• Home
  • Cisco Cognitive Threat Analytics vs. Cisco Sourcefire SNORT

Cisco Cognitive Threat Analytics vs Cisco Sourcefire SNORT comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Intrusion Detection and Prevention Software (IDPS)
March 2024
Executive Summary

We performed a comparison between Cisco Cognitive Threat Analytics and Cisco Sourcefire SNORT based on real PeerSpot user reviews.

Find out what your peers are saying about Darktrace, Vectra AI, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS).
To learn more, read our detailed Intrusion Detection and Prevention Software (IDPS) Report (Updated: March 2024).
Download the complete report
768,578 professionals have used our research since 2012.
Featured Review
Philippe GNEZZERE
Simple deployment, reliable, and helpful support
Sherwin De Claro
The solution provides visibility across virtual environments, protects internal networks, and is scalable to meet...
The solution has improved our organization by helping us provide protection from our own internal networks and internal clients.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable feature of Cisco Cognitive Threat Analytics is its reliability."

More Cisco Cognitive Threat Analytics Pros →

"The whole solution is very good, and stable.""In general, the features are all great. However, if I need to take hardware for ASA, because they need to upgrade to Firepower, we want to create rules. For that, most of the time we go to the command line. Right now Firepower is working really hard on the grid. You can apply all those rules to the grid. Even if you want to monitor the logs, for example, the activity will tell you which particular user has been blocked because of that rule. Firepower's monitoring interface is very good, because you can see each and every piece. ASA also had it, but there you needed to type the command and be under the server to see all that stuff. In Firepower you have the possibility to go directly to the firewall. The way the monitoring is displayed is also very nice. The feature I appreciate most in Firepower is actually the grid. The grid has worked very well.""The most valuable feature is the ability to automatically learn the traffic in our environment, and change the merit recommendations based on that.""The URL filtering is very good and you can create a group for customized URLs.""The solution can be integrated with some network electors like Cisco Stealthwatch, Cisco ISE, and Active Directory to provide the client with authentication certificates.""The solution is stable.""It simplifies the configuration process by offering pre-defined base configurations, including security and connectivity settings.""Solid intrusion detection and prevention that scales easily in very large environments."

More Cisco Sourcefire SNORT Pros →

Cons
"Cisco Cognitive Threat Analytics could improve by having quicker detection and response and web analysis."

More Cisco Cognitive Threat Analytics Cons →

"The main dashboard of Cisco Sourcefire SNORT could improve.""The customization of the rules can be simplified.""I don't think this solution is a time-based control system, because one cannot filter traffic based on time.""If the price is brought down then everybody will be happy.""With the next release, I would like to see some PBR, so that you can do the configuration with the features.""The cloud can be improved.""To be frank, the product is not really stable, although they're working on that. Whenever I go to the technical community with an issue, they will usually say that it is not there yet, but the technical team are working on it. The issues are not insolvable. I think they should just keep working on the product to make sure that the product can become very stable. The technical support is great. I appreciate that. We have a lot of communities supporting Firepower now, so you can find help for whatever issue you have.""Integration with other components — even Cisco's own products — can be enhanced to improve administrative experience."

More Cisco Sourcefire SNORT Cons →

Pricing and Cost Advice
  • "Cisco Cognitive Threat Analytics could reduce the price to allow all countries to afford it. The price is expensive."

    • More Cisco Cognitive Threat Analytics Pricing and Cost Advice →

  • "We have a three-year license for this solution."
  • "Licensing for this solution is paid on a yearly basis."
  • "I don't know the exact amount, but most of the time when I go to a company with a proposition, they will say, "This thing that you are selling is good, but it's expensive. Why don't you propose something like FortiGate, Check Point, or Palo Alto?" Cisco device are expensive compared to other devices."
  • "The cost is per port and can be expensive but it does include training and support for three years."

