AWS CloudTrail vs. Mandiant Advantage Attack Surface Management

AWS CloudTrail

Mandiant Advantage Attack Surface Management

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
AWS CloudTrail	Score 9.0 out of 10	N/A	AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history of AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource change tracking,…	N/A
Mandiant Advantage Attack Surface Management	Score 9.0 out of 10	Enterprise companies (1,001+ employees)	Since 2004, Mandiant has been a partner to security-conscious organizations. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.	N/A

Pricing

AWS CloudTrail

Mandiant Advantage Attack Surface Management

Editions & Modules

No answers on this topic

Offerings

Pricing Offerings
AWS CloudTrail	Mandiant Advantage Attack Surface Management
Free Trial
Yes	Yes
Free/Freemium Version
Yes	Yes
Premium Consulting/Integration Services
Yes	Yes

Entry-level Setup Fee

No setup fee

Required

Additional Details

You can view, filter, and download the most recent 90 days of your account activity for all management events in supported AWS services free of charge. You can set up a trail that delivers a single copy of management events in each region free of charge. Once a CloudTrail trail is set up, Amazon S3 charges apply based on your usage. You will be charged for any data events or additional copies of management events recorded in that region. In addition, you can choose CloudTrail Insights by enabling Insights events in your trails. CloudTrail Insights analyzes write management events, and you are charged based on the number of events that are analyzed in that region.

—

More Pricing Information

Community Pulse
	AWS CloudTrail	Mandiant Advantage Attack Surface Management

Features

AWS CloudTrail

Mandiant Advantage Attack Surface Management

Threat Intelligence

Comparison of Threat Intelligence features of Product A and Product B
	AWS CloudTrail - Ratings	Mandiant Advantage Attack Surface Management 7.7 1 Ratings 4% below category average
Network Analytics	00 Ratings	8.21 Ratings
Threat Recognition	00 Ratings	7.31 Ratings
Vulnerability Classification	00 Ratings	7.31 Ratings
Automated Alerts and Reporting	00 Ratings	8.21 Ratings
Threat Analysis	00 Ratings	8.21 Ratings
Threat Intelligence Reporting	00 Ratings	6.41 Ratings
Automated Threat Identification	00 Ratings	8.21 Ratings

Vulnerability Management Tools

Comparison of Vulnerability Management Tools features of Product A and Product B
	AWS CloudTrail - Ratings	Mandiant Advantage Attack Surface Management 7.6 1 Ratings 8% below category average
IT Asset Realization	00 Ratings	8.21 Ratings
Authentication	00 Ratings	7.31 Ratings
Configuration Monitoring	00 Ratings	8.21 Ratings
Web Scanning	00 Ratings	6.41 Ratings
Vulnerability Intelligence	00 Ratings	8.21 Ratings

Best Alternatives
	AWS CloudTrail	Mandiant Advantage Attack Surface Management
Small Businesses	Armor Score 6.0 out of 10	Action1 Score 9.5 out of 10
Medium-sized Companies	Druva Security Cloud Score 9.5 out of 10	Action1 Score 9.5 out of 10
Enterprises	Druva Security Cloud Score 9.5 out of 10	CrowdStrike Falcon Score 9.1 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	AWS CloudTrail	Mandiant Advantage Attack Surface Management
Likelihood to Recommend	8.0 (4 ratings)	8.2 (1 ratings)

User Testimonials
	AWS CloudTrail	Mandiant Advantage Attack Surface Management
Likelihood to Recommend	Amazon AWS It is necessary to enable [AWS] Cloudtrail when using AWS in a production environment, otherwise you will not have any idea what is happening within your accounts. Third party monitoring applications will all require [AWS] CloudTrail to be enabled as well. I would not recommend it solely as a monitoring tool, to get the most out of it you must send the logs elsewhere. Either to Cloudwatch logs or a third party product. Incentivized Verified User Anonymous Read full review	Mandiant Many companies that have an presence can benefit from using Mandiant ASM to identify and manage their internet facing assets, like web servers, email servers and DNS servers. This helps reduce the risk of cyberattacks targeting these assets.However smaller organizations with exposure might not always need the extensive attack surface monitoring provided by Mandiant ASM. For example a small company with one website may not require much monitoring, as a larger corporation. Incentivized Verified User Anonymous Read full review
Pros	Amazon AWS API Log User activity tracking Real-time alerts Incentivized AS Anton Smyslov Product Owner Read full review	Mandiant Mandiant ASM combines sources of information such, as assets through the internet cloud resources and suppliers from third parties. This comprehensive approach provides organizations with an understanding of their external attack surface. With scanning Mandiant ASM identifies threats and vulnerabilities present on the external attack surface and promptly notifies users. Whenever a new threat or vulnerability is detected an alert is generated to empower enterprises to take action in mitigating the risks. Mandiant ASM assesses risks based on their likelihood of exploitation impact on organizations and severity. This prioritization enables organizations to focus their efforts, on addressing the risks effectively. Incentivized Verified User Anonymous Read full review
Cons	Amazon AWS [In my experience] Cost can easily get out of control with multiple trails on full logging Logs can be difficult to decipher Incentivized Verified User Anonymous Read full review	Mandiant To enhance user experience it would be beneficial to make the interface more user friendly and easier to navigate. This can be achieved by simplifying the layout offering help when needed and utilizing terminology that's easily understandable. Additionally incorporating reporting features that are customizable will empower users to generate reports tailored to their individual requirements. In order to enhance the solutions efficiency optimizing the code and implementing data structures would prove valuable. Incentivized Verified User Anonymous Read full review
Alternatives Considered	Amazon AWS I think in the end, CloudTrail has more features and you can dive deeper inside the logs so it depends on your usage and what you expect in the end to make the right choice, I would say that both tools are really useful and bring a lot of benefits to I.T. companies. Incentivized Verified User Anonymous Read full review	Mandiant I decided to go with Mandiant Advantage Attack Surface Management because it offers a range of features performs excellently and is easy to use. What I really appreciate about Mandiant is their commitment, to innovation and their proven track record, in ensuring security. Incentivized Verified User Anonymous Read full review
Return on Investment	Amazon AWS Allows us to investigate any strange api actions Increases security Audit trail of changes made in AWS Incentivized Verified User Anonymous Read full review	Mandiant . Automation plays a role in saving time by streamlining operations related to attack surface management. These include automated asset discovery, vulnerability scanning and continuous monitoring of threat intelligence. As a result security teams can allocate their efforts towards projects such as security planning and incident response. ASM provides a view of the external attack surface, for businesses encompassing internet facing assets, cloud resources and third party vendors. This enhances the understanding of assets enabling organizations to identify and prioritize risks effectively and make decisions on security investments One notable advantage is cost savings. By eliminating the need to purchase and maintain security tools ASM becomes a solution for enterprises. It can replace products, like asset discovery tools, vulnerability management tools and threat intelligence feeds with its capabilities. Incentivized Verified User Anonymous Read full review
ScreenShots	AWS CloudTrail Screenshots