Try our new research platform with insights from 80,000+ expert users

Netsurion vs Snare comparison

Netsurion and Intersect Alliance are both solutions in the Security Information and Event Management (SIEM) category. Netsurion is ranked #53, while Intersect Alliance is ranked #45 with an average rating of 8.0. Netsurion holds a 0.7% mindshare in SIEM, compared to Intersect Alliance’s 0.6% mindshare. Additionally, 92% of Netsurion users are willing to recommend the solution, compared to 100% of Intersect Alliance users who would recommend it.
Netsurion
Read 24 Netsurion reviews
  • 1,764 Views
  • 935 Comparison Views
92% willing to recommend
Snare
Read 3 Snare reviews
  • 1,091 Views
  • 687 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

Snare and Netsurion are leading products in cybersecurity. Netsurion seems to have the upper hand due to its comprehensive feature set and perceived value.

Features: Snare is praised for its robust log management, real-time alert capabilities, and effective data analysis. Netsurion offers advanced threat detection, easy integration with existing systems, and comprehensive reporting. Netsurion's feature set is broader, leading to higher user satisfaction.

Room for Improvement: Snare needs enhancement in scalability, has a steep learning curve, and requires better user interface design. Netsurion could improve its user documentation, resolve occasional integration issues, and streamline its reporting functionality.

Ease of Deployment and Customer Service: Snare is well-regarded for its deployment model but needs a more intuitive setup process and better support documentation. Netsurion offers smoother deployment and proactive customer service.

Pricing and ROI: Snare is cost-effective with moderate setup costs and solid ROI, but users suggest better clarity in pricing tiers. Netsurion, while slightly more expensive, provides a higher ROI due to its extensive feature set and better user satisfaction.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Netsurion vs. Snare Report (Updated: December 2025).
Buyer's Guide
Netsurion vs. Snare
December 2025
Download the complete report
Helped 881,114 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Netsurion
Ranking in Security Information and Event Management (SIEM)
53rd
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
24
Ranking in other categories
Managed Security Services Providers (MSSP) (33rd), SOC as a Service (14th), Managed Detection and Response (MDR) (37th), Extended Detection and Response (XDR) (47th)
Snare
Ranking in Security Information and Event Management (SIEM)
45th
Average Rating
8.0
Reviews Sentiment
7.4
Number of Reviews
3
Ranking in other categories
Log Management (39th)
 

Mindshare comparison

As of January 2026, in the Security Information and Event Management (SIEM) category, the mindshare of Netsurion is 0.7%, up from 0.3% compared to the previous year. The mindshare of Snare is 0.6%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Market Share Distribution
ProductMarket Share (%)
Snare0.6%
Netsurion0.7%
Other98.7%
Security Information and Event Management (SIEM)
 

