We performed a comparison between Cisco Sourcefire SNORT and Fortra's Tripwire Enterprise based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."I like most of Cisco's features, like malware detection and URL filtering."
"It has a huge rate of protection. It's has a low level of positives and a huge rate of threat protection. It's easy to deploy and easy to implement. It has an incredible price rate compared to similar solutions."
"Cisco technical support is unbeatable. It offers a premium service every time."
"The most valuable feature is the ability to automatically learn the traffic in our environment, and change the merit recommendations based on that."
"It simplifies the configuration process by offering pre-defined base configurations, including security and connectivity settings."
"The most valuable feature is the visibility that we have across the virtual environment."
"Solid intrusion detection and prevention that scales easily in very large environments."
"In general, the features are all great. However, if I need to take hardware for ASA, because they need to upgrade to Firepower, we want to create rules. For that, most of the time we go to the command line. Right now Firepower is working really hard on the grid. You can apply all those rules to the grid. Even if you want to monitor the logs, for example, the activity will tell you which particular user has been blocked because of that rule. Firepower's monitoring interface is very good, because you can see each and every piece. ASA also had it, but there you needed to type the command and be under the server to see all that stuff. In Firepower you have the possibility to go directly to the firewall. The way the monitoring is displayed is also very nice. The feature I appreciate most in Firepower is actually the grid. The grid has worked very well."
"File monitoring is the most valuable feature of the solution."
"We use Tripwire Enterprise as a tool to test the vulnerability of a network. That is the most valuable feature of the product for us."
"The most valuable feature is the integrity."
"Even if you change a single word in Notepad, it will let you know whether it was added, removed, or modified."
"Its reporting features are great. It gives you an in-depth report. Its customization is also great, and it is working fine."
"The product supports different platforms."
"The most valuable feature is integrity management. I had some discussions with service providers, and they also agreed."
"What's most valuable in Tripwire Enterprise is the ability to execute custom COCR rules that lets me fine-tune how I monitor Linux and Windows agents."
"The implementation could be a bit easier."
"To be frank, the product is not really stable, although they're working on that. Whenever I go to the technical community with an issue, they will usually say that it is not there yet, but the technical team are working on it. The issues are not insolvable. I think they should just keep working on the product to make sure that the product can become very stable. The technical support is great. I appreciate that. We have a lot of communities supporting Firepower now, so you can find help for whatever issue you have."
"There are problems setting up VPNs for some regions."
"The solution's approach to managing traffic blocking is confusing and impractical."
"I would like to have analytics included in the suite."
"The customization of the rules can be simplified."
"The initial setup is a little difficult compared to other products in the market. It depends on the environment. If we are doing any migration, it might take months in a brown-field environment."
"We are unhappy with technical support for this solution, and it is not as professional as what we typically expect from Cisco."
"Cloud monitoring could be better. It would also be better if the company followed a pay-as-you-use model."
"The initial setup is complex."
"It needs more local support from the OEM side. It would be great if this can be improved."
"The Windows online integration license needs to be improved."
"A lot of network devices need a custom integration."
"The deployment with certain systems can be difficult and it needs to be simplified."
"An area for improvement in Tripwire Enterprise is stability, as my company had stability issues with the last few versions of the solution. Tripwire Enterprise has been a bit buggy."
"The main way that it can be improved is through better reporting."
Cisco Sourcefire SNORT is ranked 13th in Intrusion Detection and Prevention Software (IDPS) with 18 reviews while Fortra's Tripwire Enterprise is ranked 17th in Intrusion Detection and Prevention Software (IDPS) with 8 reviews. Cisco Sourcefire SNORT is rated 7.6, while Fortra's Tripwire Enterprise is rated 8.0. The top reviewer of Cisco Sourcefire SNORT writes "An IPS solution for security and protection but lacks stability". On the other hand, the top reviewer of Fortra's Tripwire Enterprise writes "It has excellent scalability and allows you to execute custom COCR rules, letting you fine-tune agent monitoring". Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Cisco NGIPS, Check Point IPS, Palo Alto Networks Advanced Threat Prevention and Forcepoint Next Generation Firewall, whereas Fortra's Tripwire Enterprise is most compared with Trend Micro Deep Discovery, Darktrace, Change Tracker Gen7 R2, Trend Micro TippingPoint Threat Protection System and Trellix Intrusion Prevention System. See our Cisco Sourcefire SNORT vs. Fortra's Tripwire Enterprise report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.