We just raised a $30M Series A: Read our story

LMNTRIX Active Defense OverviewUNIXBusinessApplication

LMNTRIX Active Defense is the #8 ranked solution in our list of MDR Services. It is most often compared to CrowdStrike Falcon Complete: LMNTRIX Active Defense vs CrowdStrike Falcon Complete

What is LMNTRIX Active Defense?

LMNTRIX has reimagined cybersecurity, turning the tables in favor of the defenders once again. We have cut out the bloat of SIEM, log analysis, false positives and associated alert fatigue and we created new methods for confounding even the most advanced attackers. We combine deep expertise with cutting-edge technology, leading intelligence, and advanced analytics to detect and investigate threats with great speed, accuracy, and focus. We believe that in a time of continuous compromise you need continuous response – not incident response. Our approach turns inward and assumes that you’re already breached and that you’re continually going to be breached, so we take a pro-active, offensive, hunting, adversarial pursuit stance as opposed to a reactive, defensive, legacy stance with analysts staring at a SIEM console wishing they could detect an APT.

LMNTRIX Active Defense is a best in class Managed Detection & Response (MDR) service that detects and responds to advanced threats that bypass perimeter controls. The outcomes we deliver clients are validated breaches that are investigated, contained and remediated. All incidents are aligned to the kill chain and Mitre ATT&CK frameworks and contain detailed investigative actions and recommendations that your organisation follows to protect against the unknown, insider threat and malicious attacker.

We are a partner which becomes an extension of your internal team, can augment your MSSP, or be a full-service SOC as a service security solution.

Active Defense is made up of 3 elements:

LMNTRIX GRID (XDR) – This is our cyber defence SaaS platform that provides a new utility model for enterprise security, delivering pervasive visibility, automated threat detection & prevention, threat hunting, investigation, validation and unlimited forensic exploration on-demand and entirely from the cloud. It is a single investigative platform for insights into threats on enterprise, cloud, hybrid, and industrial control systems (ICS) networks. The LMNTRIX Grid delivers unique advantages over current network security solutions. It is a holistic and multi-vector platform with unlimited retention window of full-fidelity network traffic, innovative security visualizations, and the ease and cost-savings of an on-demand deployment model.

LMNTRIX Technology Stack –This is our powerful proprietary threat detection stack that is deployed onsite, behind existing controls. It’s made up of network sensors, endpoint agents and deceptions everywhere. It combines multiple threat detection systems, with deception everywhere, machine learning, threat intel, correlation, static file analysis, heuristics, and behavior and anomaly detection techniques to find threats in real-time. It decreases alarm fatigue by automatically determining which alerts should be elevated to security events, and reduces false positives by requiring consensus across detection.

LMNTRIX Cyber Defense Centers - While these technologies are without peer, what sets us apart from the pack is our team of cybersecurity professionals who continually monitor our clients environments 24x7 while simultaneously hunting threats internally as well as monitoring developments on the deep and dark web. Our CDC's are a global network of cyber defense centers with highly trained and certified intrusion analysts who provide constant vigilance and on-demand analysis of your networks. Our intrusion analysts monitor your networks and endpoints 24x7, applying the latest intelligence and proprietary methodologies to look for signs of compromise. When a potential compromise is detected, the team performs an in- depth analysis on affected systems to confirm the breach. When data theft or lateral movement is imminent, our automated perimeter containment blocks attackers in their tracks while endpoint containment feature makes immediate reaction possible by quarantining affected hosts, whether they are on or off your corporate network, significantly reducing or eliminating the consequences of a breach.

LMNTRIX Active Defense Buyer's Guide

Download the LMNTRIX Active Defense Buyer's Guide including reviews and more. Updated: October 2021

LMNTRIX Active Defense Customers

Alliance Funding Group (AFG) - USA

Kestrel Coal - Australia

Success Resources - Malaysia

LMNTRIX Active Defense Video

Pricing Advice

What users are saying about LMNTRIX Active Defense pricing:
  • "The cost is going to be a little higher than traditional endpoint protection, but you are getting the 24/7 monitoring and validation by highly skilled analysts and that makes it worth it."
  • "The pricing and ease of install are great!"
  • "It's not the cheapest solution, but you certainly get what you paid for."

LMNTRIX Active Defense Reviews

Filter by:
Filter Reviews
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
reviewer1478019
Systems Manager at ABQ Water Utility Authority
Real User
Top 5
Knowledgeable staff help with threat validation, minimizing false positives while keeping us secure

Pros and Cons

  • "The fact that it's constantly hunting, looking for anomalies, and can evict without any intervention is really incredible."
  • "In the beginning, we were having issues with the LMNTRIX respond agent not playing nice with Cisco AMP."

What is our primary use case?

Originally, we were looking for endpoint protection for our workstations as well as our servers. The fact that endpoints would be monitored 24/7 with the Respond agent, and that each threat is being verified, is what really sold it for us.

