We performed a comparison between Palo Alto Networks WildFire, RiskIQ Illuminate, and Trellix Network Detection and Response based on real PeerSpot user reviews.
Find out what your peers are saying about Microsoft, Palo Alto Networks, ESET and others in Advanced Threat Protection (ATP)."A good tool for file scanning and email threat detection, especially when it comes to attachments and communications."
"It gives a more accurate assessment of a virus in terms of whether it's truly a virus, malware, or a false positive. We have some legacy software that could pop up as being something that is malware. WildFire goes through and inspects it, and then it comes back and lets us know if it's a false positive. Usually, when it finds out that it's not a virus, it lets us know that it's benign, and it can exclude it from that scan, which means I don't even have to worry about that one popping up anymore."
"The most valuable feature for us is the VPN."
"WildFire's application encryption is useful."
"It is a stable solution...It is a scalable solution."
"For example, if a security Intel threat talks about an IOC. We can then go to our MSP and say, "Is there a signature for this particular type of malware that just came out?" And if they'll say yes, then we'll say, "Okay. Does it apply to these firewalls? And have we seen any hits on it?" There's absolutely value in it."
"They have many different options with Palo Alto WildFire and the set-up is quick. If you have all the details in hand, it does not take more than 15 minutes to deploy a firewall."
"What I like about Palo Alto is that it is a complete product, with everything in it."
"The solution is stable with 12 years of established historical data."
"It allows us to be more hands off in checking on emails and networking traffic. We can set up a bunch of different alerts and have it alert us."
"The product has helped improve our organization by being easy to use and integrate. This saves time, trouble and money."
"The scalability has not been a problem. We have deployed the product in very high bandwidth networks. We have never had a problem with the FireEye product causing latency issues within our networks."
"The features that I find most valuable are the MIR (Mandiant Incident Response) for checks on our inbound security."
"The most valuable feature is the view into the application."
"The most valuable feature is the network security module."
"Very functional and good for detecting malicious traffic."
"I also like its logging method. Its logging is very powerful and useful for forensic purposes. You can see the traffic or a specific activity or how something entered your network and where it went."
"When comparing this solution to others it is not as good overall."
"The product fails to offer protection when dealing with high-severity vulnerabilities, making it an area of concern where improvements are required."
"I would give this product a rating of 9 out of 10 due to some slight issues of performance."
"They should make their user interface a little more user-friendly."
"The only problem with this solution is the cost. It's expensive."
"The price of WildFire should be reduced in order to make it more affordable for our customers."
"Other vendors have some sort of bandwidth management built into the firewall itself and Palo Alto is missing that."
"The global product feature needs improvement, the VPN, and we need some enhanced features."
"A low-cost service to evaluate the risk score of a supply chain would be very helpful."
"Certain features in Trellix Network Detection and Response, such as using AL-type commands, may initially pose a challenge for those unfamiliar with such commands. However, once users become accustomed to the system, it becomes easier to use."
"A better depth of view, being able to see deeper into the management process, is what I'd like to see."
"As far as future inclusions, it would be useful to display more threat intelligence, such as the actual area of the threat and the origin of the web crawling (Tor and Dark Web)."
"It is an expensive solution."
"It would be a good idea if we could get an option to block based upon the content of an email, or the content of a file attachment."
"I heard that FireEye recently was hacked, and a lot of things were revealed. We would like FireEye to be more secure as an organization. FireEye has to be more protective because it is one of the most critical devices that we are using in our environment. They have a concept called SSL decryption, but that is only the packet address. We would like FireEye to also do a lot of decryption inside the packet. Currently, FireEye only does encryption and decryption of the header, but we would like them to do encryption and decryption of the entire packet."
"They can maybe consider supporting some compliance standards. When we are configuring rules and policies, it can guide whether they are compliant with a particular compliance authority. In addition, if I have configured some rules that have not been used, it should give a report saying that these rules have not been used in the last three months or six months so that I disable or delete those rules."
"It is not a very secure product."
More Trellix Network Detection and Response Pricing and Cost Advice →
Earn 20 points