• Home
  • NetWitness Platform vs. Palo Alto Networks WildFire

NetWitness Platform vs Palo Alto Networks WildFire vs WatchGuard XTM [EOL] comparison

Cancel
You must select at least 2 products to compare!
NetWitness Logo
NetWitness Platform
Read 36 NetWitness Platform reviews
1,135 views|701 comparisons
74% willing to recommend
Palo Alto Networks Logo
Palo Alto Networks WildFire
Read 58 Palo Alto Networks WildFire reviews
3,692 views|2,569 comparisons
90% willing to recommend
WatchGuard Logo
WatchGuard XTM [EOL]
Read 34 WatchGuard XTM [EOL] reviews
views| comparisons
90% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Log Management
April 2024
Executive Summary

We performed a comparison between NetWitness Platform, Palo Alto Networks WildFire, and WatchGuard XTM [EOL] based on real PeerSpot user reviews.

Find out what your peers are saying about Splunk, Wazuh, Datadog and others in Log Management.
To learn more, read our detailed Log Management Report (Updated: April 2024).
Download the complete report
769,599 professionals have used our research since 2012.
Featured Review
Nilesh Bhate
Streamlined solution that's easy to implement
Over time, NetWitness Logs and Packets has matured from a boxed solution with multiple parts to the current, more streamlined version for which we... Read more →
Richard Dombo
Offers advanced threat detection and prevention capabilities
WildFire has significantly enhanced our organization's ability to detect and respond to new threats, especially phishing attacks. It serves as a... Read more →
Anonymous User
I found this device to be one of the most stable platforms that I have worked with, but paying a yearly maintenance...
This device was one that I deployed on my own business network and has given me the ability to thoroughly know the product that I was selling. The... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable features are the packet inspection and the automated incident response.""The most valuable feature is the security that it provides.""It's quite economical compared to other solutions in the market.""The product has a user-friendly interface and a valuable feature for threat intelligence integration.""The software is scalable to whatever is required, and you can also put a lot of resources in the cloud.""It's fully scalable. There is no limit. Of course, the license limits per day the number of terabytes. In my opinion, it's very flexible.""The most valuable features are the packet decoder, log decoder, and concentrator.""I can have enterprise security, email security, next generation firewall security log, HIDS and NIDS logs, etc. all on the same dashboard. It makes it easy to pinpoint or correlate our server to this. I can find out if there is lateral movement. This is the biggest advantage of this solution."

More NetWitness Platform Pros →

"Using WildFire has reduced the number of viruses and the amount of malware that comes into our system, which means that I don't have to rely on the end-users to identify it.""I love the idea of Palo Alto Networks WildFire. It's more geared toward preventing malware. If someone's laptop or phone is malware-infected, the tool prevents it from uploading valuable corporate data outside the corporate network. That's what I love about Palo Alto Networks WildFire. It stops malware in its tracks.""The most valuable feature is the improved security that it offers.""Intuitive threat prevention and analysis solution, with a machine learning feature. Scalable, stable, and protects against zero-day threats.""The backup is the best feature.""Being an application-based firewall, this is one of the critical focus factors along with the threat prevention services it provides.""The most valuable feature of Palo Alto Networks WildFire is its ability to adapt to environments and its robustness.""The cloud-based services are a nice feature."

More Palo Alto Networks WildFire Pros →

"Application Control is fantastic with over 2,500 applications and the granularity that we can either allow people to view but not be able to log on to Facebook; or view it and log onto it if they're in the marketing department, but not play Facebook games. There are all sorts of different options like that. So it's highly granular.""It is stable and does not require you to reboot all the time.​""There is a site-to-site VPN configuration between others people.""I like the hostwatch because I can see what traffic uses the most bandwidth and I can block that site.""SNMP status monitoring and the Central Management Software.""After installing the product, we achieved awareness of our data protection needs and email misuse.""They have a reporting system which can store data over a very long period of time. Not many other firewall vendors provide a reporting system, but if they do, like Fortinet does, then you've got buy that as an additional product and that can be more than twice as expensive as the initial investment in the firewall. And without reporting over a long-term period, you're just about wasting your time.""​Monitoring of network activity is included in the box.​"