We have since expanded to include detection and hunt in our environments, and that really helps to protect us from an attack. We have since expanded to include our SCADA environments to make sure those are also protected at the same level.

We are extremely satisfied customers.

How has it helped my organization?

Having all incidents validated and monitored 24/7 has helped to improve the way we function. Knowing that our company is being protected by extremely skilled and knowledgeable analysts around the clock really gives us peace of mind.

At any time, we can reach out to them for assistance in validating threats or help with any forensics that we may need. Having the ability to expand our footprint to include our SCADA environments has really proven to be a great addition.

Our OT counterparts have been extremely grateful that we were able to include them and their endpoints.

What is most valuable?

I would say that fact that incidents are validated before we are notified is the most valuable feature. This really keeps the number of false positives to zero.

Hunt has also been great. The fact that it's constantly hunting, looking for anomalies, and can evict without any intervention is really incredible.

Not necessarily a feature, but I would like to include their staff as valuable. Finding security analysts that are this knowledgeable, is not very easy. Knowing that these analysts are looking over our environments really helps us all sleep a little better at night.

What needs improvement?

In the beginning, we were having issues with the LMNTRIX respond agent not playing nice with Cisco AMP. We had PCs that were crashing because resources would peg and the box would be unusable.

We understood that running both endpoint protections was not the best thing to do, but we went through the exercise anyway. We wanted to verify that it was working as well as promised before removing Cisco AMP from our PCs. After much testing, we were thoroughly convinced that it was a superior product for us and what we needed. 

For how long have I used the solution?

We have been an LMNTRIX customer for about two years.

In those two years, we have expanded the products we are using, as well as implementing them in more environments.

What do I think about the stability of the solution?

The product has been very stable. We are able to run our Server endpoint protection first in detect mode so that we can correctly whitelist what we need without breaking anything.  Once we are ready, we can change to protect mode which then starts blocking threats.

What do I think about the scalability of the solution?

This solution is easily scalable. We started out small and added both products and additional endpoints in several environments without issue.

How are customer service and technical support?

Customer service has been outstanding. We have a monthly check-in call with their team to make sure everything is working well and to discuss any incidents that were found in the last month.

Which solution did I use previously and why did I switch?

We were using Cisco AMP on all of our endpoints. AMP worked very well, but we weren't getting the 24/7 monitoring and validation that we were looking for.

How was the initial setup?

Setup is extremely simple. We are able to push out the respond-agent to endpoints using SCCM. Hunt and Decoys come as OVAs that easily deployed in our virtual environments.

Overall, the initial setup was very straightforward. The LMNTRIX engineers worked with us to make sure the setup went smoothly.

What about the implementation team?

We went through a VAR. When we implemented, we used the VAR's, LMNTRIX, and our engineers to make sure we were fully covered.

What was our ROI?

Our ROI is hard to say, although I do know that our investment is much cheaper than a security breach. Being that we are providing drinking water to customers, we need to take every precaution to keep all systems safe.

What's my experience with pricing, setup cost, and licensing?

The cost is going to be a little higher than traditional endpoint protection, but you are getting the 24/7 monitoring and validation by highly skilled analysts and that makes it worth it.

Which other solutions did I evaluate?

We had previously looked at Sophos, Trend Micro, Cylance, and the endpoint protection from Palo Alto.

What other advice do I have?

For companies like us that couldn't afford to setup and staff a 24/7 SOC, LMNTRIX is the perfect solution.  Have them setup a proof of concept and show you want it can do for you.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Henry Danielson
Director of Tech at a non-tech company with 201-500 employees
Real User
Top 5
Easy to install, nice dashboard, and responsive technical support who care about the customer

Pros and Cons

  • "Automatic alerts from staying current with the threat landscape have helped us stay safe."
  • "The next release might include a monthly newsletter."

What is our primary use case?

Our primary use is protecting our network and end-users.

I also use this as a ready-to-go solution in case we are attacked! The team at LMNTRIX is on point and always goes beyond its capabilities and support. I always tell my peers about them and how amazing their response team is, as well as the stellar monitoring they have on board.

I highly recommend them to anyone!

Also, their attention to detail and personal care skills are out of this world. They really care about what they do! We also use this product to stay ahead of what is going on and to be ready if an attack occurs.

How has it helped my organization?

The Adaptive Threat Response has helped our staff and leadership understand the importance of having this solution in place. We have been hit with small ransomware exploits and other attacks.

The team and the Adaptive Threat Response has helped us grow and be ready for threats. They are amazing and always immediately responsive. There is no waiting for a callback. Their knowledge and expertise are paramount to keeping us safe!

What is most valuable?

Automatic alerts from staying current with the threat landscape have helped us stay safe. These help me be ready to implement changes on the fly.

I also rely on their knowledge base emails and I can always ask them anything. They are receptive and know their stuff! Calling the team and asking questions or getting support has been wonderful. The understanding of threats and how to remediate them has been a huge component of keeping us safe.

