We performed a comparison between NetWitness Platform and SafeBreach based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Wazuh, Datadog and others in Log Management."Offers a good wireless feature."
"The most valuable feature is the ability to write rules and triggers for network communication, and then being able to investigate based on that."
"The most valuable features are the packet inspection and the automated incident response."
"Possibility to investigate incidents based on logs and raw packets, such as extracting files sent over the network"
"NetWitness Platform is valuable for creating rules that the solution must detect."
"It gives the ability to investigate into network traffic in the Net and the organization what we couldn't do before."
"Alerting Module: It provides real-time event processing language on all the logs/packets stream for advanced alerting, i.e., using SQL LIKE statements."
"The product has a user-friendly interface and a valuable feature for threat intelligence integration."
"The most valuable feature is the huge library of hack attacks and breach methods."
"The most valuable feature is the reporting database and attack protection."
"There are instances where you try to run the reports and then it does not give you the desired outcome."
"The tool's integration capability isn't so great."
"The system architecture is complex and sometimes it’s hard to troubleshoot potential problems."
"If we have the ability to run a dynamic analysis through malware in the same suite, it would be great to have a sandbox solution to analyze malware through dynamic analysis."
"The implementation needs assistance."
"It is not so easy to customize this product."
"There is no support for this product in this country, so problems have to be resolved through global technical teams."
"RSA NetWitness Logs and Packets can improve the threat level aspect, it is lacking compared to other solutions. Whenever any hacking activity or any other threat factor occurred they used to provide the coverages very fast when comparing RSA NetWitness Logs and Packets. I heard the other three solutions, from a discussion with my team members who had experience in other solutions, they used to say that. Whenever any issues happened across the globe RSA NetWitness Logs and Packets are a little bit slow improving those detection mechanisms."
"There is room for improvement in the interface. It is not always easy to find the options that you need and not everything is customizable."
"I would like to see some integration on the customization and customer support."
NetWitness Platform is ranked 19th in Log Management with 36 reviews while SafeBreach is ranked 5th in Breach and Attack Simulation (BAS) with 2 reviews. NetWitness Platform is rated 7.4, while SafeBreach is rated 8.0. The top reviewer of NetWitness Platform writes "Can find out if there is lateral movement, but integration and workflow need improvement". On the other hand, the top reviewer of SafeBreach writes "Breach and attach simulation solution used to test security tools with a valuable library of hacking data". NetWitness Platform is most compared with Splunk Enterprise Security, RSA enVision, IBM Security QRadar, Cisco Secure Network Analytics and Microsoft Sentinel, whereas SafeBreach is most compared with Picus Security, Cymulate, Pentera, AttackIQ and XM Cyber.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