More WatchGuard XTM [EOL] Pros →

Cons
"Lots of competing products have vulnerability protection built into their products, and this solution would be improved by including that support.""We have encountered issues with unresolved crashes.""More customizability is required, which is something that they need to improve on.""Log aggregation is an issue with this solution because there are a huge number of alerts in a single instance.""The documentation is not as structured as I would like, personally, and I think that it can be improved and made much more user-friendly.""The user interface is a little bit difficult for new users and it needs to be improved.""Nowadays, their support is a little subpar compared to other solutions. I rate RSA support six out of 10.""Technical support could be improved."

More NetWitness Platform Cons →

"The cyber security visibility and forensics features to receive more information about incidents could improve in Palo Alto Networks WildFire.""When comparing this solution to others it is not as good overall.""The GUI is better in 8.0, but I still feel it lacks the fast response most of us desire. Logs are much quicker.""The only problem with this solution is the cost. It's expensive.""The configuration should be made a little bit easier. I understand why it is as it is, but there should be a way to make it easier from the user side.""The automation and responsiveness need improvement.""Our main concern is that everything has to be synced with the WildFire Cloud and has to be checked through the subscription.""In the future, I would like to see more automation in the reporting."

More Palo Alto Networks WildFire Cons →

"I would like them to improve the product's overall protections. This would be good for all product users.""One huge issue with WatchGuard XTM is that I'm not getting reports in a readable format. Readable means, I don't want Excel online. We repeat auditing when we trigger the report or setup calendar. That functionality is what we are looking for from WatchGuard XTM here.""Sometimes we have had issues with stability of the product.""Syslog (Dimension) is focused on presentation, but needs more focus on utility like SonicWall syslog (GMS/Analyzer).""WatchGuard doesn't have a product that allows them to get into the data center. And that's just because there is no hardware to do the job. The software could do it, but there's no hardware that allows that to happen at the moment. So it doesn't scale as well as some other products, that's for sure.""The initial setup is neither simple nor complex. If you know the base in networking and how the firewall works, you will be able to figure it out.​""The setting policies need improvement. It needs an easier way to do static NAT and check on what policy is being used for that specific traffic.""The VPN errors are not helpful when troubleshooting."

More WatchGuard XTM [EOL] Cons →

Pricing and Cost Advice
  • "It’s cheaper to run virtual machines in a VMware environment."
  • "The new pricing and licensing mechanisms are fair. I would advise always to get the full solution (i.e., not only Logs)."
  • "It is cheap."
  • "The licenses are good but the cost is very expensive."
  • "This is a pricey solution; it's not cheap."
  • "We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."
  • "Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day."
  • "Our license is for one year."

    • More NetWitness Platform Pricing and Cost Advice →

  • "It IS a bit expensive, but I think you get what you pay for. Value is there."
  • "It's not particularly cheap, but it is absolutely worth it."
  • "The pricing and licensing option should be categorized for various countries such as for Bangladesh."
  • "It is expensive, a feature more accessible to enterprise class customers, but provides an enhanced possibility that Zero- or near-Zero-day threats may be identified and mitigated. The cost of the product weighed against the potential impact of even one successful crypto malware-type exploit may justify the expense."
  • "​More expensive than other firewalls.​"
  • "The pricing is OK, it is not too expensive."
  • "It is a reasonable price compared to other solutions on the market."
  • "It's pretty expensive but with respect to value for money, it's okay."

    • More Palo Alto Networks WildFire Pricing and Cost Advice →

  • "Get at least a maintenance contract for the updates and take a larger WatchGuard than you need. A WatchGuard creates new ways to secure your network."
  • "It costs less than the SO works and others (like SonicWall, Cisco, and Barracuda) without increasing so much CPU use."
  • "Like all other manufacturers, there are a lot of features and different pricing. The best is to talk to a representative.​"
  • "The licensing and renewal is very expensive."

