NetWitness NDR vs Webroot Business Endpoint Protection comparison

NetWitness and OpenText are both solutions in the Endpoint Protection Platform (EPP) category. NetWitness is ranked #59, while OpenText is ranked #42 with an average rating of 7.0. NetWitness holds a 0.3% mindshare in EPP, compared to OpenText’s 0.7% mindshare. Additionally, 87% of NetWitness users are willing to recommend the solution, compared to 89% of OpenText users who would recommend it.

NetWitness NDR

Read 15 NetWitness NDR reviews

583 Views
452 Comparison Views

87% willing to recommend

Webroot Business Endpoint P...

Read 31 Webroot Business Endpoint Protection reviews

1,726 Views
1,442 Comparison Views

89% willing to recommend

NetWitness NDR

Webroot Business Endpoint P...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

NetWitness NDR and Webroot Business Endpoint Protection compete in the cybersecurity sector. NetWitness NDR is favored for its advanced threat detection capabilities, while Webroot is praised for its ease of use and lightweight nature.

Features: NetWitness NDR provides detailed network visibility, comprehensive threat detection, and extensive analytics. Webroot Business Endpoint Protection offers simplicity, efficient malware detection, and ease of use.

Room for Improvement: NetWitness NDR could improve integration capabilities, more intuitive configuration, and user experience. Webroot could enhance reporting functionality, provide more customizable policies, and improve reporting features.

Ease of Deployment and Customer Service: NetWitness NDR has a complex deployment process but offers responsive customer service. Webroot Business Endpoint Protection is straightforward to deploy with minimal resource impact and reliable support.

Pricing and ROI: NetWitness NDR has higher setup costs but offers strong ROI with thorough threat management capabilities. Webroot Business Endpoint Protection has lower initial costs, making it cost-effective for smaller businesses, but ROI may vary based on protection levels needed.

To learn more, read our detailed NetWitness NDR vs. Webroot Business Endpoint Protection Report (Updated: April 2025).

Buyer's Guide

NetWitness NDR vs. Webroot Business Endpoint Protection

April 2025

Download the complete report

Helped 850,491 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

NetWitness NDR

Ranking in Endpoint Protection Platform (EPP)

59th

Average Rating

8.0

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Threat Intelligence Platforms (36th), Endpoint Detection and Response (EDR) (63rd), Security Orchestration Automation and Response (SOAR) (25th), Network Detection and Response (NDR) (20th), Extended Detection and Response (XDR) (37th)

Webroot Business Endpoint P...

Ranking in Endpoint Protection Platform (EPP)

42nd

Average Rating

7.8

Reviews Sentiment

5.8

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of May 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of NetWitness NDR is 0.3%, up from 0.2% compared to the previous year. The mindshare of Webroot Business Endpoint Protection is 0.7%, down from 0.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Protection Platform (EPP)

Featured Reviews

SupravatMaji

Associate Vice President - IT Security at Inspira Enterprise

Beneficial single unified dashboard, good native application integration, and high availability

My advice to those wanting to implement RSA NetWitness Network is they have to first do a little due diligence, such as the exact requirement based on their needs. That will give them a direction for their investment because otherwise, the bill of material or bill of quantity (BOQ) may be higher side. It is important to do good due intelligence on the environment, see the exact requirement, and then go ahead with the solution. The solution is perfectly stable. I rate RSA NetWitness Network a nine out of ten.

Read full review

Rick Cassel

Owner at R. A. Cassel & Associates

Lightweight and not hard to set up however, does not offer good reporting

We've had a couple of events both this year and last year where it just didn't seem to catch ransomware, which is impossible to do if someone has hands-on with the system. There were some things that they had or used to have or don't have that I still haven't figured out called journaling. And it was supposed to be a way to roll back changes that were made. However, they're telling me they don't have that. That's not in the system. It’s my understanding that it doesn’t actually scan any files at all. They just look at their database of files they've scanned previously, and either it matches or doesn't. That might be where the shortcoming is, is that it just can't stay up-to-date fast enough to stop new things that are coming in. It's an after-the-fact anti-virus. It doesn't do anything proactive. The virus has to hit the machine before it detects it. There is one thing that is deplorable with the product that I would change as soon as I found a better one. However, the reports are worthless. You go and look at a scan report and cannot get a log of machines. I can log into a console and see the files were scanned every day at 2:00 AM, and they all passed green or something was detected and removed. However, you have to go to the console. I don't have anything that I can send to my client on reports. What they give you is a bunch of bar graphs with no details. You can't drill down. It'll say two infections. However, it doesn't tell you what machines. You've just really got several different reports, and they're all just a bunch of graphs and wasted paper. There's nothing really substantial. The reports that I can use for client-facing, once a month, to say, "Here, we scanned all these workstations. Here are our results," don’t exist. They've got fake reports. I've screamed about that for years, and they just won't do anything. Therefore, I created my own little up-to-date or not ask fail-type report. I send that to them in place of a report directly from a product.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"This solution allows us to locate the malware in real-time."

