhere that threat went. Therefore, visibility has increased for us."
"The fact that we get the visualization of what's happening on our network, which is a way of improving our security in-depth is most valuable."
"It is doing some artificial intelligence. If it sees a server doing a lot of things, then it will assume that is normal. So, it is looking for anomalous behavior, things that are out of context which helps us reduce time. Therefore, we don't have to look in all the logs. We just wait for Vectra to say, "This one is behaving strange," then we can investigate that part."
"The solution is currently used as a central threat detection and response system."
"It keeps up with the network traffic, which is a good thing. It provides more context to plain alerts compared to using an older system. So, it helps an analyst reduce the information overload."
"We discovered a lot of things in our network and are correcting several misconfigurations. We are learning how some apps work together and how some things shouldn't happen. It's also easier for us to identify the source of a brute force, whereas before, we didn't even know we had a brute force."
"What I like best about Vectra AI is that it alerts you about suspicious activities."
"It would be good if we could access the physical logs."
"I am happy with the current features. However, one important one is to improve the reports."
"The reports need improvement."
"The integration with different vendors and endpoints could be improved."
"Nothing so far needs to be improved."
"Vectra is still limited to packet management. It's only monitoring packet exchanges. While it can see a lot of things, it can't see everything, depending on where it's deployed. It has its limits and that's why I still have my SIEM."
"It does a little bit of packet capture on alert so you can look at the packet capture activity going on, but it doesn't collect a whole lot of data. Sometimes it's only one or two frames, sometimes it does collect more. That's why they have the addition of their Recall platform, because that really does help expand the capability."
"The false positives and the tuning side of it is something that could use improvement. But that could be from our side."
"The main improvement I can see would be to integrate with more external solutions."
"Some of their integrations with other sources of data, like external threat feeds, took a bit more work than I had hoped to get integrated."
"We would like to see more information with the syslogs. The syslogs that they send to our SIEM are a bit short compared to what you can see. It would be helpful if they send us more data that we can incorporate into our SIEM, then can correlate with other events."
"One thing which I have found where there could be improvement is with regard to the architecture, a little bit: how the brains and sensors function. It needs more flexibility with regard to the brain. If there were some flexibility in that regard, that would be helpful, because changing the mode of the brain is complex. In some cases, the change is permanent. You cannot revert it."
"The solution's marketing is not good."
Lumu is ranked 6th in Network Detection and Response (NDR) with 5 reviews while Vectra AI is ranked 2nd in Network Detection and Response (NDR) with 40 reviews. Lumu is rated 9.8, while Vectra AI is rated 8.6. The top reviewer of Lumu writes "Protects against threats and handles it in time with moderate pricing". On the other hand, the top reviewer of Vectra AI writes "Integrates well with other security solutions and provides good technical support". Lumu is most compared with ExtraHop Reveal(x), Stellar Cyber Open XDR, LogRhythm NDR, Darktrace and Fortinet FortiGate IPS, whereas Vectra AI is most compared with Darktrace, ExtraHop Reveal(x), Cisco Secure Network Analytics, Arista NDR and Corelight. See our Lumu vs. Vectra AI report.
See our list of best Network Detection and Response (NDR) vendors and best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Network Detection and Response (NDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.