TrustRadius

Snort vs. NetWitness Network

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Snort
Score 8.4 out of 10
N/A
Sourcefire developed Snort, an open source intrusion prevention system capable of real-time traffic analysis and packet logging. Snort was acquired (and is now supported) by Cisco in 2013.N/A
NetWitness Network
Score 6.0 out of 10
N/A
RSA NetWitness Network (formerly RSA Security Analytics) is network detection and response security application from RSA Security company NetWitness.N/A
Pricing
SnortNetWitness Network
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
SnortNetWitness Network
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details——
More Pricing Information
Community Pulse
SnortNetWitness Network
Top Pros
Top Cons
Best Alternatives
SnortNetWitness Network
Small Businesses
AlienVault USM
AlienVault USM
Score 7.0 out of 10
NinjaOne
NinjaOne
Score 9.1 out of 10
Medium-sized Companies
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
Nmap
Nmap
Score 10.0 out of 10
Enterprises
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
Nmap
Nmap
Score 10.0 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
SnortNetWitness Network
Likelihood to Recommend
8.1
(5 ratings)
5.0
(2 ratings)
User Testimonials
SnortNetWitness Network
Likelihood to Recommend
Cisco
If a colleague was looking to tighten down their network I can easily recommend Snort to them. It gives you some more peace of mind knowing that its always scanning traffic for malicious looking code. Even things your major firewalls and security hardware might miss, Snort has picked up. Its an easy recommendation for me.
Verified User
Anonymous
Read full review
RSA Security
It is perfectly suited for large organizations aiming for providing web security to the customers or also if they are interested to setup their own security perations center . It is one of the leading security tools in the market and offers comprehensive capability in dealing with web attacks
Utkarsh Ahuja | TrustRadius Reviewer
Utkarsh Ahuja
Graduate Engineer trainee
Read full review
Pros
Cisco
  • IPS detection.
  • DoS detection.
  • Packet logging.
Verified User
Anonymous
Read full review
RSA Security
  • Full packet capture allows look back on security events
  • Packet reconstruction is essential to make sense of packets captured
  • Threat analysis of captured packets provide additional indicators of compromise
Verified User
Anonymous
Read full review
Cons
Cisco
  • At times can be unstable with Cisco bugs, require frequent upgrading.
  • FTD images that are being pushed for ASAs are less efficient from an administration standpoint, no CLI.
Alan Matson, CCNA:S, MCP | TrustRadius Reviewer
Alan Matson, CCNA:S, MCP
Senior Network Security Engineer
Read full review
RSA Security
  • The meta part to form the dashboards were a bit complicated
  • The user interface could be made more understandable
Utkarsh Ahuja | TrustRadius Reviewer
Utkarsh Ahuja
Graduate Engineer trainee
Read full review
Alternatives Considered
Cisco
For our organization, the Cisco defense in depth concept works the best. While Cisco can be made to work with other vendors, we have found the best in depth protection by integrating Cisco products for maximum visibility. We had a Barracuda Web Filter, but it was difficult to maintain when you had limited scope on what you could block, so we created a whitelist only setup which required a lot of additional manpower. This wouldn't have covered new threats with DNS spoofing and the like. Sourcefire also integrated with our anti-malware platform (Cisco AMP) for even better visibility on what may be happening on the end users workstation. We are planning on adding in Cisco ISE to complete the approach and possibly stealthwatch to cover our bases in the future. The Palo Alto gear was interesting, but it was priced far out of our range.
DM
David Myers
Network Administrator
Read full review
RSA Security
It was more advanced and comprehensive . The personalized dashboards and view was the major likeable difference . The correlation could help us analyze better and was more effective , the drill down features gives more information at one go
Utkarsh Ahuja | TrustRadius Reviewer
Utkarsh Ahuja
Graduate Engineer trainee
Read full review
Return on Investment
Cisco
  • Being open source, ROI on free is hard to beat for something that works.
  • I believe it greatly enhances the security of my network.
CD
Read full review
RSA Security
  • The tool is great and an important part of my tool box
  • The level of administration needed is a little too high
  • Support relationships have to be customer led and prompted
Verified User
Anonymous
Read full review
ScreenShots