"It is very easy to use, and its usability is great. The use cases are also very easy. The visualizations of the use cases are magnificent. You cannot find this in any other solution. From my point of view, it is great."

"The interface of this solution is very flexible and easy to use."

"It's a scalable solution. We have around five to eight customers using RSA NetWitness Endpoint, and we hope to increase the number of users."

"It helps our security team respond more accurately when there are threats, then we get less false positives or negatives."

"The most valuable feature of RSA NetWitness Network is the single unified dashboard from which you can manage all the different products of RSA. Additionally, the integration with native applications is good."

"The most valuable feature is the way it captures the traffic, and it contains every detail of the communication."

"It is stable. We have been using it for some time, without any issues."

More NetWitness NDR pros

"The initial setup was straightforward. It took five minutes. I installed the solution myself."

"The feature we found most valuable is the AI functionality for maintaining endpoint security. This is very powerful."

"Their policy management, their cloud-based dashboard and user interface are very easy to navigate."

"Speed"

"The main reason we had Webroot is that it was cost-effective for our clients."

"The ease of use of the centralized admin console is its best asset."

"The initial setup is not complex at all. It's very straightforward."

"It is an easy-to-use and easy-to-configure product."

More Webroot Business Endpoint Protection pros

Cons

"Threat detection could be better."

"The contamination feature could be improved."

"We would like to see the hunting and investigation features of this solution improved, in order to provide better visibility of issues."

"RSA NetWitness Network could improve on integration with non-native application integration."

"The threat intelligence could improve in RSA NetWitness Endpoint."

"The solution is modular, for example you can buy the RSA ePack, which you buy as a module is not part of the conduit solution. They could include it and have it as an all-in-one solution."

"The initial setup requires a high level of skill."

"Its price could be improved. It is an expensive product. Its training is also too expensive. It would be great if they can have a better pricing scheme for the training."

More NetWitness NDR cons

"We need to have a stronger defense against CryptoLock and other attackers."

"An updated UI would be nice, but is not hardly used."

"They should provide more information on the type of cyber attacks."

"There should be a Webroot Business Endpoint Protection mobile app."

"The console spins up relatively slowly, and some of the configuration items are obscure (e.g., reporting back one time per day is a default setting) and need to be tweaked."

"I did notice that my OS slowed down, but I don't know if that's due to Webroot."

"The solution could improve by providing better ransomware protection."

"Their customer support should be better. We started having some issues with it, and we didn't get the required support."

More Webroot Business Endpoint Protection cons

Pricing and Cost Advice

"With RSA, there is flexibility in choosing the service, products, and the range that meets your requirement, as well as they are flexible in terms of pricing."

"NetWitness Endpoint is less costly than its competitors, but it offers fewer features."

"The cost depends on the number of endpoints that you want to monitor, but it is not expensive."

"We are on a three-year contract to use RSA NetWitness Network."

"It is highly scalable. It can be bought based on your requirements."

"I do not have any opinion on the pricing or licensing of the product."

"The price of the solution depends on the environment. If the environment is large then it will cost more. However, the larger the environment with more endpoints, you will receive an increased discount. If the environment is very small, then you might think it is expensive. It is always better to buy in bulk to receive a discount. The minimum number of assets is usually 500, with discounts on 1000 and 2000."

"They can easily adjust if you have the requirements which are required. If you have a budget cut or a budget constraint, they can bend."

More NetWitness NDR pricing and cost advice

"I think the price is fairly reasonable. I was really prepared to pay more, but the price is fine."

"I can't recall the exact pricing, but I believe there is a monthly fee of $20-30 per user."

"If you purchase for clients, then you are the managing billing entity. It's better to either get a monthly subscription check from your clients, or to prepay for the year (so as to not keep cash in reserve to pay the bill each month) IMHO."

"The pricing is high."

"From a pricing standpoint, I would rate it a four out of five."

"The solution is pretty cheap, actually. At our level, which is at 2,500 endpoints, we're paying 87 cents an agent per month."

"We evaluate other options using multiple choices, best value, management and functionality."

"Our strategy was to overestimate the complexity and cost. It turned out that Webroot's assurance was justified."

