We performed a comparison between Blue Hexagon and Darktrace based on real PeerSpot user reviews.
Find out what your peers are saying about Darktrace, Vectra AI, Cisco and others in Network Detection and Response (NDR)."They can provide you very contextual alerts on if something bad is happening—coming into your network or going out of your network. As part of that, they gather a lot of threat intelligence and map your connections against that. The larger benefit is that they give you a risk rating on their findings."
"I like the Antigena feature in Darktrace, as it offers immediate response and is helpful."
"The most valuable features of Darktrace are the tracing of unusual external emails and monitoring the local network."
"The most valuable features of Darktrace are its full capabilities. You have visibility of everything."
"We have found the product to be stable and issue-free."
"In terms of features, the data or information they collect and unsupervised machine learning are very valuable. Its unsupervised machine learning has reduced our team's effort. Both Darktrace and Vectra work on unsupervised machine learning that learns the behavior or develops a profile on its own, which allows our security team to do some other tasks rather than spending time on Darktrace or Vectra. Because of unsupervised machine learning, its detection capability is quite good. Along with that, if we utilize the integration feature properly, the automated incident response capability of Darktrace is quite useful."
"It is a stable solution without downtime."
"It is a very simple product to use."
"Darktrace's most valuable features are that it understands the network environment and is able to trace the traffic and alert on anomalies."
"My challenge is actually comparing offerings from different vendors across a threat spectrum that is very large. We are talking about millions of threats. How are you confident that Blue Hexagon is catching all one million of them and Palo Alto is doing the same thing? They all have their strengths. Within that, Blue Hexagon might cover 990,000 of them. Palo Alto might cover another 990,000. It's a bit difficult to compare them and say, "Oh, are they catching the same 990,000?" I don't know."
"I would like to see more protection in the endpoint. Especially because we have a lot of people using VPNs. If they would improve end point security, it would give more control there."
"A reporting portal could be a great addition to help customize reports."
"It would be helpful if they could recognize incidents and simplify the customer's challenge to identify what is happening."
"Darktrace does not have any capabilities to configure."
"I would like to see some additional enhancements."
"They just need to make it a little bit more accurate as far as their alerts are concerned. It does generate some false positives that you have to tune. You have to do a lot of tuning when you first get it because of the false positives, but once it is all tuned up and ready to go, it will do its thing from there."
"We'd like threat hunting, and we'd like to see a global solution that can automate vulnerability scans. I know it is something they are working on."
"One thing I would like is for Darktrace to flag SMB traffic more accurately. Currently, it only flags that SMB traffic has occurred, but it doesn't specify which file was being transferred. This makes it difficult to investigate incidents involving SMB traffic, as we don't have concrete evidence of what was being sent."
Earn 20 points
Blue Hexagon is ranked 18th in Network Detection and Response (NDR) while Darktrace is ranked 1st in Network Detection and Response (NDR) with 65 reviews. Blue Hexagon is rated 8.0, while Darktrace is rated 8.2. The top reviewer of Blue Hexagon writes "Provides contextual alerts and risk ratings on findings". On the other hand, the top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". Blue Hexagon is most compared with , whereas Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and Cisco Secure Network Analytics.
See our list of best Network Detection and Response (NDR) vendors.
We monitor all Network Detection and Response (NDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.