We just raised a $30M Series A: Read our story
2021-09-26T12:14:00Z

Which is better - SentinelOne or Darktrace?

56

Why?

ITCS user
Guest
44 Answers

author avatar
Vendor

You should not compare SentinelOne to Darktrace - they solve completely different problems. These types of questions show the ongoing challenges in cybersecurity. As written below, SentinelOne is an Endpoint Detection and Response tool. It is to protect a laptop or workstation from an attack. EDR is a core requirement for cyber defense.


Darktrace is a network detection and response tool. NDR tools detect attacks occurring against the network. NDR is also a core requirement for cyber defense.


Regardless of the quality of either tool, you need to cover both your endpoint and your network. So if you decide one is better and choose it, you remain vulnerable to attack. 


Cover your endpoint only, and I am going to hit you with an attack on your network. Cover your network only, and I will get you via an endpoint.


EDR tools - SentinelOne, Cybereason, CrowdStrike, Carbon Black to name a few.


NDR tools - Darktrace, Vectra, ExtraHop, Cyglass to name a few.


Comparisons of these tools by category would be more valuable.

2021-11-08T22:33:58Z
author avatar
Top 5LeaderboardReal User

An easy answer for me - pretty much exactly what @Janet Staver described. 


DT was a good east-west network traffic tool that could tell you all about communications between systems (think NDR) but limited capacity, expensive boxes, that we outgrew. 


S1 is an endpoint tool with deep inspection, a central console, and is cost-effective.

2021-11-05T12:39:04Z
author avatar
Top 20Vendor

Both @Janet Staver ​and @ITSecuri7cfd are spot on.  


As a security vendor, like ITSecuri7cfd points out, one tool is for the endpoint and one tool is for the network side.  


If you looking for an EDR tool, you should look to compare solutions from Carbon Black, Crowdstrike, etc.  


As for Darktrace, they are classified as an NDR tool. Within the NDR market, there are essentially 2 types of solutions; tools for smaller organizations that have limited resources and tools that are designed for organizations that have SOC teams that need better visibility and data. 


If you want to learn more about NDR solutions in general we have written an ebook called "What to look for in an NDR platform": https://bricata.com/wp-content...

2021-11-08T13:54:05Z
Find out what your peers are saying about CrowdStrike, SentinelOne, Microsoft and others in Endpoint Protection for Business (EPP). Updated: November 2021.
554,586 professionals have used our research since 2012.