2018-11-06T13:08:00Z

What do you like most about NetWitness Platform?

Miriam Tover - PeerSpot reviewer
  • 0
  • 12
PeerSpot user
25

25 Answers

SS
Reseller
Top 20
2023-09-15T08:59:49Z
Sep 15, 2023

The product has a user-friendly interface and a valuable feature for threat intelligence integration.

Search for a product comparison
AR
Real User
Top 20
2023-08-21T14:57:14Z
Aug 21, 2023

NetWitness Platform is valuable for creating rules that the solution must detect.

MOTASHIM Al Razi - PeerSpot reviewer
Real User
Top 20
2023-03-30T06:21:26Z
Mar 30, 2023

Incident management is its most valuable feature.

Francesco Ritrovato - PeerSpot reviewer
Real User
Top 10
2023-03-02T16:06:56Z
Mar 2, 2023

The most valuable feature is the hunting ability to work in a CERT.

MR
Real User
Top 20
2022-07-27T13:36:00Z
Jul 27, 2022

I can have enterprise security, email security, next generation firewall security log, HIDS and NIDS logs, etc. all on the same dashboard. It makes it easy to pinpoint or correlate our server to this. I can find out if there is lateral movement. This is the biggest advantage of this solution.

Sandeep Sehrawat - PeerSpot reviewer
Real User
Top 5
2022-05-30T15:22:00Z
May 30, 2022

Setting up NetWitness is straightforward. There are multiple connectors, including standard and specialized connectors. One purpose of the connectors is the enhanced capability integrate the custom applications. NetWitness comes with E6 appliances and application images that we use for the initial configurations and for the OS stack information. From there, you can consider the correlation rules, integrate the different log sources, and easily create correlation rules and backlog reports.

Learn what your peers think about NetWitness Platform. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,386 professionals have used our research since 2012.
LB
Real User
Top 10
2022-05-15T16:58:14Z
May 15, 2022

It gives the capability for the incident response team to correlate logs to identify any kind of problem like malware and incidents in a general sense, both for logs and packets.

MdZaman - PeerSpot reviewer
Real User
Top 5Leaderboard
2021-10-22T10:54:03Z
Oct 22, 2021

The solution is really scalable for the high-end power, enterprise customer.

MS
Real User
2021-09-01T13:51:40Z
Sep 1, 2021

It's quite economical compared to other solutions in the market.

IO
Reseller
Top 20
2021-06-02T19:36:43Z
Jun 2, 2021

The packet capture aspect of it is a valuable feature because it is quite different from a traditional SIEM solution that only carries out investigations based on captured logs.

RP
Real User
2021-05-19T19:23:40Z
May 19, 2021

Offers a good wireless feature.

AR
Real User
2020-10-30T14:43:26Z
Oct 30, 2020

The most valuable features are the packet inspection and the automated incident response.

PR
Real User
2020-07-26T08:19:19Z
Jul 26, 2020

What we are mainly using are the RSA concentrator, RSA Decoder, Archiver, Broker, and Log Decoder.

MT
Real User
2020-07-16T06:21:05Z
Jul 16, 2020

The most valuable feature is the security that it provides.

MA
Real User
2020-06-18T05:17:44Z
Jun 18, 2020

The most valuable features are the threat prediction and network forensics.

MA
Real User
2020-03-19T13:00:53Z
Mar 19, 2020

Performance and reporting are very good.

VG
Real User
2020-01-19T06:38:00Z
Jan 19, 2020

The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it.

AM
Real User
2020-01-12T07:22:00Z
Jan 12, 2020

The most valuable features are the integration and ease of use.

RD
Real User
2020-01-09T06:15:00Z
Jan 9, 2020

The most valuable features are the packet decoder, log decoder, and concentrator.

HL
Real User
2019-08-25T05:17:00Z
Aug 25, 2019

It's fully scalable. There is no limit. Of course, the license limits per day the number of terabytes. In my opinion, it's very flexible.

MH
Real User
2019-05-22T07:18:00Z
May 22, 2019

The most valuable feature is the ability to write rules and triggers for network communication, and then being able to investigate based on that.

EB
Real User
2019-03-11T07:21:00Z
Mar 11, 2019

The most valuable features are its ingestion of logs and raising of alerts based on those logs.

AV
Real User
2019-02-11T08:11:00Z
Feb 11, 2019

Their technical support responds quickly and are knowledgable.

AV
Real User
2018-12-25T09:42:00Z
Dec 25, 2018

The most valuable feature is the correlation. It can report in real-time and monitor the management.

MH
Real User
2018-11-06T13:08:00Z
Nov 6, 2018

It gives the ability to investigate into network traffic in the Net and the organization what we couldn't do before.

NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.
Download NetWitness Platform ReportRead more

Related Q&As