We performed a comparison between Corelight and Darktrace based on real PeerSpot user reviews.
Find out in this report how the two Network Traffic Analysis (NTA) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature is the embedded IDS from Suricata."
"It is easy to deploy and easy to handle."
"It's easy to create additional dashboards specific to supporting specific tasks."
"It's an easy way for us to get visibility in a client's environment."
"Corelight is easy to use."
"It provides a comprehensive, detailed view of network activity and whatever is happening inside it."
"The Dynamic Threat Dashboard is very nice, as it lists all of your threats and rates them, and then you can choose whether to investigate further."
"I particularly like Antigena and the analytics around the real-time monitoring of our network. I also like its reporting because it has got a seven-day reporting period within the system. Every time you run the reports, it gives you the data about the previous seven days. I like that because it is in real-time. I enjoy reading those reports and getting a very clear and decisive idea of what's happening on my network on a real-time basis. I like the actual real-time monitoring of spoofing and things like that. I also like the user monitoring as well as the network logging capabilities."
"The most valuable feature is that it works autonomously."
"AI analytics are built directly into the product."
"I find it very good in the way that they show the past events, including the attack history."
"The main valuable feature is that we don't need a lot of analysts. With few analysts, we have all the network monitored, 24/7."
"A simple, powerful AI solution that just does all the work for you when you turn it on."
"In the next release, building a graphical user interface would be helpful."
"Machine learning could be a good improvement, but it's very costly."
"Corelight hasn’t added features in a long time."
"They can enhance the interface of the product. They can make it more interactive and also easier to use for feature access."
"The solution’s architecture is complex and difficult to understand. There are multiple machines and VMs."
"One thing I would like is for Darktrace to flag SMB traffic more accurately. Currently, it only flags that SMB traffic has occurred, but it doesn't specify which file was being transferred. This makes it difficult to investigate incidents involving SMB traffic, as we don't have concrete evidence of what was being sent."
"There aren't so many third-party vendor platforms natively integrated with the platform."
"I would like to see more protection in the endpoint. Especially because we have a lot of people using VPNs. If they would improve end point security, it would give more control there."
"It takes time to go through the interface and pick up things. If it were a more straightforward interface, then it would free up time."
"The solution would benefit from automation. Currently, you have to know what you are searching for."
"Darktrace does not have any capabilities to configure."
"The cost is a bit on the higher side."
"Needs to improve its collaboration with local partners."
Corelight is ranked 7th in Network Traffic Analysis (NTA) with 5 reviews while Darktrace is ranked 1st in Network Traffic Analysis (NTA) with 65 reviews. Corelight is rated 9.0, while Darktrace is rated 8.2. The top reviewer of Corelight writes "An open-source solution that gave us insight into our clients' network traffic flow ". On the other hand, the top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". Corelight is most compared with ExtraHop Reveal(x), Vectra AI, Cisco Secure Network Analytics, Arista NDR and SolarWinds NetFlow Traffic Analyzer, whereas Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and Cybereason Endpoint Detection & Response. See our Corelight vs. Darktrace report.
See our list of best Network Traffic Analysis (NTA) vendors.
We monitor all Network Traffic Analysis (NTA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.