We performed a comparison between NetWitness XDR and SolarWinds NetFlow Traffic Analyzer based on real PeerSpot user reviews.
Find out what your peers are saying about CrowdStrike, SentinelOne, Wazuh and others in Extended Detection and Response (XDR)."The most valuable features are spam filtering, attachment filtering, and antivirus protection."
"Microsoft 365 Defender's most valuable feature is the ability to control the shadow IP."
"I like the easy integration and advanced possibilities. We can implement it at customer sites in a few clicks, but we can also dive deep and drill down to extended features. There's a very good starting point to get into this product and all the features from Defender."
"Microsoft Defender's most critical component is its CASB solution. It has many built-in policies that can improve your organization's cloud security posture. It's effective regardless of where your users are, which is critical because most users are working from home. It's cloud-based, so nothing is on-premise."
"It's a very scalable tool that can be used in a very small environment or in a very large environment. Everything can be managed from a simple dashboard and can be scaled up or down depending on the customer's environment."
"The most valuable features of Microsoft 365 Defender are the combination of all the capabilities and centralized management."
"The most valuable feature of the solution stems from the fact that Microsoft Defender XDR is easy to integrate with other Microsoft platforms or products."
"The timeline feature is excellent. I also like the phishing simulation. We have phishing campaigns to educate employees and warn them about these threats."
"It's a scalable solution. We have around five to eight customers using RSA NetWitness Endpoint, and we hope to increase the number of users."
"This solution allows us to locate the malware in real-time."
"The most valuable feature of RSA NetWitness Network is the single unified dashboard from which you can manage all the different products of RSA. Additionally, the integration with native applications is good."
"We've contacted technical support several times. They've been very good. They have been able to help us resolve our issues."
"Ability to isolate the machine when there are malicious files."
"They have recently updated the features and the most valuable ones are the instant threat response, ease of use, web interface, integration, and easy access. RSA NetWitness Endpoint is very compatible with other solutions and technologies. However, they do not rely on third-party solutions and have most features built-in."
"The most valuable feature is the way it captures the traffic, and it contains every detail of the communication."
"RSA NetWitness does market analysis in a more granular form. It gives you full visibility."
"As it offers enterprise solutions, it has all the essential features for business."
"What I like about SolarWinds NetFlow Traffic Analyzer is that it's useful for analyzing traffic. It also has an application visibility feature that lets you control applications."
"NTA's most valuable feature is traffic analysis and visibility."
"This solution gives us important information about the utilization of protocols, particularly in terms of how often they are used."
"It is great at telling you if your devices are working and it keeps an eye on your network's overall performance."
"The dashboard alerts me when a critical device goes off the network."
"With SolarWinds, we are now able to accurately gauge bandwidth consumption."
"I like that it is able to monitor multiple devices and it's vendor-agnostic."
"It would be helpful if the solution could scan faster when it comes to scanning attachments to emails."
"Defender XDR could provide recommendations for threat-hunting queries. Some people do not know how to write an advanced threat query, so we need to spend time training them."
"Just like in any solution, the price can always be cheaper."
"A simple dashboard without having to use MS Sentinel would be a welcome improvement."
"Support is hit or miss. Microsoft wants you to buy premium support contracts. Though they call themselves professional support, it's almost like throwing questions into a black hole. You get an answer, but it's never helpful."
"The mobile app support for Android and iOS is difficult and needs improvement."
"Automated playbooks and automated dashboards would be preferable to the way the data is currently being presented."
"The documentation on their website is somewhat outdated and doesn't show properly. I wanted to try a query in Microsoft Defender 365. When I opened the related documentation from the security blog on the Microsoft website, the figures were not showing. It was difficult to understand the article without having the figures. The figures were there in the article, but they were not getting loaded, which made the article obsolete."
"RSA NetWitness Network could improve on integration with non-native application integration."
"NetWitness Endpoint's blocking feature does not work properly - if there's a malicious process, it's not possible to kill it via a custom rule unless and until it's flagged as malicious."
"The integration of the solution needs to be improved. The dashboard needs lots of updates as well. In the next release, we would like to see advanced fraud detection features."
"We would like to see the hunting and investigation features of this solution improved, in order to provide better visibility of issues."
"The solution is modular, for example you can buy the RSA ePack, which you buy as a module is not part of the conduit solution. They could include it and have it as an all-in-one solution."
"Threat detection could be better."
"The contamination feature could be improved."
"Its price could be improved. It is an expensive product. Its training is also too expensive. It would be great if they can have a better pricing scheme for the training."
"There are some areas for improvement in SolarWinds NetFlow Traffic Analyzer. There are some challenges with the solution when compared to other monitoring tools such as difficulty in operations and difficulty with backup installation. My team is currently trying out different solutions but would need to see how it goes."
"The solution needs better log management and log coordination with tools."
"The problem is that SolarWinds is trying to bolt in too much and that can leave bugs, which you have to then sort out, leaving the product unstable. SolarWinds needs to try and slow down and improve the stability of the product, as opposed to bringing out more and more features."
"One area that we struggle with is the price. Because the price of this solution is so high, we are largely unable to introduce it into the local market, and only the banking sector has the means to afford it."
"There is room for improvement when it comes to the traffic generated by the analyzer and the analysis of that traffic."
"I would like to see better customization capabilities."
"The licensing should be more realistic so that we can adjust the number of nodes according to my needs, rather than in fixed increments."
"Customer Support is quite complex."
More SolarWinds NetFlow Traffic Analyzer Pricing and Cost Advice →
NetWitness XDR is ranked 17th in Extended Detection and Response (XDR) with 15 reviews while SolarWinds NetFlow Traffic Analyzer is ranked 6th in Network Traffic Analysis (NTA) with 34 reviews. NetWitness XDR is rated 8.0, while SolarWinds NetFlow Traffic Analyzer is rated 7.6. The top reviewer of NetWitness XDR writes "Beneficial single unified dashboard, good native application integration, and high availability". On the other hand, the top reviewer of SolarWinds NetFlow Traffic Analyzer writes "Displays traffic visibility and efficient traffic flows". NetWitness XDR is most compared with Darktrace, ExtraHop Reveal(x), CrowdStrike Falcon, SentinelOne Singularity Complete and Vectra AI, whereas SolarWinds NetFlow Traffic Analyzer is most compared with Zabbix, Cisco Secure Network Analytics, ManageEngine NetFlow Analyzer, SolarWinds NPM and Darktrace.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
