• Home
  • Check Point IPS vs. Darktrace

Check Point IPS vs Darktrace comparison

Cancel
You must select at least 2 products to compare!
Check Point Software Technologies Logo
Check Point IPS
Read 46 Check Point IPS reviews
5,638 views|3,950 comparisons
100% willing to recommend
Darktrace Logo
Darktrace
Read 65 Darktrace reviews
10,358 views|6,061 comparisons
93% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Check Point IPS vs. Darktrace
May 2024
Executive Summary

We performed a comparison between Check Point IPS and Darktrace based on real PeerSpot user reviews.

Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Check Point IPS vs. Darktrace Report (Updated: May 2024).
Download the complete report
772,127 professionals have used our research since 2012.
Featured Review
Anonymous User
Customizable with good alerts and controls traffic well
With the introduction of this Check Point solution our company has significantly increased the level of perimeter security, once this was done we... Read more →
Luis KiambatA
Researched Check Point IPS but chose Darktrace: Great autonomous support, offers an easy setup, and has responsive support
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The Check Point IPS feature I find the most valuable is the firewall. It is great and easy to work with.""Its event analysis and centralization features are very important for any organization.""The number of the IPS protections is amazing - after the latest update I see more than 11000 in the SmartConsole.""IPS easily allows follow-up flags on recently updated patterns. If, in rare cases, a false positive does occur, it is quickly detected and an exception can be easily created.""The most valuable feature of the solution is called tunneling. Tunneling is one of the major security features that hackers cannot penetrate through.""Check Point offers DDoS and endpoint protection called EDR or XDR, so it provides a holistic security architecture for any organization.""The most valuable feature of Check Point IPS is the management of devices and policies.""Among its great features is the ability to detect outgoing malware or extraction of compromised data and stop it, thus safeguarding us by isolating the network, the equipment, or the identity of the affected users."

More Check Point IPS Pros →

"The initial setup is simple.""We have found the product to be stable and issue-free.""Technical support is helpful and responsive.""Darktrace is very flexible.""We are able to detect a lot of things, actually, and see what is happening in our network.""A very useful feature in Darktrace for real-time threat analysis is the packet inspection that analyzes the packet traffic in real time.""I find the complete portfolio to be excellent.""The most valuable feature of Darktrace and the most valuable feature is the artificial intelligence module because that is the tool that determines automatically if there is any risk or not in the network."

More Darktrace Pros →

Cons
"The only thing they could maybe improve is that we notice right away that the performance decreases when we enable the IPS, especially beyond the CPU and memory usage. If you want to enable the IPS and you have a lot of traffic, it can have an impact. The performance could be improved.""The hardware-based version of Check Point IPS could be more scalable. Right now, it's not scalable.""Sometimes Check Point documentation is not always updated, which is why when some implementations change, it generates confusion about details.""The service that we want to see in the future is a capacity to segment the IPS services by equipment.""Enhancements are necessary for the proficiency of notifications in the event of a Social Security incident, whether through email or alternative channels such as SMS.""There is a performance impact on the NGFW post-enabling the IPS blade/Module, which can even lead to downtime if IPS starts to monitor or block high-volume traffic.""It is generally good, but improving the performance would be the one thing I'd take a look at right now.""When exceptions need to be done for certain profiles, it is easy to get them done, however, implementation on some general ones may cause some extra work as the IPS is not easy to overwrite."

More Check Point IPS Cons →

"One thing I would like is for Darktrace to flag SMB traffic more accurately. Currently, it only flags that SMB traffic has occurred, but it doesn't specify which file was being transferred. This makes it difficult to investigate incidents involving SMB traffic, as we don't have concrete evidence of what was being sent.""One thing that I would like to look at going forward is to have a fully automated network infrastructure that is monitored automatically real-time, and that gives me this kind of capability where I would be able to look at my network at any given time and see the state of my network. With Darktrace, at the moment, I have to almost put in a date and tell them that want you to give me data from this date to this date. I don't want that. I want a fast solution in which it doesn't matter when I log into the application. Whenever I log in, I must be able to see my network and run a report. In other words, if I go in now and I say, "Give me a full report of what happened today, it must be able to give me that. It mustn't just be limited to a seven-day period, for argument's sake. It must be able to give me real-time and day-to-day tracking of what has happened within my network.""Darktrace is a closed technology, meaning we know very little about how it works, including the architecture, which is significant. As a result, when we implement the system and find we're getting many false positives, we have minimal insight into why it's happening and what we can do to fix it. We don't know how the solution is configured, the criteria for threats to be determined, or the product's inner workings. We understand that they have to ensure privacy and their copyright, but we want to see some documentation or public research into the security Darktrace provides.""Darktrace does not have any capabilities to configure.""This product needs more in terms of prevention. The detection capabilities work well but once a threat has been detected, Darktrace should work to prevent it from doing anything malicious.""A reporting portal could be a great addition to help customize reports.""The main portal needs improvement as it is difficult to use.""The pricing is a bit high for the region."

