We performed a comparison between NetWitness Platform, Palo Alto Networks WildFire, and RiskIQ Illuminate based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Datadog, Wazuh and others in Log Management."The newer 11.5 version that my team is using has found it to have good mapping."
"NetWitness Platform is valuable for creating rules that the solution must detect."
"I can have enterprise security, email security, next generation firewall security log, HIDS and NIDS logs, etc. all on the same dashboard. It makes it easy to pinpoint or correlate our server to this. I can find out if there is lateral movement. This is the biggest advantage of this solution."
"What we are mainly using are the RSA concentrator, RSA Decoder, Archiver, Broker, and Log Decoder."
"The most valuable feature is the security that it provides."
"In my opinion, the solution's most valuable feature is its capacity to monitor network traffic, logs from devices within the network, and network captures. This capability extends beyond logs to include full network capturing."
"NetWitness can be highly beneficial for incident detection and response."
"The most valuable features are the packet inspection and the automated incident response."
"The most valuable feature of this solution is how it keeps up-to-date with viruses."
"We have found that Palo Alto Networks WildFire is scalable. We currently have six thousand users for the product."
"Being an application-based firewall, this is one of the critical focus factors along with the threat prevention services it provides."
"Intuitive threat prevention and analysis solution, with a machine learning feature. Scalable, stable, and protects against zero-day threats."
"It helps us when segmenting and securing the network and all sort of technologies, all sort of next generation needs. It's next generation phases of firewall like anti-virus, sandboxing, wifi, and VPN."
"It is a stable solution...It is a scalable solution."
"Using WildFire has reduced the number of viruses and the amount of malware that comes into our system, which means that I don't have to rely on the end-users to identify it."
"The most valuable features are all of the security features in terms of protection and SSL and VPN."
"The solution is stable with 12 years of established historical data."
"The log system is a bit complex and has room for improvement."
"The threat detection capability and centralizing and upgrading capability need to be improved. The threat alert capability needs to be improved as well because there is some lag time at present. They need to work on their database search too."
"The documentation is not as structured as I would like, personally, and I think that it can be improved and made much more user-friendly."
"The system architecture is complex and sometimes it’s hard to troubleshoot potential problems."
"There are instances where you try to run the reports and then it does not give you the desired outcome."
"There is no support for this product in this country, so problems have to be resolved through global technical teams."
"I believe that integrating the solution with other products such as Oracle would be beneficial."
"If we have the ability to run a dynamic analysis through malware in the same suite, it would be great to have a sandbox solution to analyze malware through dynamic analysis."
"The deployment model could be better."
"They can keep on doing more updates. As new malware and viruses are coming out, they can make sure that WildFire is up to date."
"The GUI is better in 8.0, but I still feel it lacks the fast response most of us desire. Logs are much quicker."
"Palo Alto Networks WildFire could improve by adding support for manual submission of suspicious files and URLs. Additionally, it would be an advantage to add rule-based analysis. Currently, it uses only static and AI. We need to be able to analyze archive files."
"The free version does not have real-time updates. It is slow."
"In the future, Palo Alto could reduce the time it takes to process the file."
"The automation and responsiveness need improvement."
"Our main concern is that everything has to be synced with the WildFire Cloud and has to be checked through the subscription."
"A low-cost service to evaluate the risk score of a supply chain would be very helpful."
Earn 20 points