• Home
  • ExtraHop Reveal(x) vs. Palo Alto Networks URL Filtering with PAN-DB

ExtraHop Reveal(x) vs Palo Alto Networks URL Filtering with PAN-DB comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Network Traffic Analysis (NTA)
April 2024
Executive Summary

We performed a comparison between ExtraHop Reveal(x) and Palo Alto Networks URL Filtering with PAN-DB based on real PeerSpot user reviews.

Find out what your peers are saying about Darktrace, Vectra AI, Auvik and others in Network Traffic Analysis (NTA).
To learn more, read our detailed Network Traffic Analysis (NTA) Report (Updated: April 2024).
Download the complete report
770,292 professionals have used our research since 2012.
Featured Review
Jordan Swanson
It helps you visualize how data moves across your network
We have a lot of other devices that do more analytics based on utilization instead of the actual configuration and management, but Reveal X gives... Read more →
Michael Velasco
Provides regular updates with an auto download option; prohibited URLs can be listed by category
It lets us know that our Human Resources policies regarding the categories of Internet sites that are off-limits using the company's resources are... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Reveal X integrates seamlessly with CrowdStrike. If you see something sketchy on the network, you can quarantine devices through ExtraHop and it'll push to the CrowdStrike server.""The most valuable features of ExtraHop Reveal(x) are the detection and alerting of network behavior and anomalies.""ExtraHop Reveal(x) is one of the tools that works out of the box when it comes to threat hunting.""The solution works well for sending sensors.""We had useful information within the hour of deployment. The ability to trace back for historical analysis, as well as the behavioral analysis done with the security information, puts the user in a position to make an informed decision to mitigate the performance or security incidents. Regarding the security incidents, Reveal (x) is able to create incident cards that guide your teams through the incidents and gives you the option to delve into the transaction detail to potentially view payloads as well.""The solution's initial setup process is easy.""With ExtraHop Reveal(x), it gives me more visibility into the packets. It doesn't provide the entire packet capture, but it offers more information on how connections are made at the network layer. This can be helpful for detecting network attacks. Additionally, I really like the customizable dashboards and reports. The incident dashboard and alerts provide a good summary initially, and diving deeper into them gives more detailed information. It's also great for analyzing specific attacks and victim logs. The feature that tracks the full attack chain makes it easier to monitor the progress of attacks. Plus, it's connected to the Netria.com app, which I find useful for certain tasks.""It's a wire analytics tool. We use it for isolating and determining issues on our network or applications. It does a lot for crediting the network as opposed to discrediting the network. A lot of people come along and say that it's a network issue. It's always considered to be a network issue, but by using ExtraHop, we can quickly tell them that it's not a networking issue. It's something to do with your application or something at the other end. It could be a database issue. This tool gives us the ability to pinpoint with great accuracy the comings and goings on our network."

More ExtraHop Reveal(x) Pros →

"Palo Alto Networks URL Filtering with PAN-DB is easy to use, easy to operate, and easy to edit.""Prohibited URLs can be listed by category.""The most valuable feature is that the product can do everything in a single device, including the firewall, rules, and the PBL. It also has good routing and switching.""The initial setup is easy.""The Palo Alto solution has improved our organization by providing threat protection across a variety of internet connections. Our company also gets valuable insights regarding threat analysis.""It's allowed us to have better visibility and protection from threats.""Being able to manage blacklists and whitelists easily is very useful, especially for internal access and limiting outbound access."

More Palo Alto Networks URL Filtering with PAN-DB Pros →

Cons
"It needs integration with more security vendors.""ExtraHop Reveal(x) could improve by allowing a longer look back in the feature. Right now you have a limit of 30 days to look back on your activity. I've used Darktrace before, and they allow you the ability to play back events. This would be a good feature to have in ExtraHop Reveal(x).""The solution's reporting part and GUI are areas with certain shortcomings where improvements are required.""They used to have the ability to decode Citrix sign-on, setup, and tear down. Unfortunately, Citrix has stopped sharing that knowledge. Citrix has continued to change its model of processing, making it harder and harder to troubleshoot.""The solution should include more support protocols.""I think the tuning capabilities could be improved. We're working on minimizing false positives. Apart from that, everything seems fine to me.""There is a little training online, but it'd be cool if ExtraHop provided certifications. CrowdStrike does elective training that gives you a certification as a Falcon administrator. It'd be nice to see ExtraHop have something like that""The solution is expensive and gets more expensive if a company needs to scale it."