More Darktrace Cons →

Pricing and Cost Advice
  • "I think that the price of support is around $40,000 USD or $50,000 USD per year."
  • "The price of this product should be reduced."
  • "Enabling IPS does not require any additional license purchase from OEM, as it comes by default with the NGFW bundle."
  • "The pricing for Check Point IPS is competitive and brings good value for the money."
  • "The module has a considerable cost but you can save by purchasing a package with several modules instead of making a single purchase."
  • "Pricing for this solution is negotiable and I'm happy with our pricing."
  • "There is a license needed to use the Check Point IPS which is not expensive. However, the Check Point IPS device is expensive."
  • "You can pay for Check Point IPS yearly, or you can go with a three-year license. There's no extra cost apart from the standard licensing fee."

    • More Check Point IPS Pricing and Cost Advice →

  • "It is inexpensive considering what it can do and the competition."
  • "The pricing is a little high compared to the competition."
  • "Our customers feel that the price of Darktrace is quite high compared to other solutions."
  • "The pricing is very flexible for Darktrace. Sometimes, a customer does not have the appropriate budget, but Darktrace can handle that. They offer monthly payments, so the customer can acquire the solution very easily."
  • "When it comes to large installations, it can be expensive, but for small accounts it's fine."
  • "It is a very expensive product."
  • "It is expensive. I don't have the price for other competitors."
  • "This solution is expensive."

    • More Darktrace Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
    See Recommendations
    772,127 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Check Point IPS?
    Top Answer:The most valuable feature of the solution is called tunneling. Tunneling is one of the major security features that hackers cannot penetrate through.
    Read all 33 answers   →
    What is your experience regarding pricing and costs for Check Point IPS?
    Top Answer:I rate the product price an eight on a scale of one to ten, where one means it is very cheap and ten means it is very expensive. The product is expensive.
    Read all 23 answers   →
    What needs improvement with Check Point IPS?
    Top Answer:The area with certain shortcomings where improvements are required consist of support availability. The tool's complete operating system architecture is being designed in such a way that it looks a… more »
    Read all 32 answers   →
    How does Crowdstrike Falcon compare with Darktrace?
    Top Answer:Both of these products perform similarly and have many outstanding attributes CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a… more »
    Which is better - SentinelOne or Darktrace?
    Top Answer:Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is meant for smaller to medium-sized businesses. It is also a good option for… more »
    Read all 7 answers   →
    What do you like most about Darktrace?
    Top Answer:A very useful feature in Darktrace for real-time threat analysis is the packet inspection that analyzes the packet traffic in real time.
    Read all 44 answers   →
    Ranking
    3rd
    out of 42 in Intrusion Detection and Prevention Software (IDPS)
    Views
    5,638
    Comparisons
    3,950
    Reviews
    28
    Average Words per Review
    426
    Rating
    8.5
    1st
    out of 42 in Intrusion Detection and Prevention Software (IDPS)
    Views
    10,358
    Comparisons
    6,061
    Reviews
    29
    Average Words per Review
    403
    Rating
    8.3
    Comparisons
    Also Known As
    Check Point Intrusion Prevention System
    Learn More
    Check Point Software Technologies
    Darktrace
    Overview

    Check Point IPS is an intrusion prevention system that aims to detect and prevent attempts to exploit weaknesses in vulnerable systems or applications. The solution provides complete, integrated, next-generation firewall intrusion prevention capabilities at multi-gigabit speeds with a low false positive rate and high security. It helps organizations secure their enterprise network, and protect servers and critical data against known and unknown automated malware, blended threats, and other threats.