    • More WatchGuard XTM [EOL] Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Log Management solutions are best for your needs.
    See Recommendations
    769,599 professionals have used our research since 2012.
    Comparison Review
    Vinod Shankar
    HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
    We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are based on Gartner Magic Q which is what Organizations typically use to select SIEM vendors. The Vendors mentioned here in the deck are : 1. HP ArcSight 2. McAfee Nitro 3. IBM QRadar 4. Splunk SIEM 5. RSA Security Analytic 6. LogRhythm. SIEM Technology Space SIEM market analysis of the last 3 years suggest: Market consolidation of SIEM players (25 vendors in 2011 to 16 vendors in 2013)Only products with technology maturity and a strong road map have featured in leaders quadrant.HP ArcSight & IBM Q1 Labs have maintained leadership in SIEM industry with continued technology upgradeMcAfee Nitro has strong product features & road map to challenge HP & IBM for leadershipHPArcSight The ArcSight Enterprise Threat and Risk Management (ETRM) Platform is an integrated set of products for collecting, analysing, and managing enterprise Security Event information ArcSight Enterprise Security Manager (ESM): Correlation and analysis engine used to identify security threat in real-time& virtual environments ArcSight Logger: Log storage and Search solution ArcSight IdentityView: User Identity tracking/User activity monitoring ArcSight Connectors: For data collection from a variety of data… Read more →
    Questions from the Community
    What do you like most about NetWitness Platform?
    Top Answer:The product's initial setup phase was not at all difficult.
    Read all 26 answers   →
    What is your experience regarding pricing and costs for NetWitness Platform?
    Top Answer:The product price was reasonable for my region and the market.
    Read all 16 answers   →
    What needs improvement with NetWitness Platform?
    Top Answer:From an improvement perspective, the NetWitness Platform needs to release new features and improve in areas like log… more »
    Read all 25 answers   →
    How does Cisco Firepower NGFW Firewall compare with Palo Alto Networks Wi...
    Top Answer: The Cisco Firepower NGFW Firewall is a very powerful and very complex piece of anti-viral software. When one considers… more »
    Read all 2 answers   →
    Which is better - Wildfire or FortiGate?
    Top Answer:FortiGate has a lot going for it and I consider it to be the best, most user-friendly firewall out there. What I like… more »
    Read all 2 answers   →
    How does Cisco ASA Firewall compare with Palo Alto's WildFire?
    Top Answer:When looking to change our ASA Firewall, we looked into Palo Alto’s WildFire. It works especially in preventing advanced… more »
    Ask a question

    Earn 20 points

    Ranking
    19th
    out of 95 in Log Management
    Views
    1,135
    Comparisons
    701
    Reviews
    11
    Average Words per Review
    471
    Rating
    7.5
    3rd
    out of 37 in Advanced Threat Protection (ATP)
    Views
    3,692
    Comparisons
    2,569
    Reviews
    16
    Average Words per Review
    378
    Rating
    8.5
    Unranked
    In Log Management
    Comparisons
    Also Known As
    RSA Security Analytics
    Learn More
    NetWitness
    Video Not Available
    Palo Alto Networks
    WatchGuard
    Overview

    NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.

    Palo Alto Networks WildFire is a highly effective cloud-based advanced threat protection (ATP) solution that organizations in a wide variety of fields trust to help them keep safe from digital threats. It is designed to enable businesses to confront even the most evasive threats and resolve them. It combines many techniques to maximize the level of threat protection available to users.

    Palo Alto Networks WildFire Benefits

    Some of the ways that organizations can benefit by choosing to deploy WildFire include:

    Proactive real-time threat prevention. Organizations that utilize WildFire can take a proactive approach to their network security. Wildfire’s security scanning software is supported by powerful automation that enables it to run 180 times faster than other similar solutions. It also leverages machine learning to spot and address two times more malware monthly than its competitors. Users can solve issues as they arise, which prevents them from suffering severe harm.