More ExtraHop Reveal(x) Cons →

"It is an expensive solution and not everyone has the budget for it.""Performance monitoring could use improvement.""We have had some challenges with making Palo Alto Networks URL Filtering with PAN-DB work with ELK stack.""An area for improvement would be the technical support, which can be slow.""For hosting sites like Blogspot, they host sites that should be in different categories, but get lumped together in general. There needs to be more granularity or multiple categorizations.""One way Palo Alto can improve is by offering sandboxing. I don't know if they currently offer a sandboxing feature together with the firewall or not. They should provide secure sandboxing with the firewalls.""The solution is a bit expensive."

More Palo Alto Networks URL Filtering with PAN-DB Cons →

Pricing and Cost Advice
  • "I would rate the price a three out of five. It could be less expensive."
  • "I rate ExtraHop Reveal(x) six out of 10 for affordability. We pay for an annual license. It's always one of those trade-offs. You get a lot of value, but ExtraHop isn't exorbitantly priced. You can pay extra for additional features like the ability to decode HL7 traffic, which is crucial for EMR environments."
  • "The solution is based on an annual subscription model and is expensive."
  • "I rate the price of ExtraHop Reveal(x) a seven on a scale of one to ten, where one is a high price, and ten is a low price."

    • More ExtraHop Reveal(x) Pricing and Cost Advice →

  • "It is more expensive than ASA but is far cheaper than Checkpoint. So, pricing wise, it is right in the middle."
  • "Expensive, but that's because it provides everything."

    • More Palo Alto Networks URL Filtering with PAN-DB Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Network Traffic Analysis (NTA) solutions are best for your needs.
    See Recommendations
    770,292 professionals have used our research since 2012.
    Questions from the Community
    What is the best network monitoring software for large enterprises?
    Top Answer:We just did an assessment for our 47 datacenters around North America. The top two enterprise-level network monitoring solutions were ExtraHop first, Riverbed SteelCenter second. Their negotiated cost… more »
    Read all 18 answers   →
    What open source tool can one use to measure bandwidth from one's upstrea...
    Top Answer:One I am looking closely at is AppNeta. They have an appliance that can digest the flow and do a better job than Netflow The other one we are using is ExtraHop.  This has both a Datacenter… more »
    Read all 5 answers   →
    What do you like most about ExtraHop Reveal(x)?
    Top Answer:With ExtraHop Reveal(x), it gives me more visibility into the packets. It doesn't provide the entire packet capture, but it offers more information on how connections are made at the network layer… more »
    Read all 10 answers   →
    What do you like most about Palo Alto Networks URL Filtering with PAN-DB?
    Top Answer:Palo Alto Networks URL Filtering with PAN-DB is a great way to keep your network secure and safe from malicious websites. It's my favorite feature because it allows me to easily customize and tailor… more »
    Read all 8 answers   →
    What needs improvement with Palo Alto Networks URL Filtering with PAN-DB?
    Top Answer:URL Filtering with Palo Alto Networks PAN-DB can help you protect your networks and users from malicious URLs, but it's not perfect. For starters, the database needs to be constantly updated to… more »
    Read all 7 answers   →
    What is your primary use case for Palo Alto Networks URL Filtering with P...
    Top Answer:When it comes to URL filtering, Palo Alto Networks URL Filtering with PAN-DB is the way to go. It helps you maintain complete control of your network security by identifying and blocking risky… more »
    Read all 7 answers   →
    Ranking
    5th
    out of 24 in Network Traffic Analysis (NTA)
    Views
    3,622
    Comparisons
    2,664
    Reviews
    9
    Average Words per Review
    543
    Rating
    8.6
    19th
    out of 42 in Intrusion Detection and Prevention Software (IDPS)
    Views
    3,807
    Comparisons
    1,924
    Reviews
    0
    Average Words per Review
    0
    Rating
    N/A
    Comparisons
    Also Known As
    Reveal(x), Revealx
    Palo Alto Networks URL Filtering PAN-DB
    Learn More
    ExtraHop Networks
    Palo Alto Networks
    Overview

    ExtraHop Reveal(x) is a highly effective network traffic analysis (NTA) solution that leverages a cloud-native architecture to empower organizations to overcome a world filled with increasingly sophisticated threats. It identifies 25% more threats than its competitors. Additionally, organizations that employ Reveal(x) say they resolve issues 77% percent faster than they would if they were using other similar solutions.