    Check Point IPS Features

    Check Point IPS has many valuable key features. Some of the most useful ones include:

    • Real-time protections: IPS is constantly updated with new defenses against emerging threats. Because the solution’s IPS protections are pre-emptive, it provides organizations with defenses before exploits are created or vulnerabilities are even discovered.
    • Virtual patching: The solution combines robust IPS functionality with a concerted patching strategy, allowing network administrators to secure networks between upgrades and patches.
    • Flexible deployment: Check Point IPS was designed to be deployed easily and efficiently.
    • 360 visibility and reporting: To help users achieve an unmatched level of visibility that detects and prevents threats, Check Point IPS integrates with SmartEvent, enabling security operations center (SOC) staff to respond to high-priority events first.

    Check Point IPS Benefits

    There are many benefits to implementing Check Point IPS. Some of the biggest advantages the solution offers include:

    • Efficient: Check Point IPS includes acceleration technologies that let you safely enable IPS. Additionally, its low false positive rate can save a lot of time.
    • Secure: The solution delivers thousands of signature and behavioral preemptive protections, making it a very secure tool.
    • Unified: With Check Point IPS, users can Enable IPS on any Check Point security gateway, thereby reducing Total Cost of Ownership (TCO).

    Reviews from Real Users

    Check Point IPS is a solution that stands out when compared to many of its competitors. Some of its major advantages are that it has granularity capabilities for rule creation, quick updates of signatures, and a helpful mechanism that allows users to turn IPS signatures to a different mode automatically.

    A System and Network Administrator at Auriga mentions, “The Check Point IPS module allows me granularity in creating rules. I can specify which definition to apply and to which scope or network.” The reviewer also adds, “I can create multiple profiles, which is helpful.”

    “The quick updates of the signatures when a new threat is identified are great. For instance, when Microsoft releases patches, we usually see new signatures for those issues that have to be patched in a day. This gives us time to test/deploy the patches while already being protected from the threats. Also, it's very good with reporting. I can generate reports for management automatically based on the threats of the last day/week/whatever is needed,” says a Systems en networks engineer at CB.

    Another PeerSpot user, a Network Engineer at VSP Vision Care, writes, “The mechanism where you can let the system automatically turn the IPS signature to a different mode (prevent / monitor / inactive) is a nice feature that allows us to easily adjust the balance between security protection and the risk of business impact.”

    Darktrace is a leading cybersecurity solution that leverages artificial intelligence and machine learning to provide advanced threat detection, response, and risk management capabilities. Many reviewers find Darktrace's AI and machine-learning capabilities to be valuable. They appreciate its ability to detect anomalies and threats that might go unnoticed by traditional security tools. Overall, the general sentiment towards Darktrace from reviewers is positive. Users seem to appreciate its scalability, stability, AI capabilities, visibility, and ease of use.

    Darktrace offers a proactive and intelligent approach to cybersecurity. It utilizes AI algorithms to learn and understand the 'pattern of life' for every user and device within a network. This understanding enables it to detect anomalies that could signify a cyber threat, from subtle insider threats to more obvious ransomware attacks.

    Its adaptability, autonomous response features, and comprehensive network visibility make it a top-tier solution for different sizes of organizations and across many industries. It was named one of TIME magazine’s ‘Most Influential Companies’ in 2021 and protects over 8,800 organizations globally from advanced cyber threats.

    Darktrace Cyber AI Loop

    The Darktrace Cyber AI Loop introduces an advanced artificial intelligence-based system for cybersecurity, designed to build a self-improving defense mechanism. This system functions like a closed loop, where each stage feeds information and insights into the next, amplifying the overall effectiveness of the platform.

    The key components of the loop are:

    • DETECT - An AI engine that monitors your network and endpoints for anomalous activity, constantly learning the normal behavior of your users and devices. It identifies suspicious patterns and potential threats in real-time, even from never-before-seen attacks.
    • PREVENT - This proactive arm analyzes vulnerabilities and identifies weaknesses in your IT infrastructure. It prioritizes patching and configuration changes to harden defenses before attackers can exploit those vulnerabilities.
    • RESPOND - When DETECT identifies a threat, RESPOND takes immediate action to contain and neutralize it. This can involve isolating compromised devices, disrupting attacker activity, and automatically escalating critical incidents to human analysts.
    • HEAL - This newest addition to the loop focuses on post-incident recovery. It automatically restores compromised systems, cleans infected files, and helps to prevent the attack from spreading further.