Featured Reviews

John-Berry - PeerSpot reviewer
John-Berry
Information Technology Manager at ProfitSolv
The SOC center monitors, hunts, and notifies us of threats around the clock
I know they are working to resolve this issue, but Netsurion is currently unable to retrieve logs from S3 buckets. We use WP Engine for a lot of web hosting as well as AWS, and both of these platforms use S3 buckets. I would like Netsurion to be able to pull logs from Linux devices. We have some of that capability, and I believe they can do it. However, the way it works with Amazon is strange and glitchy. Therefore, working something out with Amazon would be great. Netsurion's SOC can be a bit too aggressive at times. We have asked them to adjust their playbook because I am tired of being notified about the same issue multiple times a day. I am aware of the issue, and it is not a cause for concern. Let's only take action on this issue if we see an actual problem.
Read full review
Ganesh-Jadhav - PeerSpot reviewer
Ganesh-Jadhav
Senior Cyber Security Analyst at Securonix
Provides a consistent format and is used to ingest data into a SIEM solution
We are an MSSP, and we have different customers. I'm not working on Snare directly, but I'm working on the actual data. We collect the data and create the rules on top of the data and Snare events. I am happy with the solution's GUI. I would recommend Snare to other users because it is better for sending data, installing, and forwarding the data. Users will initially find it difficult to identify the event types and installation, but it gets easier as you use it. Snare is a well-known format, and most SIEM solutions are utilizing it. So, it's very easy to configure on their end as well. Snare sends data into a specific format, including security data and non-security data. Overall, I rate the solution an eight out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most important feature is keeping track of when accounts are created and deleted, when permission groups are changed, and memberships are changed in groups; and overall, how many errors are occurring on the various systems that we're monitoring."
"If I were to look at logs manually, there's no way I could do that. As an example, they are 48 million logs processed a day. There is no way I could look at all 48 million of those. So, it gives me a good structure to be able to look at the different incidents which are created and do different searches."
"Expediting incident response is really great."
"Netsurion's 24/7 monitoring has enhanced the overall security of the company. They have someone looking at the data 24/7 who will call us as needed. If their team spots a malicious process after hours, they notify the appropriate person by phone. We get a lot of actionable threat intelligence from Netsurion. For example, if a user clicks on a malicious link in a web page and starts an unusual process that isn't on the white-list, Netsurion's team can detect it and prevent it from executing. Afterward, they'll notify us by telephone, so we can respond and clean up whatever damage has occurred."
"I like EventTracker's dashboard. I see it every time I log in because it's the first thing you get to. We have our own widgets that we use. For the sake of transparency, there are a few widgets that we look at there and then we move out from there... Among the particularly helpful widgets, the not-reporting widget is a big one. The number-of-logs-processed is also a good one."
"There are a host of things that are most valuable. Obviously monitoring our environment and reporting out different events is important. They perform a suite of services. They monitor all of our servers, all of our key infrastructure, like our DNS, our switches, all that stuff. They aggregate and correlate that quarterly. They'll tell us if we're getting a lot of login failures and something is going on or if something's weird."
"I really appreciate the fact that the dashboard breaks everything down into a pretty easy view for me... It shows what changes are happening to privileged user accounts, access and identity, what's cropping up. It shows application activity and whether we've got system resources that aren't online and being found anymore. It's a pretty simple, easy, quick hit and there are the supporting logs behind it. If I need to drill down further, I can do that quickly. It's very effective."
"Netsurion was easy to deploy. I have worked with other systems that were a little less complex, but they weren't quite as easy to deploy."
More Netsurion pros
"Snare has good agents, especially for Windows."
"The best thing about Snare is its format and consistency."
"The most valuable feature of Snare is flexibility or the ability to filter all things you don't want and don't have security value."
 

Cons

"There are some issues with searches taking a long period of time, but they assured me that they have implemented a new search function that's available in version 9, but which requires a solid-state hard drive... Depending on how many logs you have it could take a long time to return the results if you're looking back prior to the last 30 days."
"The biggest problem is that we have too many domain controllers. So, we have to keep all the clients and main system updated with the latest versions along with making sure all the firewalls are open."
"Where there is an opportunity for improvement is in the interface used for performing the searches. You have to understand Elasticsearch search too well for the security team to be able to take really full advantage of that part of the product. It's not as intuitive as I would like it to be for new staff coming in. The general query capability is a little bit challenging."
"There's always room to improve because there would be no competition if they had a perfect solution. The GUI to perform searches within the product may not be intuitive to a new user."
"Communication is always something that can be improved, but I feel that any time we've had a communication issue, it's quickly addressed when we bring those up at the monthly meetings. Usually, it's an individual that wasn't clear in the communication, it's not the process per se. You always have to be able to segregate if the process didn't work or an individual either didn't say the right thing or my people didn't understand what they were being told."
"Everything that I've wanted has been added in. EDR was added, and MITRE was added. Those were two big ones that we didn't even have to push for."
"I would like to see the dashboard come up more quickly."
"It would be great if they had a client for phones by which they could push a notification to us, as opposed to via email."
More Netsurion cons
"The solution is now developing a SIEM-like feature on Snare Central Server, but it's not complete yet."
"Snare should modernize its GUI a little bit."
"Users will initially find it difficult to identify the event types and installation in Snare."
 