    ExtraHop Reveal(x) Benefits

    Some of the ways that organizations can benefit by choosing to deploy ExtraHop Reveal(x) include:

    • Total network visibility. Reveal(x) gives users the ability to view every component of their network and devices connected to it in real time. It can automatically recognize and classify the devices that are communicating across an organization’s network. These devices are scanned by powerful decryption software that reveals hidden threats and the details of critical transactions without compromising privacy or compliance rules. Organizations are given full East-West visibility across both physical data centers and cloud environments. Threats that are on the periphery are brought to the attention of the administrators tasked with watching out for them.
    • Identify threats in real time. Reveal(x) extracts more than 5,000 features from the L2-L7 security layers at any given time, feeds them into its machine learning engine, and presents them to its rule-based detection feature. These features make it possible for the solution to identify the most severe threats. Users can conduct a threat triage and address the threats that their system detects in the order of severity that these threats represent.
    • Ease of use. Users of Reveal(x) can easily make full use of its event remediation features without expending long periods of time learning them. Its workflows are designed so that administrators can go from a security event to the cause of the event in only a couple of clicks. What would normally take hours can be completed in moments.

    ExtraHop Reveal(x) Features

    • Integration suite. Reveal(x) enables users to utilize a robust suite of integrations. If users feel they are missing important capabilities, they can bolster their security feature toolbox with those offered by third-party solutions. Phantom, Splunk, and Palo Alto are three examples of solutions that Reveal(x) enables users to connect to in order to fill in a gap in their security capabilities.
    • Automated inventory. Reveal(x) automatically creates a detailed inventory of all of the devices that it discovers and classifies. This keeps an always up-to-date record of all of the devices that are communicating in a given network.

    • Machine learning. Reveal(x)’s real-time application analytics is driven by a machine learning engine. It detects anomalies in an organization’s network traffic, thus enabling users to keep ahead of any and all threats while reducing the number of false positives that administrators have to sort through.

    Reviews from Real Users

    ExtraHop Reveal(x) is a solution that stands out when compared to many other similar solutions. Two major advantages that it offers are its versatility and its ability to quickly identify the root cause of an application’s issues.

    John B., the senior monitoring engineer at a financial services firm, says, “It's useful for different teams in our organization. The cybersecurity team uses it because it has got great analytics for anomaly detection, malware detection, and ransomware. It's used by the networking people because it's great to be able to get the three-way handshake between systems to see how your network is doing. The microservices for DNS use it because they like to be able to see how their DNS services are operating and how many DNS requests are being rejected, denied, or dropped. Application people love it because it fully decrypts their traffic.

    Henry S., a systems engineer at LifePoint Health, writes, "When there are performance issues with an HTTP app, ExtraHop enables us to identify the causes within a few minutes. We can see what transactions are being impacted by something that may be happening within the server environment."

    Palo Alto Networks URL Filtering with PAN-DB is an advanced URL filtering solution that provides a way to control web access, as well as how users interact with online content. With this solution, your organization can prevent credential phishing theft by assuming strict control over which sites users can enter their corporate credentials into. Palo Alto Networks Advanced URL Filtering with PAN-DB provides web protection by using URL database capabilities to help you automatically detect and prevent new malicious and targeted web-based threats instantly.

    Palo Alto Networks URL Filtering with PAN-DB Features

    Palo Alto Networks URL Filtering with PAN-DB has many valuable key features. Some of the most useful ones include:

    • Inline protection: Palo Alto Networks URL Filtering with PAN-DB provides inline protection from new malicious web pages by using machine learning to detect and block new threats in milliseconds.
    • Anti-evasion: Palo Alto Networks URL Filtering with PAN-DB analyzes live web content, disrupting attackers and identifying the true nature of malicious sites hiding behind evasive techniques.
    • Phishing protection: By using Palo Alto Networks URL Filtering with PAN-DB, you can spot phishing pages instantly and accurately before they destroy your network.
    • URL database: Palo Alto Networks URL Filtering with PAN-DB has a URL database that maintains hundreds of millions of known malicious and benign URLs categorized through a combination of static, dynamic, machine learning, and human analysis.
    • Criteria matching: With this feature, you can designate multiple policy action types based on URL categories or criteria.