    A holistic approach to security. WildFire leverages many of the security features and characteristics that can be found in some of the most effective security solutions in a way that provides users with a powerful protective blanket. It combines such things as machine learning, dynamic and static analysis, and a custom-built analysis environment, and enables users to cover many different potential avenues of attack. In this way, organizations can easily detect and prevent even the most sophisticated threats from harming them.

    Reduce overhead costs. Using WildFire cuts the expenses that a business incurs. Its architecture is based in the cloud and, as a result, users do not have to purchase hardware to run it. Additionally, those users do not have to pay anything more than a product subscription fee. They can scale it up as they wish and incur no additional costs.

    Palo Alto Networks WildFire Features

    Some of the many features WildFire offers include:

    Third-party integrations. WildFire gives users access to integrations that can enable them to combine Wildfire’s security suite with outside tools. If an organization thinks that they are missing something, they can easily use Wildfire’s third-party integrations to bolster their capabilities. These integrations can connect to many different types of tools, like security information or event management systems.

    URL filtering. Organizations can use a URL filtering feature to safeguard themselves against known threats. When this feature is active, it will scan for traffic coming from specific URLs that are known to be malicious. This keeps them one step ahead of those threats that they know about.

    Deep analytics. Wildfire comes with the ability to provide users with a detailed analysis of any threat that it finds across all of their network environments. It gives users insight into everything from their natures to the actions that they have performed.

    Reviews from Real Users

    WildFire is a solution that stands out when compared to its primary competitors. Two major advantages that it offers are the high speeds at which it can analyze network traffic for threats and the accuracy with which it can pick out genuine threats from false positives.

    Ahmad Z., the principal consultant at Securelytics, writes, “The analysis is very fast. The intermittent is a millisecond and has a speedy response time.”

    Christopher B., the senior systems administrator at a government agency, says, “It gives a more accurate assessment of a virus in terms of whether it's truly a virus, malware, or a false positive. We have some legacy software that could pop up as being something that is malware. WildFire goes through and inspects it, and then it comes back and lets us know if it's a false positive. Usually, when it finds out that it's not a virus, it lets us know that it's benign, and it can exclude it from that scan, which means I don't even have to worry about that one popping up anymore.”

    Small businesses need big security, too, and the WatchGuard XTM Series firewall/VPN appliances deliver that strong protection, but without the hefty price tag. Enterprise-grade security includes full HTTPS content inspection, VoIP support, and optional security subscriptions like Application Control and Intrusion Prevention Service.

    Sample Customers
    Los Angeles World Airports, Reply
    Novamedia, Nexon Asia Pacific, Lenovo, Samsonite, IOOF, Sinogrid, SanDisk Corporation
    AVG, Cyren, Kaspersky Lab, Lastline, NCP engineering, Trend Micro, Websense
    Top Industries
    REVIEWERS
    Comms Service Provider24%
    Financial Services Firm24%
    Computer Software Company24%
    Manufacturing Company10%
    VISITORS READING REVIEWS
    Financial Services Firm15%
    Computer Software Company15%
    Government10%
    Insurance Company6%
    REVIEWERS
    Financial Services Firm18%
    Government12%
    Computer Software Company12%
    Comms Service Provider9%
    VISITORS READING REVIEWS
    Computer Software Company15%
    Government9%
    Financial Services Firm9%
    Manufacturing Company7%
    REVIEWERS
    Financial Services Firm38%
    Logistics Company15%
    Local Government8%
    Import And Exporter8%
    Company Size
    REVIEWERS
    Small Business26%
    Midsize Enterprise17%
    Large Enterprise57%
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise10%
    Large Enterprise68%
    REVIEWERS
    Small Business42%
    Midsize Enterprise20%
    Large Enterprise38%
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise15%
    Large Enterprise62%
    REVIEWERS
    Small Business70%
    Midsize Enterprise21%
    Large Enterprise9%
    Buyer's Guide
    Log Management
    April 2024
    Download Free Report
    Find out what your peers are saying about Splunk, Wazuh, Datadog and others in Log Management. Updated: April 2024.
    DOWNLOAD NOW
    769,599 professionals have used our research since 2012.