Trend Micro Deep Discovery Inspector Archived Reviews (More than two years old)

Filter by:Reset all filters
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Vendor
Information Security Manager at a legal firm with 1,001-5,000 employees
Apr 15 2016

What is most valuable?

Ease of use, just connect to a span port on your core switch and you're ready to go. Of course, you will see a bunch of white noise, but the built-in auto tuning system does a great job of detecting legitimate services and devices on the… more»

How has it helped my organization?

DDi rapidly discovers C2 traffic and pinpoints the offenders, source and recipient. It also provides a set of eyes to keep track of suspicious lateral movements between nodes. The out of the box rule set does a great job of hunting down… more»

What needs improvement?

Not too much to complain about, really. There were a few instances where legitimate traffic (WPAD) was flagged as C2 communication. There were some challenges in white-listing it, which resulted in a bunch of alerts/noise.

Which solution did I use previously and why did I switch?

FireEye. Fire Eye is incredibly expensive, and requires multiple appliances which together, scan far less protocols than DDi. It also hasn't fared so well in terms of detection rates, in independent tests against competing products.

What other advice do I have?

Be sure to implement Trend's Control Manager module (free) for more flexible reporting, along with integration with other Trend products (strongly suggest using this along with Office Scan and Deep Discovery Endpoint Sensor, which is an EDR… more»

What is Trend Micro Deep Discovery Inspector?

Trend Micro Deep Discovery Inspector detects targeted attacks and targeted ransomware anywhere in your network. It provides 360 degrees of visibility by monitoring all network ports and protocols. A single Deep Discovery Inspector appliance monitors east-west traffic (also known as lateral movement) and north-south traffic. Deep Discovery Inspector uses XGen security, a blend of cross-generational techniques to ensure the highest detection rate, these techniques include: Web Filtering with URL reputation, Local network content correlated with comprehensive threat intelligence, Lateral movement detection, Behavioral analysis, Machine-learning optimized relevance pattern for detecting command-and-control (C&C) behavior and Custom sandbox analysis.
Trend Micro Deep Discovery Inspector customers
Allied Telesis, Atma Jaya Catholic University of Indonesia, Babou, Blekinge County Council, Delacour, Hiroshima Prefectural Government, Live Nation Entertainment Inc., Mazda Motor Logistics Europe, McGill University Health Centre, Mikuni Corporation, OKWAVE, Sinar Mas Land, SWICA, UTOC Corporation
BUYER'S GUIDE
Download our free Intrusion Detection and Prevention Software Report and find out what your peers are saying about Trend Micro, Darktrace, Cisco, and more!