    Palo Alto Networks URL Filtering with PAN-DB Benefits

    There are many benefits to implementing Palo Alto Networks URL Filtering with PAN-DB. Some of the biggest advantages the solution offers include:

    • Eliminates security silos: Palo Alto Networks URL Filtering with PAN-DB gets rid of security silos so you can attain proper security posture and keep users safe.
    • Cloud native: Because Palo Alto Networks URL Filtering with PAN-DB is cloud native, it enables you to easily expand and scale capabilities when necessary.
    • Minimizes operational expenditure: By reducing the need for standalone solutions, Palo Alto Networks URL Filtering with PAN-DB helps your organization decrease operational expenditures.
    • Safeguards against phishing: Palo Alto Networks URL Filtering with PAN-DB enables you to stop credential phishing attempts by offering layers of prevention to protect your organization from known and brand-new phishing sites.
    • Consistent security policies and capabilities: With Palo Alto Networks URL Filtering with PAN-DB, you can deploy advanced URL filtering with hardware appliances, on virtual environments, or in the cloud with the same set of policies and security consistently applied.
    • Increased detection: Detect evasive and targeted attacks by detecting real web traffic and not web crawler data.

    Reviews from Real Users

    Below are some reviews and helpful feedback written by PeerSpot users currently using the Palo Alto Networks URL Filtering with PAN-DB solution.

    Consultant Michael V. says, “What I really like about PAN and what makes it a worthwhile solution is that rather than having an administrator constantly updating a list of prohibited URLs, you can do it by categories. Every one of these URLs gets meta-tagged as hate speech or antisemitic or pornography, or whatever it is, and when you set up the filter everything that's prohibited by HR policy is there. I don't have to maintain anything, it catches everything.”

    PeerSpot user Darshil S., Consultant at a tech services company, mentions, “The multiple categorizations of URLs are quite helpful. For example, if a URL is a social media website, such as facebook.com, it can be classified at a certain risk level - from high to low.”

    Karthikeyan S., Sr. Cloud Data Architect at Sun Cloud LLC, explains, "Palo Alto Networks URL Filtering with PAN-DB is easy to use, easy to operate, and easy to edit."

    Sample Customers
    Wood County Hospital
    TRI-AD, Telkom Indonesia
    Top Industries
    REVIEWERS
    Security Firm22%
    Computer Software Company22%
    Financial Services Firm22%
    Educational Organization11%
    VISITORS READING REVIEWS
    Computer Software Company15%
    Financial Services Firm14%
    Government7%
    Manufacturing Company6%
    VISITORS READING REVIEWS
    Computer Software Company13%
    Financial Services Firm11%
    Government8%
    Manufacturing Company8%
    Company Size
    REVIEWERS
    Small Business23%
    Midsize Enterprise23%
    Large Enterprise54%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise14%
    Large Enterprise65%
    REVIEWERS
    Small Business38%
    Midsize Enterprise25%
    Large Enterprise38%
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise15%
    Large Enterprise63%
    Buyer's Guide
    Network Traffic Analysis (NTA)
    April 2024
    Download Free Report
    Find out what your peers are saying about Darktrace, Vectra AI, Auvik and others in Network Traffic Analysis (NTA). Updated: April 2024.
    DOWNLOAD NOW
    770,292 professionals have used our research since 2012.

    ExtraHop Reveal(x) is ranked 5th in Network Traffic Analysis (NTA) with 12 reviews while Palo Alto Networks URL Filtering with PAN-DB is ranked 19th in Intrusion Detection and Prevention Software (IDPS). ExtraHop Reveal(x) is rated 8.6, while Palo Alto Networks URL Filtering with PAN-DB is rated 8.4. The top reviewer of ExtraHop Reveal(x) writes "It helps you visualize how data moves across your network". On the other hand, the top reviewer of Palo Alto Networks URL Filtering with PAN-DB writes "Provides regular updates with an auto download option; prohibited URLs can be listed by category ". ExtraHop Reveal(x) is most compared with Darktrace, Vectra AI, Corelight, Cisco Secure Network Analytics and Arista NDR, whereas Palo Alto Networks URL Filtering with PAN-DB is most compared with Check Point IPS, Fortinet FortiGate IPS, Zscaler Cloud IPS, Palo Alto Networks Advanced Threat Prevention and Trend Micro Deep Discovery.

    We monitor all Network Traffic Analysis (NTA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.