Compare DNIF vs. RSA NetWitness Logs and Packets (RSA SIEM)

DNIF is ranked 17th in Security Information and Event Management (SIEM) with 2 reviews while RSA NetWitness Logs and Packets (RSA SIEM) is ranked 7th in Security Information and Event Management (SIEM) with 10 reviews. DNIF is rated 7.0, while RSA NetWitness Logs and Packets (RSA SIEM) is rated 7.0. The top reviewer of DNIF writes "Powerful analytics and machine-learning enable us to find attack patterns". On the other hand, the top reviewer of RSA NetWitness Logs and Packets (RSA SIEM) writes "Good support, powerful decoders and concentrator, but the dashboard is not reflecting events in real-time ". DNIF is most compared with Splunk, IBM QRadar and ArcSight, whereas RSA NetWitness Logs and Packets (RSA SIEM) is most compared with IBM QRadar, Splunk and ArcSight.
Cancel
You must select at least 2 products to compare!
Most Helpful Review
Find out what your peers are saying about Splunk, LogRhythm, IBM and others in Security Information and Event Management (SIEM). Updated: March 2020.
408,459 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
The solution is quite stable and offers good performance. It also works on a virtual machine. We haven't found any issues with it so far. It's been reliable.The response time on queries is super-fast.The User Behavior Analytics is a built-in threat-hunting feature. It detects and reports on any kind of malware or ransomware that enters the network.

Read more »

Performance and reporting are very good.The most valuable features are the integration and ease of use.The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it.The most valuable features are the packet decoder, log decoder, and concentrator.It's fully scalable. There is no limit. Of course, the license limits per day the number of terabytes. In my opinion, it's very flexible.The most valuable feature is the ability to write rules and triggers for network communication, and then being able to investigate based on that.The most valuable features are its ingestion of logs and raising of alerts based on those logs.Their technical support responds quickly and are knowledgable.

Read more »

Cons
The vendor is fairly new and it's not as big as some of the international competitors. It's not a mature product. If you ask them to move data, it might take a lot of time.The solution should be able to connect to endpoints, such as desktops and laptops... If this solution had a smart connector to these logs- Windows, Linux, or any other logs - without affecting the performance of the connector, that would be wonderful.

Read more »

The user interface is a little bit difficult for new users and it needs to be improved.The documentation is not as structured as I would like, personally, and I think that it can be improved and made much more user-friendly.The initial setup is very complex and should be simplified.Log aggregation is an issue with this solution because there are a huge number of alerts in a single instance.They should implement algorithms to digest that data and produce additional, more advanced reporting, alerting and support of internal security teams.The system looks like it is a mix of a bunch of different systems, and nothing looked like it was quite together.I'd like to see improvement in its ease of use. It's basically unusable. It's overly complex.The initial setup was complex because it takes a lot of time to complete the implementation.

Read more »

Pricing and Cost Advice
The pricing is based on the log size.

Read more »

Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day.We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment.This is a pricey solution; it's not cheap.The licenses are good but the cost is very expensive.It is cheap.

Read more »

report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
408,459 professionals have used our research since 2012.
Ranking
Views
1,679
Comparisons
1,113
Reviews
2
Average Words per Review
990
Avg. Rating
7.0
Views
6,869
Comparisons
4,516
Reviews
10
Average Words per Review
474
Avg. Rating
6.9
Top Comparisons
Compared 36% of the time.
Compared 21% of the time.
Compared 16% of the time.
Also Known As
RSA Security Analytics
Learn
NETMONASTERY
RSA
Overview

DNIF offers solutions to the world’s most challenging cybersecurity problems. Recognized by Gartner and used by some of the well-known global companies like PwC, Vodafone and Tata, this next generation analytics platform combines Security and Big Data Analytics to provide real-time threat detection and analytics to the most critical data assets on the Internet. With over a decade of experience in threat detection systems, DNIF has one of the fastest query response times and bridges the gap between searching, processing, analyzing and visualizing data thereby enabling companies with better SOC (Security Operations Center) management.

If you’re relying on log data to detect and prevent cyber threats, you’re in trouble. Attackers increasingly evade detection of log-centric security and network monitoring tools. But logs combined with full packet, endpoint NetFlow data are proven to provide the essential details for early threat detection. Here’s a closer look at our solution.

Offer
Learn more about DNIF
Learn more about RSA NetWitness Logs and Packets (RSA SIEM)
Sample Customers
Vodafone India, IDEA Cellular, RBL Bank, NCDEX, NSELos Angeles World Airports, Reply
Top Industries
VISITORS READING REVIEWS
Comms Service Provider50%
Software R&D Company26%
Media Company6%
Manufacturing Company6%
VISITORS READING REVIEWS
Software R&D Company37%
Comms Service Provider18%
Financial Services Firm7%
Government6%
Find out what your peers are saying about Splunk, LogRhythm, IBM and others in Security Information and Event Management (SIEM). Updated: March 2020.
408,459 professionals have used our research since 2012.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.