More valuable features are the easy installation of the product and the use of the dashboard.

What needs improvement?

The next release might include a monthly newsletter.

For how long have I used the solution?

We have been using LMNTRIX Adaptive Threat Response for three years.

What do I think about the stability of the solution?

The stability is great. They are always on the bleeding edge and their team and solution are on point with this ever changing industry. 

What do I think about the scalability of the solution?

The scalability is easily managed and it can support what you have.

How are customer service and technical support?

Customer service is stellar and they really care about their customers. They are also very responsive! I can call anytime and get someone's support and advice. I feel our organization is protected by LMNTRIX!

I simply love their support and guidance! The team is amazing!

Which solution did I use previously and why did I switch?

We did not use another solution prior to this one. We needed something and we found the team amazing!

How was the initial setup?

The initial setup was straightforward. It was easy and completed in less than two days.

Overall, it is easy to navigate and deploy.

What about the implementation team?

The vendor team and my team were involved. The level of expertise exceeded all my expectations.

What was our ROI?

My ROI has been invaluable. They have protected my network and helped me learn and grow. I cannot put a price on its worth to us.

What's my experience with pricing, setup cost, and licensing?

It is the perfect solution and I highly recommend trying them out.

The pricing and ease of install are great!

Which other solutions did I evaluate?

We evaluated the FireEye Managed Defense product.

What other advice do I have?

LMNTRIX is amazing. I would hire them now they will not disappoint!

I don't have any suggestions at this time, as the product is stellar and their attention to detail is amazing. The personal attention and the software help to detect problems and monitor our network.

They have been around a while and their knowledge and expertise are stellar!

My only suggestion is for someone who has not tried them to give them a shot.

When looking at improvements sometimes you are happy with the provider and you don't know what could be improved.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Learn what your peers think about LMNTRIX Active Defense. Get advice and tips from experienced pros sharing their opinions. Updated: October 2021.
541,108 professionals have used our research since 2012.
reviewer1475763
Chief Information Security Officer at Albuquerque Bernalillo County Water Utility Authority
Real User
Top 10
Saves us money, it is simple to install, and helps us focus on what is important

Pros and Cons

  • "LMNTRIX first validates incidents before alerting us of the activity, so we're not inundated with false positives."
  • "The portal is still a bit buggy, although it's new and still being refined."

What is our primary use case?

We wanted 24/7 Incident validation and response, but without paying the hefty costs to run and staff a 24/7 SOC. Finding knowledgeable security analysts is not an easy task.

LMNTRIX gives us peace of mind knowing that their highly skilled staff is looking over our enterprise, even at 3 am. When an issue does occur, we have been able to contact them and quickly receive assistance with validation, hunting, forensics, etc., by an entire team of highly skilled and knowledgable security experts.

How has it helped my organization?

This product has greatly reduced the amount of noise.

We have a very small security team, so this solution allows us to focus on what's important.  They have been extremely helpful and knowledgeable when an incident does occur.

Maintaining a 24/7 SOC is extremely cost-prohibitive. LMNTRIX makes this possible for a fraction of the cost. I have no regrets about standardizing on LMNTRIX as our endpoint protection agent. Their vast portfolio of services makes it easy to protect the entire enterprise.

What is most valuable?

I have found their 24/7 Incident Validation and Response to be the most valuable. This allows for less fire fighting and more of a proactive response to cybersecurity within our organization.

LMNTRIX first validates incidents before alerting us of the activity, so we're not inundated with false positives. The response time has also been quite impressive. There have been times that my staff is notified that my machine was performing tests before I even have a chance to notify them of my activities.

I'm very pleased with the visibility that the portal provides. You can quickly see what machines are active/inactive, what version of the agent they are running, etc. Incidents, decoys, etc., are also all visible from the grid portal. I'm sure it will only continue to improve as LMNTRIX further refines it and adds new functionality and reporting.  

What needs improvement?

The portal is still a bit buggy, although it's new and still being refined. There have been numerous enhancements made to the portal since it's released back in July.

For how long have I used the solution?

We have been using LMNTRIX Adaptive Threat Response for more than two years.

What do I think about the stability of the solution?

This product is very stable.

What do I think about the scalability of the solution?

This is a highly scalable product.

How are customer service and technical support?

The technical support is outstanding and has very fast response times.

Which solution did I use previously and why did I switch?

We used another product before this, but there was too much noise and a lack of response.

How was the initial setup?

This product is a very simple install.

What about the implementation team?

LMNTRIX and our own personnel implemented the solution.

What was our ROI?

This has easily paid for itself by providing 24/7 SOC services at a fraction of the cost. 

What's my experience with pricing, setup cost, and licensing?

It's not the cheapest solution, but you certainly get what you paid for. 

Which other solutions did I evaluate?

We did not evaluate other options.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free LMNTRIX Active Defense Report and get advice and tips from experienced pros sharing their opinions.