We performed a comparison between NetWitness XDR and SolarWinds NetFlow Traffic Analyzer based on real PeerSpot user reviews.
Find out what your peers are saying about SentinelOne, CrowdStrike, Palo Alto Networks and others in Extended Detection and Response (XDR)."In Microsoft 365 vendor products, monitoring and connectivity across all Microsoft and third-party connectors enable viewing of all activity within those environments."
"The integration with other Microsoft solutions is the most valuable feature."
"The integration, visibility, vulnerability management, and device identification are valuable."
"We can use Defender to block and monitor for security purposes without needing multiple other products to do different tasks."
"I like 365 Defender's advanced threat hunting. The dashboard is user-friendly with templates for site policies, etc. The most important use case is evaluating the risk links and applications."
"From the perspective of Microsoft 365 XDR, the main benefit is a single, centralized dashboard offering the holistic visibility organizations crave."
"The 'Incidents and Alerts' tab is a valuable feature where we can find triggered alerts."
"Microsoft 365 Defender is a good solution and easy to use."
"The most valuable feature is the way it captures the traffic, and it contains every detail of the communication."
"RSA NetWitness does market analysis in a more granular form. It gives you full visibility."
"This solution allows us to locate the malware in real-time."
"Ability to isolate the machine when there are malicious files."
"The log correlation is good."
"It is stable. We have been using it for some time, without any issues."
"It is very easy to use, and its usability is great. The use cases are also very easy. The visualizations of the use cases are magnificent. You cannot find this in any other solution. From my point of view, it is great."
"They have recently updated the features and the most valuable ones are the instant threat response, ease of use, web interface, integration, and easy access. RSA NetWitness Endpoint is very compatible with other solutions and technologies. However, they do not rely on third-party solutions and have most features built-in."
"It is great at telling you if your devices are working and it keeps an eye on your network's overall performance."
"The most helpful feature of SolarWinds NetFlow Traffic Analyzer is bandwidth analysis, which lets you see who's hogging your network."
"The initial setup was straightforward."
"The performance analysis is a valuable feature. With the performance analyzer, we can see the realtime monitoring, the realtime performance, and historical performance on specific components like virtualization storage, CPU, servers and network equipment."
"The bandwidth monitoring functionality is one of the most important features for our customers. When the customer notices that their bandwidth usage is too high for some reason, they will use the traffic analysis within SolarWinds NTA to identify which protocols (e.g. HTTPS) or applications are using up the bandwidth."
"What I like about SolarWinds NetFlow Traffic Analyzer is that it's useful for analyzing traffic. It also has an application visibility feature that lets you control applications."
"It helps us know when a branch is down because it has a graphic presentation of all the locations a node represents."
"For managing the traffic, it provides you a response about whether the traffic is down, up, or heavy, which is a very powerful feature. It has a good response time. We have been using this solution for many years, and we don't have any problem with this solution."
"It would be helpful if the solution could scan faster when it comes to scanning attachments to emails."
"I'd like to see a wider solution that includes not only desktop devices but also other devices, such as servers, storage cabinets, switching equipment, et cetera."
"The licensing is a nightmare and has room for improvement."
"Because of the training model, Defender XDR's automatic response sometimes blocks legitimate users and activities. Also, the UI sometimes responds slowly."
"The logs could be better."
"This solution could be improved if it included features such as those offered by Malwarebytes."
"The support team is not competent or responsive."
"At times, when we have an incident email and we click on the link for that incident, it opens a pop-up, but there is nothing. It has happened a couple of times."
"The initial setup requires a high level of skill."
"When analyzing something, you have to click several times. It requires a lot of effort to find something."
"Its price could be improved. It is an expensive product. Its training is also too expensive. It would be great if they can have a better pricing scheme for the training."
"NetWitness Endpoint's blocking feature does not work properly - if there's a malicious process, it's not possible to kill it via a custom rule unless and until it's flagged as malicious."
"The solution lacks a reporting engine."
"This solution needs an upgrade in reporting. I have heard from RSA that they are working on this, but as of yet it is not available."
"I would like to see Security Orchestration and Response Automation (SOAR) integration."
"The integration of the solution needs to be improved. The dashboard needs lots of updates as well. In the next release, we would like to see advanced fraud detection features."
"I would like to see more training videos and additional material for learning how to use this solution."
"It's not a cheap product, so the pricing could be improved."
"What needs improvement in SolarWinds NetFlow Traffic Analyzer is performance because sometimes, my team struggles too much for the solution to perform correctly for a specific deployment in my organization. Having a more detailed view in SolarWinds NetFlow Traffic Analyzer is another area for improvement, but that's more part of the protocol than the actual solution."
"Technical support could be improved with quicker response times."
"There is room for improvement when it comes to the traffic generated by the analyzer and the analysis of that traffic."
"It does not flow. It cannot do our metric performance monitoring. So it is very limited. They can do it but in a very limited fashion. It is only good for SNMP-based alerts."
"I'm expecting to see a little bit more artificial intelligence and machine learning algorithms. They need a bit more sophistication in that."
"If your network is on SolarWinds, and you notice that the traffic is bad because it says "user downloading a heavy file," it doesn't indicate which endpoint is downloading those heavy files. SolarWinds doesn't have the tools to be able to handle this kind of situation. You can just notice through your network device that the traffic is becoming overwhelming or heavy, but you cannot go inside and get more details related to the endpoint where it is happening. We would like SolarWinds to be able to handle this kind of situation and even manage the traffic inside a network from the endpoint to the network device. These would be good enhancements. It is mostly stable. The problem comes only when we want to add another SolarWinds model. SolarWinds has so many models, and sometimes when we want to add other models on the platforms that are reserved for our firm, it freezes. When this happens, we have to create a new VM for that model."
More SolarWinds NetFlow Traffic Analyzer Pricing and Cost Advice →
NetWitness XDR is ranked 17th in Extended Detection and Response (XDR) with 15 reviews while SolarWinds NetFlow Traffic Analyzer is ranked 6th in Network Traffic Analysis (NTA) with 34 reviews. NetWitness XDR is rated 8.0, while SolarWinds NetFlow Traffic Analyzer is rated 7.6. The top reviewer of NetWitness XDR writes "Beneficial single unified dashboard, good native application integration, and high availability". On the other hand, the top reviewer of SolarWinds NetFlow Traffic Analyzer writes "Displays traffic visibility and efficient traffic flows". NetWitness XDR is most compared with Darktrace, ExtraHop Reveal(x), CrowdStrike Falcon, SentinelOne Singularity Complete and Microsoft Defender for Endpoint, whereas SolarWinds NetFlow Traffic Analyzer is most compared with ManageEngine NetFlow Analyzer, Cisco Secure Network Analytics, Zabbix, SolarWinds NPM and Darktrace.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.