We performed a comparison between NetWitness XDR and SolarWinds NetFlow Traffic Analyzer based on real PeerSpot user reviews.
Find out what your peers are saying about SentinelOne, CrowdStrike, Palo Alto Networks and others in Extended Detection and Response (XDR)."The product is very easy to use."
"Its most significant advantage lies in its affordability."
"Microsoft 365 Defender is a good solution and easy to use."
"The best feature is threat hunting. There are a lot of other features I like, such as the alert mechanism. The chain alert mechanism has a huge impact. It combines all the alerts into one incident and automatically correlates them with AI."
"From the perspective of Microsoft 365 XDR, the main benefit is a single, centralized dashboard offering the holistic visibility organizations crave."
"It has been great for us. Previously, we didn't have a solution to protect us, especially from malware, whereas now, we are getting protection up front, especially from the malware attacks coming through emails or endpoints."
"I like how Microsoft XDR and the other Microsoft products are integrated into a single unified security stack covering identity access management, endpoint protection, email, cloud applications, etc."
"The most valuable feature of all is the full integration with the rest of the software in the operating system and Office 365, as well as Microsoft SCCM. It is quite easy for us to work with the whole instance of Microsoft products. This integration improves the benefits of the whole suite of products."
"We've contacted technical support several times. They've been very good. They have been able to help us resolve our issues."
"The most valuable feature of RSA NetWitness Network is the single unified dashboard from which you can manage all the different products of RSA. Additionally, the integration with native applications is good."
"The log correlation is good."
"It's a scalable solution. We have around five to eight customers using RSA NetWitness Endpoint, and we hope to increase the number of users."
"The most valuable feature is the way it captures the traffic, and it contains every detail of the communication."
"It is stable. We have been using it for some time, without any issues."
"This solution allows us to locate the malware in real-time."
"NetWitness Endpoint's most valuable features are its interoperability across many different operating systems and the ease of pivoting from network to endpoint via a single console."
"The performance analysis is a valuable feature. With the performance analyzer, we can see the realtime monitoring, the realtime performance, and historical performance on specific components like virtualization storage, CPU, servers and network equipment."
"The most valuable feature is the ability to look for any increases in bandwidth over time so that we can plan before it becomes critical."
"The monitoring is perfect, showing you the details for the utilization of resources and network bandwidth."
"This solution gives us important information about the utilization of protocols, particularly in terms of how often they are used."
"As it offers enterprise solutions, it has all the essential features for business."
"What my organization likes best about SolarWinds NetFlow Traffic Analyzer is its easy deployment. It's also well-integrated in terms of monitoring because my organization also uses a SolarWinds solution for monitoring. You can connect SolarWinds NetFlow Traffic Analyzer directly to that monitoring tool to get information. My organization also finds the default graphs that appear before the configuration in SolarWinds NetFlow Traffic Analyzer very useful."
"What the network team found most valuable in SolarWinds NetFlow Traffic Analyzer is that it helps them to troubleshoot or analyze the issue. For example, traffic that comes from our location: India, goes to the US, so for the network team to analyze where the traffic comes from and where it is directed, and whether the packets are being dropped, they use SolarWinds NetFlow Traffic Analyzer. The network team also likes that through the solution, they can analyze the complete traffic utilization and how they're going to use it. SolarWinds NetFlow Traffic Analyzer is user-friendly. The team finds it comfortable to use."
"The solution's most valuable feature is its traffic analysis."
"Since all of our databases are updated and located in the cloud, I would like additional support for this."
"The price could be better. It'll also help if they can continuously update and upgrade the solution. Every day there's a new virus uploaded into the network, and we have to keep updating it to identify all these things."
"The interface could be improved. For example, if you want to do a phishing simulation for your employees, it can take a while to figure out what to do. The interface is a bit messy and could be updated. It isn't too bad, but doing some things can be a long process."
"When discussing the secure score, which includes overviews and recommended actions, some of these recommended actions are not applicable to us, particularly those related to Microsoft Internet Explorer, which we do not use in any of our environments."
