We performed a comparison between ExtraHop Reveal(x) and Palo Alto Networks URL Filtering with PAN-DB based on real PeerSpot user reviews.
Find out what your peers are saying about Darktrace, Vectra AI, Auvik and others in Network Traffic Analysis (NTA)."Reveal X integrates seamlessly with CrowdStrike. If you see something sketchy on the network, you can quarantine devices through ExtraHop and it'll push to the CrowdStrike server."
"The most valuable features of ExtraHop Reveal(x) are the detection and alerting of network behavior and anomalies."
"ExtraHop Reveal(x) is one of the tools that works out of the box when it comes to threat hunting."
"The solution works well for sending sensors."
"We had useful information within the hour of deployment. The ability to trace back for historical analysis, as well as the behavioral analysis done with the security information, puts the user in a position to make an informed decision to mitigate the performance or security incidents. Regarding the security incidents, Reveal (x) is able to create incident cards that guide your teams through the incidents and gives you the option to delve into the transaction detail to potentially view payloads as well."
"The solution's initial setup process is easy."
"With ExtraHop Reveal(x), it gives me more visibility into the packets. It doesn't provide the entire packet capture, but it offers more information on how connections are made at the network layer. This can be helpful for detecting network attacks. Additionally, I really like the customizable dashboards and reports. The incident dashboard and alerts provide a good summary initially, and diving deeper into them gives more detailed information. It's also great for analyzing specific attacks and victim logs. The feature that tracks the full attack chain makes it easier to monitor the progress of attacks. Plus, it's connected to the Netria.com app, which I find useful for certain tasks."
"It's a wire analytics tool. We use it for isolating and determining issues on our network or applications. It does a lot for crediting the network as opposed to discrediting the network. A lot of people come along and say that it's a network issue. It's always considered to be a network issue, but by using ExtraHop, we can quickly tell them that it's not a networking issue. It's something to do with your application or something at the other end. It could be a database issue. This tool gives us the ability to pinpoint with great accuracy the comings and goings on our network."
"Palo Alto Networks URL Filtering with PAN-DB is easy to use, easy to operate, and easy to edit."
"Prohibited URLs can be listed by category."
"The most valuable feature is that the product can do everything in a single device, including the firewall, rules, and the PBL. It also has good routing and switching."
"The initial setup is easy."
"The Palo Alto solution has improved our organization by providing threat protection across a variety of internet connections. Our company also gets valuable insights regarding threat analysis."
"It's allowed us to have better visibility and protection from threats."
"Being able to manage blacklists and whitelists easily is very useful, especially for internal access and limiting outbound access."
"It needs integration with more security vendors."
"ExtraHop Reveal(x) could improve by allowing a longer look back in the feature. Right now you have a limit of 30 days to look back on your activity. I've used Darktrace before, and they allow you the ability to play back events. This would be a good feature to have in ExtraHop Reveal(x)."
"The solution's reporting part and GUI are areas with certain shortcomings where improvements are required."
"They used to have the ability to decode Citrix sign-on, setup, and tear down. Unfortunately, Citrix has stopped sharing that knowledge. Citrix has continued to change its model of processing, making it harder and harder to troubleshoot."
"The solution should include more support protocols."
"I think the tuning capabilities could be improved. We're working on minimizing false positives. Apart from that, everything seems fine to me."
"There is a little training online, but it'd be cool if ExtraHop provided certifications. CrowdStrike does elective training that gives you a certification as a Falcon administrator. It'd be nice to see ExtraHop have something like that"
"The solution is expensive and gets more expensive if a company needs to scale it."
"It is an expensive solution and not everyone has the budget for it."
"Performance monitoring could use improvement."
"We have had some challenges with making Palo Alto Networks URL Filtering with PAN-DB work with ELK stack."
"An area for improvement would be the technical support, which can be slow."
"For hosting sites like Blogspot, they host sites that should be in different categories, but get lumped together in general. There needs to be more granularity or multiple categorizations."
"One way Palo Alto can improve is by offering sandboxing. I don't know if they currently offer a sandboxing feature together with the firewall or not. They should provide secure sandboxing with the firewalls."
"The solution is a bit expensive."
More Palo Alto Networks URL Filtering with PAN-DB Pricing and Cost Advice →
ExtraHop Reveal(x) is ranked 5th in Network Traffic Analysis (NTA) with 12 reviews while Palo Alto Networks URL Filtering with PAN-DB is ranked 19th in Intrusion Detection and Prevention Software (IDPS). ExtraHop Reveal(x) is rated 8.6, while Palo Alto Networks URL Filtering with PAN-DB is rated 8.4. The top reviewer of ExtraHop Reveal(x) writes "It helps you visualize how data moves across your network". On the other hand, the top reviewer of Palo Alto Networks URL Filtering with PAN-DB writes "Provides regular updates with an auto download option; prohibited URLs can be listed by category ". ExtraHop Reveal(x) is most compared with Darktrace, Vectra AI, Corelight, Cisco Secure Network Analytics and Arista NDR, whereas Palo Alto Networks URL Filtering with PAN-DB is most compared with Check Point IPS, Fortinet FortiGate IPS, Zscaler Cloud IPS, Palo Alto Networks Advanced Threat Prevention and Trend Micro Deep Discovery.
We monitor all Network Traffic Analysis (NTA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.