We performed a comparison between NetWitness Platform and SonicWall Capture Advanced Threat Protection based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Datadog, Wazuh and others in Log Management."The most valuable feature of RSA NetWitness Logs and Packets are the alerts and correlations tools."
"The most valuable features are its ingestion of logs and raising of alerts based on those logs."
"NetWitness Platform is valuable for creating rules that the solution must detect."
"It's quite economical compared to other solutions in the market."
"The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it."
"The most valuable feature is the hunting ability to work in a CERT."
"In my opinion, the solution's most valuable feature is its capacity to monitor network traffic, logs from devices within the network, and network captures. This capability extends beyond logs to include full network capturing."
"What we are mainly using are the RSA concentrator, RSA Decoder, Archiver, Broker, and Log Decoder."
"The ATP (Advanced Threat Protection) on scanning is the most valuable feature."
"It also has an easy configuration. The feedback that we get from our customers is that it's a good product."
"We get alert messages whenever there is a new threat. We are notified at the firewall level that things are blocked, which keeps us in our comfort zone."
"They have a large database of commonly known things that they can catch automatically, then they have anything which is questionable go to the sandbox and be examined there before going into our network."
"We use it for protection against viruses and ransomware attacks."
"The stability of the solution is good. We haven't had any breaches or crashes. It's been very stable for us."
"I like this setup for a firewall. You can set things up very easily and you can automate items as well. It's a very robust firewall solution for enterprise as well as small businesses."
"The reporting that you get from it is the most valuable feature. You can see it via the appliance itself, and also via the MySonicWall account for the registered device. You are able to select the file if it's malicious, and you can select it in the reporting and see what triggered it, and things like that. I found that to be quite useful."
"We have encountered issues with unresolved crashes."
"The initial setup is very complex and should be simplified."
"It is not so easy to customize this product."
"I'd like to see improvement in its ease of use. It's basically unusable. It's overly complex."
"Log aggregation is an issue with this solution because there are a huge number of alerts in a single instance."
"They should implement algorithms to digest that data and produce additional, more advanced reporting, alerting and support of internal security teams."
"If we have the ability to run a dynamic analysis through malware in the same suite, it would be great to have a sandbox solution to analyze malware through dynamic analysis."
"There is no support for this product in this country, so problems have to be resolved through global technical teams."
"Having an on-premise solution as well would be an option for some people, but they'll want to use a cloud solution for their sandboxing. Certain sites would want to keep all the checks done on an on-premise appliance. All the checking, rather than sending that up into a cloud engine."
"SonicWall had a recent layoff. This is a concern for us, because now we are missing the local presence from both the engineering and sales side."
"The setup needs improvement. It needs to be made more user-friendly."
"I would like to have better documentation before starting with deployment because the deployment is a bit complex."
"SonicWall should promote their roadmap and improve their marketing to customers."
"If anything at all, it would be some very minor updates that need to be done, but in terms of changes, nothing comes to mind."
"We would like to get immediate alerts from the alerting system without using third-parties."
"Could provide online training to allow customers to learn more about the product."
More SonicWall Capture Advanced Threat Protection Pricing and Cost Advice →
Earn 20 points
NetWitness Platform is ranked 30th in Log Management with 35 reviews while SonicWall Capture Advanced Threat Protection is ranked 26th in ATP (Advanced Threat Protection). NetWitness Platform is rated 7.4, while SonicWall Capture Advanced Threat Protection is rated 7.8. The top reviewer of NetWitness Platform writes "Can find out if there is lateral movement, but integration and workflow need improvement". On the other hand, the top reviewer of SonicWall Capture Advanced Threat Protection writes "When compared to other solutions, it is cheaper and more economical". NetWitness Platform is most compared with Splunk Enterprise Security, RSA enVision, IBM Security QRadar, Microsoft Sentinel and Cisco Secure Network Analytics, whereas SonicWall Capture Advanced Threat Protection is most compared with Palo Alto Networks WildFire, Fortinet FortiSandbox and Microsoft Defender for Office 365.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.