"The onboarding and offboarding need improvement. I work with other vendors as well, and they have an option to add a device or remove a device from the portal, whereas with Microsoft 365 Defender, we need to do that manually. However, once you do that, everything can be controlled through the portal, but getting the device onboarded and offboarded is currently manual. If we have an option to simply remove a device from the portal or get a device added from the portal, it would be more convenient. The rest of the features are similar. This is the only area where I found it different from others. I would also like to be able to simply filter with a few of the queries that are already there."
"Automated playbooks and automated dashboards would be preferable to the way the data is currently being presented."
"The data recovery and backup could be improved."
"The licensing is a nightmare and has room for improvement."
"The threat intelligence could improve in RSA NetWitness Endpoint."
"The solution lacks a reporting engine."
"NetWitness Endpoint's blocking feature does not work properly - if there's a malicious process, it's not possible to kill it via a custom rule unless and until it's flagged as malicious."
"Its price could be improved. It is an expensive product. Its training is also too expensive. It would be great if they can have a better pricing scheme for the training."
"The deployment process is complex. I don't know why, but this solution will suddenly stop working. Logs stop coming. Often, one thing or another stops working. Most of the time, one of my team members is working with troubleshooting and working with technical support. Log passing is also one of the biggest challenge."
"When analyzing something, you have to click several times. It requires a lot of effort to find something."
"This solution needs an upgrade in reporting. I have heard from RSA that they are working on this, but as of yet it is not available."
"We would like to see the hunting and investigation features of this solution improved, in order to provide better visibility of issues."
"An area for improvement in SolarWinds NetFlow Traffic Analyzer is application visibility because some applications aren't being recognized correctly. You can see applications such as Facebook and YouTube, but SolarWinds NetFlow Traffic Analyzer needs to have more visibility into more applications. Currently, SolarWinds fails to detect more powerful applications, such as Zoom and Teams. If SolarWinds NetFlow Traffic Analyzer can recognize every application and be able to report on each in terms of bandwidth, then that would be good. This is what I'd like to see in the next release of the solution."
"Customer Support is quite complex."
"The solution needs better log management and log coordination with tools."
"There are some areas for improvement in SolarWinds NetFlow Traffic Analyzer. There are some challenges with the solution when compared to other monitoring tools such as difficulty in operations and difficulty with backup installation. My team is currently trying out different solutions but would need to see how it goes."
"The problem is that SolarWinds is trying to bolt in too much and that can leave bugs, which you have to then sort out, leaving the product unstable. SolarWinds needs to try and slow down and improve the stability of the product, as opposed to bringing out more and more features."
"This solution does not do a very good job when I am trying to look deeper into my internal network, in particular with respect to individual ports."
"It's not a cheap product, so the pricing could be improved."
"The licensing should be more realistic so that we can adjust the number of nodes according to my needs, rather than in fixed increments."
More SolarWinds NetFlow Traffic Analyzer Pricing and Cost Advice →
NetWitness XDR is ranked 17th in Extended Detection and Response (XDR) with 15 reviews while SolarWinds NetFlow Traffic Analyzer is ranked 6th in Network Traffic Analysis (NTA) with 34 reviews. NetWitness XDR is rated 8.0, while SolarWinds NetFlow Traffic Analyzer is rated 7.6. The top reviewer of NetWitness XDR writes "Beneficial single unified dashboard, good native application integration, and high availability". On the other hand, the top reviewer of SolarWinds NetFlow Traffic Analyzer writes "Displays traffic visibility and efficient traffic flows". NetWitness XDR is most compared with Darktrace, ExtraHop Reveal(x), CrowdStrike Falcon, SentinelOne Singularity Complete and Microsoft Defender for Endpoint, whereas SolarWinds NetFlow Traffic Analyzer is most compared with ManageEngine NetFlow Analyzer, Cisco Secure Network Analytics, Zabbix, SolarWinds NPM and Darktrace.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
