We performed a comparison between NetWitness Platform, Palo Alto Networks WildFire, and RiskIQ Illuminate based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Datadog, Wazuh and others in Log Management."The product has a user-friendly interface and a valuable feature for threat intelligence integration."
"NetWitness Platform is valuable for creating rules that the solution must detect."
"In my opinion, the solution's most valuable feature is its capacity to monitor network traffic, logs from devices within the network, and network captures. This capability extends beyond logs to include full network capturing."
"Performance and reporting are very good."
"Offers a good wireless feature."
"The product's initial setup phase was not at all difficult."
"The most valuable feature of RSA NetWitness Logs and Packets are the alerts and correlations tools."
"The most valuable feature is the correlation. It can report in real-time and monitor the management."
"With this product, we receive the best monitoring and reports."
"Intuitive threat prevention and analysis solution, with a machine learning feature. Scalable, stable, and protects against zero-day threats."
"The technical support is good."
"The most valuable feature of this solution is how it keeps up-to-date with viruses."
"We have found that Palo Alto Networks WildFire is scalable. We currently have six thousand users for the product."
"I like the analysis they apply to the unknown files, and I think they have good technology to use as a sandboxing tool. I didn't find something similar to WildFire in the marketplace."
"The solution has plenty of features."
"The way that the solution quickly updates to adjust to threats is the solution's most valuable aspect. When there's a security attack, within five minutes, all Wildfire subscribers have access to updates so that all systems will be safe. Its threat prevention is way better than other vendor products."
"The solution is stable with 12 years of established historical data."
"I believe that integrating the solution with other products such as Oracle would be beneficial."
"Log aggregation is an issue with this solution because there are a huge number of alerts in a single instance."
"Its technical support could be better."
"The product's licensing models are complex to understand. This particular area needs improvement."
"If we have the ability to run a dynamic analysis through malware in the same suite, it would be great to have a sandbox solution to analyze malware through dynamic analysis."
"We have encountered issues with unresolved crashes."
"More customizability is required, which is something that they need to improve on."
"The multi-tenant capabilities are lagging compared to IBM QRadar."
"When comparing this solution to others it is not as good overall."
"Our main concern is that everything has to be synced with the WildFire Cloud and has to be checked through the subscription."
"In the future, Palo Alto could reduce the time it takes to process the file."
"The product's false positive logs could be more user-friendly to understand. They could provide examples of precious cases to learn."
"The automation and responsiveness need improvement."
"It's not really their problem, it's a problem across the board. There will always be problems with interrupted traffic. We have to set it up where we're playing a middle man game where we're stripping it out, looking at it, and then putting it back together and sending it on its way. That requires CPU cycles. And there's some overhead with that."
"In the future, I would like to see more automation in the reporting."
"The free version does not have real-time updates. It is slow."
"A low-cost service to evaluate the risk score of a supply chain would be very helpful."
Earn 20 points