Pricing and Cost Advice

"Our pricing for Netsurion last year was US $52,000 per year."
"The upfront costs have increased, and we have been locked into this contract. The cost of changing over from it is way too high."
"The pricing and licensing seem very reasonable. The managed service part of it feels like it gives me the equivalent of a full-time engineer for a lot less money. So, I feel it's a good value."
"Our budget follows the calendar year. We just started a new budget year at the beginning of the month. We did budget for an increase in our threat management system selection. Therefore, we have the budget to implement and accommodate a threat management system change, including an increase for the quoted actions that we received to improve EventTracker. We are just waiting on our council to approve that budget, which might not be for a little while. Hopefully, when they do, we will be able to jump on doing something."
"You are paying for different levels, especially as far as the monitoring goes and how often you review it with the team. The other factor that figures in is how many nodes are on your network, such as clients, network equipment, servers, etc. There are some additional pieces on top of that, but it's laid out pretty simply, as far as how much you're going to pay for a node."
"In the security space, it's hard to quantify your return on investment. So, I don't. We spend about $40,000 a year and so. It's hard to say if the SIEM saved that much money."
"I don't know if the pricing is by the seat but we're paying about $20,000 to 25,000 a year. On top of that, we pay for the managed support services. That runs us about another $35,000 or $40,000 a year."
"EventTracker's subscription-based model is interesting as far as yearly license type stuff. It's nice because you know what it's going to be next year. We haven't really looked at any other solutions. The pricing at the time compared to the other solutions was a lot less. A couple of years ago, we actually looked at Splunk. The amount in Splunk's licensing model is based on 20 gigs a day, or something like that. Based on our number of logs and stuff that we were already generating, the costs would be substantially more for the amount of logs that we would be getting."
More Netsurion pricing and cost advice
"Snare is a cheap solution because a lot of customers are using it."
"On a scale from one to ten, where one is cheap, and ten is expensive, I rate Snare's pricing a four out of ten."
"Snare has reasonable pricing."
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
881,114 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Performing Arts
16%
Manufacturing Company
9%
Outsourcing Company
9%
Retailer
6%
Financial Services Firm
15%
Computer Software Company
12%
Manufacturing Company
9%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise7
Large Enterprise7
No data available
 

Questions from the Community

Ask a question
Earn 20 points
What do you like most about Snare?
The best thing about Snare is its format and consistency.
See all answers
What is your experience regarding pricing and costs for Snare?
Snare is a cheap solution because a lot of customers are using it.
See all answers
What needs improvement with Snare?
Users will initially find it difficult to identify the event types and installation in Snare.
See all answers
 

Comparisons

Legato Security vs Netsurion Logo
Legato Security vs Netsurion
Compared 8% of the time
Devo vs Netsurion Logo
Devo vs Netsurion
Compared 8% of the time
IBM Security QRadar vs Netsurion Logo
IBM Security QRadar vs Netsurion
Compared 8% of the time
Trellix Helix Connect vs Netsurion Logo
Trellix Helix Connect vs Netsurion
Compared 7% of the time
Rapid7 InsightIDR vs Netsurion Logo
Rapid7 InsightIDR vs Netsurion
Compared 7% of the time
More Netsurion Competitors
Cribl vs Snare Logo
Cribl vs Snare
Compared 13% of the time
Splunk Enterprise Security vs Snare Logo
Splunk Enterprise Security vs Snare
Compared 11% of the time
LogRhythm SIEM vs Snare Logo
LogRhythm SIEM vs Snare
Compared 9% of the time
syslog-ng vs Snare Logo
syslog-ng vs Snare
Compared 8% of the time
OpenText Enterprise Security Manager vs Snare Logo
OpenText Enterprise Security Manager vs Snare
Compared 8% of the time
More Snare Competitors
 

Product Reports

Buyer's Guide
Netsurion
January 2026
Netsurion reportDownload Netsurion product report
Buyer's Guide
Log Management
January 2026
Snare reportDownload Snare product report
 

Also Known As

Netsurion Managed Threat Protection, Netsurion EventTracker
No data available
 

Overview

Netsurion offers robust SIEM capabilities enhanced by managed services, facilitating efficient threat identification and response with real-time alerts and comprehensive reporting.