    • More Cisco Sourcefire SNORT Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
    See Recommendations
    768,578 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Cisco Cognitive Threat Analytics?
    Top Answer:The most valuable feature of Cisco Cognitive Threat Analytics is its reliability.
    What is your experience regarding pricing and costs for Cisco Cognitive T...
    Top Answer:Cisco Cognitive Threat Analytics could reduce the price to allow all countries to afford it. The price is expensive.
    What needs improvement with Cisco Cognitive Threat Analytics?
    Top Answer:Cisco Cognitive Threat Analytics could improve by having quicker detection and response and web analysis.
    What do you like most about Cisco Sourcefire SNORT?
    Top Answer:The product is inexpensive compared to leading brands such as Palo Alto or Fortinet.
    Read all 17 answers   →
    What is your experience regarding pricing and costs for Cisco Sourcefire ...
    Top Answer:The product is inexpensive compared to leading brands such as Palo Alto or Fortinet. It is cheaper than Palo Alto and comparable to Fortinet. It also depends on Cisco’s discount. Sometimes it's… more »
    Read all 5 answers   →
    What needs improvement with Cisco Sourcefire SNORT?
    Top Answer:The solution has some stability issues. Also, it's complicated compared to other products like FortiGate.
    Read all 17 answers   →
    Ranking
    23rd
    out of 42 in Intrusion Detection and Prevention Software (IDPS)
    Views
    69
    Comparisons
    56
    Reviews
    1
    Average Words per Review
    245
    Rating
    10.0
    13th
    out of 42 in Intrusion Detection and Prevention Software (IDPS)
    Views
    2,112
    Comparisons
    1,553
    Reviews
    5
    Average Words per Review
    392
    Rating
    8.0
    Comparisons
    Also Known As
    Cognitive Threat Analytics, CTA
    Sourcefire SNORT
    Learn More
    Cisco
    Cisco
    Overview

    Cognitive Threat Analytics (CTA) enhances web security with breach detection and analytics to stop threats in the network. Online threats have become increasingly sophisticated, targeted attacks are on the rise, and cybercriminals launch their campaigns through a variety of vectors. They can serve up malvertising and deploy exploit kits that install rootkits. They can establish a botnet presence within your infrastructure. Once cybercriminals establish a foothold, more than 90 percent of their threats use the web. There, they can establish channels for command-and-control communications and exfiltrate sensitive information. Analyzing more than 10 billion web requests daily, Cisco Cognitive Threat Analytics finds malicious activity that has bypassed security controls, or entered through unmonitored channels (including removable media), and is operating inside an organization’s environment. Cognitive Threat Analytics is a cloud-based product that uses machine learning and statistical modeling of networks. It creates a baseline of the traffic in your network and identifies anomalies. It analyzes user and device behavior, and web traffic, to discover command-and-control communications, data exfiltration, and potentially unwanted applications operating in your infrastructure.

    Snort is an open-source, rule-based, intrusion detection and prevention system. It combines the benefits of signature-, protocol-, and anomaly-based inspection methods to deliver flexible protection from malware attacks. Snort gained notoriety for being able to accurately detect threats at high speeds.

    Sample Customers
    Transplace
    CareCore, City of Biel, Dimension Data, LightEdge, Lone Star College System, National Rugby League, Port Aventura, Smart City Networks, Telecom Italia, The Department of Education in Western Australia
    Top Industries
    VISITORS READING REVIEWS
    Computer Software Company47%
    Healthcare Company11%
    Aerospace/Defense Firm6%
    Retailer4%
    REVIEWERS
    Computer Software Company27%
    Financial Services Firm18%
    Comms Service Provider18%
    Individual & Family Service9%
    VISITORS READING REVIEWS
    Computer Software Company19%
    Government9%
    Financial Services Firm8%
    Comms Service Provider7%
    Company Size
    VISITORS READING REVIEWS
    Small Business17%
    Midsize Enterprise6%
    Large Enterprise77%
    REVIEWERS
    Small Business22%
    Midsize Enterprise39%
    Large Enterprise39%
    VISITORS READING REVIEWS
    Small Business25%
    Midsize Enterprise12%
    Large Enterprise62%
    Buyer's Guide
    Intrusion Detection and Prevention Software (IDPS)
    March 2024
    Download Free Report
    Find out what your peers are saying about Darktrace, Vectra AI, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS). Updated: March 2024.
    DOWNLOAD NOW
    768,578 professionals have used our research since 2012.

    Cisco Cognitive Threat Analytics is ranked 23rd in Intrusion Detection and Prevention Software (IDPS) with 1 review while Cisco Sourcefire SNORT is ranked 13th in Intrusion Detection and Prevention Software (IDPS) with 18 reviews. Cisco Cognitive Threat Analytics is rated 10.0, while Cisco Sourcefire SNORT is rated 7.6. The top reviewer of Cisco Cognitive Threat Analytics writes "Simple deployment, reliable, and helpful support". On the other hand, the top reviewer of Cisco Sourcefire SNORT writes "An IPS solution for security and protection but lacks stability". Cisco Cognitive Threat Analytics is most compared with Cisco Secure Network Analytics, whereas Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Cisco NGIPS, Check Point IPS, Palo Alto Networks Advanced Threat Prevention and Darktrace.

    See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.

    We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.