More Webroot Business Endpoint Protection pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

850,491 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

18%

Financial Services Firm

17%

Government

Manufacturing Company

Computer Software Company

18%

Real Estate/Law Firm

13%

Comms Service Provider

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Ask a question

Earn 20 points

What do you like most about Webroot Business Endpoint Protection?

I haven't observed any of the instabilities in the solution. It is a stable solution.

See all answers

What is your experience regarding pricing and costs for Webroot Business Endpoint Protection?

Webroot Business Endpoint Protection is probably on the cheaper side, so I would rate their pricing a one or a two out of ten.

See all answers

What needs improvement with Webroot Business Endpoint Protection?

Webroot Business Endpoint Protection needs to improve its ability to detect threats. It does not do what it's advertised to do. Real-time threat detection also doesn't work as it should.

See all answers

Comparisons

Darktrace vs NetWitness NDR

Compared 14% of the time

Fidelis Elevate vs NetWitness NDR

Compared 11% of the time

Vectra AI vs NetWitness NDR

Compared 9% of the time

Cortex XDR by Palo Alto Networks vs NetWitness NDR

Compared 9% of the time

Corelight vs NetWitness NDR

Compared 7% of the time

More NetWitness NDR Competitors

Microsoft Defender for Endpoint vs Webroot Business Endpoint Protection

Compared 26% of the time

CrowdStrike Falcon vs Webroot Business Endpoint Protection

Compared 20% of the time

HP Wolf Security vs Webroot Business Endpoint Protection

Compared 16% of the time

Huntress Managed EDR vs Webroot Business Endpoint Protection

Compared 12% of the time

SentinelOne Singularity Complete vs Webroot Business Endpoint Protection

Compared 9% of the time

More Webroot Business Endpoint Protection Competitors

Product Reports

Buyer's Guide

NetWitness NDR

April 2025

Download NetWitness NDR product report

Buyer's Guide

Webroot Business Endpoint Protection

April 2025

Webroot Business Endpoint Protection report

Download Webroot Business Endpoint Protection product report

Also Known As

RSA ECAT, NetWitness Network

Webroot SecureAnywhere Business Endpoint Protection

Overview

Using a centralized combination of network and endpoint analysis, behavioral analysis, data science techniques and threat intelligence, NetWitness NDR helps analysts detect and resolve known and unknown attacks while automating and orchestrating the incident response lifecycle. With these capabilities on one platform, security teams can collapse disparate tools and data into a powerful, blazingly fast user interface.

NetWitness

Webroot Business Endpoint Protection provides comprehensive endpoint protection, antivirus, and security features across devices like mobiles, computers, and servers to prevent malware and other threats.

Webroot Business Endpoint Protection helps businesses manage endpoint security through its robust cloud application and integrates with RMM tools for improved management and pricing. It offers EMS service, automatic updates, and a lightweight agent, ensuring ease of use and minimal resource consumption across all devices. This solution maintains a cloud-based database for real-time threat recognition and delivers strong performance with low resource usage, leveraging heuristic AI for threat detection. Companies use it for its antivirus, firewall functions, device location and wiping, and security policy applications, contributing to effective security management.

What are the key features?

Endpoint Protection: Safeguards computers, mobiles, and servers from threats.
Cloud Integration: Manages security through a robust cloud application.
Automatic Updates: Ensures devices are consistently protected with the latest updates.
Lightweight Agent: Minimizes resource usage while delivering high performance.
Heuristic AI: Provides advanced threat detection and prevention capabilities.
EMS Service: Manages security effectively across all endpoints.

What benefits should you look for?

Efficiency: Low resource usage for optimal device performance.
Ease of Use: Simplified installation and configuration processes.
Real-Time Threat Detection: Immediate response to potential threats.
Cost-Effectiveness: Affordable pricing with clear, transparent models.
Comprehensive Protection: Complete security measures for various devices.

Webroot Business Endpoint Protection is implemented across industries to ensure robust endpoint security. Its integration with RMM tools allows for seamless management in IT environments, while its cloud-based threat detection provides essential cybersecurity for sectors such as healthcare, finance, and education.

OpenText

Sample Customers

ADP, Ameritas, Partners Healthcare

Mytech Partners

Buyer's Guide

NetWitness NDR vs. Webroot Business Endpoint Protection

April 2025

Free Report: NetWitness NDR vs. Webroot Business Endpoint Protection

Find out what your peers are saying about NetWitness NDR vs. Webroot Business Endpoint Protection and other solutions. Updated: April 2025.

DOWNLOAD NOW

850,491 professionals have used our research since 2012.

See our NetWitness NDR vs. Webroot Business Endpoint Protection report.

See our list of best Endpoint Protection Platform (EPP) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.