    Darktrace's AI algorithms can identify threats that traditional security tools might miss. It continuously learns and updates its understanding of what is normal for each environment, ensuring that it can quickly detect and respond to unusual activities that could indicate a breach. Darktrace's Antigena module can autonomously respond to threats in real time. This is particularly crucial in containing fast-moving threats like ransomware, where every second counts. 

      Darktrace's solution provides unparalleled visibility into all parts of the network, including cloud services, IoT devices, and industrial control systems. This comprehensive coverage ensures that no part of the network is left unprotected. However, while the Darktrace Cyber AI Loop offers a robust solution, it is not a complete cure-all and requires careful implementation and integration with existing security frameworks.Darktrace offers a comprehensive and unified approach to cybersecurity. It provides continuous protection against known and unknown threats, regardless of where they emerge. Darktrace's solutions provide visibility into your cloud infrastructure, continuous monitoring of application usage and communication patterns (e.g., identification of suspicious actions like unauthorized data access), comprehensive email security that goes beyond traditional spam and phishing filters, real-time protection for endpoints, and continuous monitoring of network traffic and device activity.

      Darktrace also provides specialized coverage to secure your zero-trust architecture. Identifies compromised identities, unauthorized access attempts, and risky data exfiltration within a least-privilege environment. Finally, it has a dedicated solution for safeguarding industrial control systems and critical infrastructure. Monitors communication patterns, device behavior, and physical access within OT environments, protecting against operational disruptions and cyberattacks.

      Sample Customers
      Morton Salt, Medical Advocacy and Outreach, BH Telecom, Lightbeam Health Solutions, X by Orange, Cadence, Nihondentsu, Datastream Connexion, Good Sam, Omnyway, FIASA, Pacific Life, Banco del Pacifico, Control Southern, Xero, Centrify
      Irwin Mitchell, Open Energi, Wellcome Trust, FirstGroup plc, Virgin Trains, Drax, QUI! Group, DNK, CreaCard, Macrosynergy, Sisley, William Hill plc, Toyota Canada, Royal British Legion, Vitol, Allianz, KKR, AIRBUS, dpd, Billabong, Mclaren Group.
      Top Industries
      REVIEWERS
      Security Firm21%
      Computer Software Company15%
      Financial Services Firm13%
      Government10%
      VISITORS READING REVIEWS
      Computer Software Company16%
      Comms Service Provider9%
      Financial Services Firm8%
      Government7%
      REVIEWERS
      Financial Services Firm19%
      Computer Software Company13%
      Healthcare Company6%
      Manufacturing Company6%
      VISITORS READING REVIEWS
      Computer Software Company16%
      Financial Services Firm8%
      Government7%
      Manufacturing Company7%
      Company Size
      REVIEWERS
      Small Business43%
      Midsize Enterprise25%
      Large Enterprise32%
      VISITORS READING REVIEWS
      Small Business27%
      Midsize Enterprise19%
      Large Enterprise54%
      REVIEWERS
      Small Business50%
      Midsize Enterprise20%
      Large Enterprise30%
      VISITORS READING REVIEWS
      Small Business30%
      Midsize Enterprise19%
      Large Enterprise51%
      Buyer's Guide
      Check Point IPS vs. Darktrace
      May 2024
      Free Report: Check Point IPS vs. Darktrace
      Find out what your peers are saying about Check Point IPS vs. Darktrace and other solutions. Updated: May 2024.
      DOWNLOAD NOW
      772,127 professionals have used our research since 2012.

      Check Point IPS is ranked 3rd in Intrusion Detection and Prevention Software (IDPS) with 46 reviews while Darktrace is ranked 1st in Intrusion Detection and Prevention Software (IDPS) with 65 reviews. Check Point IPS is rated 8.6, while Darktrace is rated 8.2. The top reviewer of Check Point IPS writes "Great for detection and access with the capabilities of defining specific rules". On the other hand, the top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". Check Point IPS is most compared with Palo Alto Networks URL Filtering with PAN-DB, Palo Alto Networks Advanced Threat Prevention, Trend Micro TippingPoint Threat Protection System, Cisco NGIPS and Fortinet FortiGate IPS, whereas Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and Corelight. See our Check Point IPS vs. Darktrace report.

      See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.

      We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.