RSA NetWitness Network Overview

RSA NetWitness Network is the #6 ranked solution in our list of top Network Detection and Response (NDR) tools. It is most often compared to ExtraHop Reveal(x): RSA NetWitness Network vs ExtraHop Reveal(x)

What is RSA NetWitness Network?

RSA NetWitness® Network exposes network data to enhance a security
team’s capabilities to detect and respond to today’s advanced threats. RSA
NetWitness Network provides immediate deep visibility for rapid detection,
efficient investigation and forensics, in order to reduce dwell time. With
unparalleled speed for real-time behavior analytics, RSA patented technology
accelerates detection and investigation of threats as they traverse your
network. RSA NetWitness Network provides real-time visibility into all your
network traffic—on premises, in the cloud and across virtual environments.
RSA NetWitness Network enables threat hunting with streamlined workflows
and integrated, automated investigation tools that analysts use to hunt
and monitor the timing and movements of threat actors. Through a unique
combination of behavioral analytics, data science techniques and threat
intelligence, RSA NetWitness Network detects known and unknown attacks
that put organizations at risk.

RSA NetWitness Network Buyer's Guide

Download the RSA NetWitness Network Buyer's Guide including reviews and more. Updated: December 2020

RSA NetWitness Network Customers
Busan Bank, Banorte Bank, Eastern Bank
RSA NetWitness Network Video

RSA NetWitness Network Reviews

Filter by:
Filter Reviews
Filter Unavailable
Company Size
Filter Unavailable
Job Level
Filter Unavailable
Filter Unavailable
Filter Unavailable
Order by:
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Showingreviews based on the current filters. Reset all filters
CEO & Founder at a tech services company with 1-10 employees
Real User
Top 10
Feb 4, 2020
A stable solution that captures traffic with detailed communication logs

What is our primary use case?

We are using this solution as a network forensic tool with other security devices such as IPS and SIEM.

Pros and Cons

  • "The most valuable feature is the way it captures the traffic, and it contains every detail of the communication."
  • "When analyzing something, you have to click several times. It requires a lot of effort to find something."

What other advice do I have?

Architects love to use this tool, but the analysis is very complex, which is the point of NetWitness Network. It's not the best, but it's good. The analytics is probably a ten but because it is complex, but overall, I would rate this solution an eight out of ten.