Netsurion stands out for its integration of SIEM, IDS, and vulnerability management. Its real-time threat alerts and dashboards enhance user response capabilities. With centralized logging from Windows, Linux, Cisco devices, firewalls, and Active Directory, Netsurion enables effective compliance support for HIPAA and PCI standards. Managed Threat Protection with the embedded MITRE ATT&CK Framework enhances threat intelligence, while its evolving interface aims to improve user interactions. However, some users find deployment and searching challenging, pointing to areas for improvement.

What are Netsurion's key features?
  • SIEM Capabilities: Efficient threat identification using real-time alerts and dashboards.
  • Managed Services: Provides remote monitoring and advisory support.
  • Comprehensive Reporting: Assists in compliance and actionable insights.
  • MITRE ATT&CK Framework: Enhances threat intelligence and management.
  • Seamless Integration: Works with existing systems for streamlined operations.
What benefits should users consider in reviews?
  • Threat Response Tool: Rapid identification and response to security incidents.
  • Usability: Efforts to evolve and simplify user interactions.
  • Operational Efficiency: Streamlined processes through integration and managed services.
  • Compliance Support: Assistance with industry standards like HIPAA and PCI.

Netsurion is frequently implemented in industries requiring comprehensive security monitoring and compliance, such as healthcare and finance. It aids businesses in consolidating security efforts, offering insights into user activities and system changes, an asset for companies lacking substantial internal resources.

Netsurion

Snare customers consistently tell us that as the financial and reputational consequences of data breaches, cyber threats like malware and ransomware and the constant risks from insider threats increase that they have urgent and ongoing requirements for maintaining regulatory compliance, auditing and managing cyber threat detection and response. They also tell us that existing solutions like SIEM are often complex to implement and maintain, require specialised technical resources or are increasingly unaffordable or variable in their pricing. As a result of these increased requirements Prophecy International has created the Snare product suite.

Compliance requirements can include any number of regulatory mandates including PCI-DSS, Sarbanes Oxley, HIPAA, NERC, GDPR and more. This makes Snare a high value solution for companies in the Government, Defence and Military sectors, Banking, Finance and Insurance, Retail, Health, Energy, Oil & Gas markets.

Snare is a complete suite of Centralised Log Management (CLM), Security Analytics and SIEM tools.

Created by ex military personnel for military use it offers the highest level of security.

Designed to work as part of your security ecosystem Snare also integrates with most other SIEMs including SPLUNK, QRadar, ARCSight and many more. With over 3,000 customers worldwide using Snare for compliance, auditing and threat response, Snare is the name you can trust.

From Enterprise Agents for Windows, Unix, Linux, OSX, Flat files and Databases to a complete forensics and long term log storage platform, agent management console, multipoint log reflector, advanced log analytics and next gen SIEM capability. Either hosted or on prem with both Opex and Capex pricing models, Snare is a one stop shop for CLM and SIEM. Snare product suite is broadly split into two areas:

  • Centralised Log Management and Snare Analytics

Centralised Log Management incorporates and 4 core technologies

  • Snare Enterprise Agents
  • Snare Reflector
  • Snare Agent Management Console
  • Snare Central Service

Snare Analytics incorporates another 4 core technologies

  • Enhanced Snare Central Server incorporating Analytics
  • Data Ingestion Technologies (via our Adaptors)
  • Dashboards and Visualisations including custom KPI engine
  • Runbook – enabling SOAR

These products can be bought independently or combined into a compete solution. You can also “mix and match” with your current security technologies ensuring that you can leverage your existing investments.

Intersect Alliance
 

Sample Customers

The Salvation Army, The FRESH Market, Pacific Western Bank, NASA, American Academy of Orthopaedic Surgeons (AAOS), and Talbot’s Stores
Military, Defence and Security Agencies, Banking Finance and Insurance companies, Retail, Health and Utilities.
Buyer's Guide
Netsurion vs. Snare
December 2025
Free Report: Netsurion vs. Snare
Find out what your peers are saying about Netsurion vs. Snare and other solutions. Updated: December 2025.
DOWNLOAD NOW
881,114 professionals have used our research since 2012.
See our Netsurion vs. Snare report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.