TrustRadius

Snort vs. Palo Alto Networks Advanced Threat Prevention

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Snort
Score 9.0 out of 10
N/A
Sourcefire developed Snort, an open source intrusion prevention system capable of real-time traffic analysis and packet logging. Snort was acquired (and is now supported) by Cisco in 2013.N/A
Palo Alto Networks Advanced Threat Prevention
Score 8.5 out of 10
N/A
Palo Alto Networks Advanced Threat Prevention is an intrusion prevention system (IPS) used to stop zero-day attacks inline in real-time. In addition to the prevention of known threats, the solution helps to stop never-before-seen exploit attempts and command and control with its inline deep learning engines that aims to provide prevention of zero-day injection attacks and evasive command and control.N/A
Pricing
SnortPalo Alto Networks Advanced Threat Prevention
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
SnortPalo Alto Networks Advanced Threat Prevention
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
SnortPalo Alto Networks Advanced Threat Prevention
Considered Both Products
Snort

No answer on this topic

Palo Alto Networks Advanced Threat Prevention
Best Alternatives
SnortPalo Alto Networks Advanced Threat Prevention
Small Businesses
LevelBlue USM Anywhere
LevelBlue USM Anywhere
Score 7.5 out of 10
LevelBlue USM Anywhere
LevelBlue USM Anywhere
Score 7.5 out of 10
Medium-sized Companies
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
Enterprises
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
SnortPalo Alto Networks Advanced Threat Prevention
Likelihood to Recommend
8.1
(5 ratings)
8.5
(6 ratings)
Usability
-
(0 ratings)
8.5
(2 ratings)
User Testimonials
SnortPalo Alto Networks Advanced Threat Prevention
Likelihood to Recommend
Cisco
If a colleague was looking to tighten down their network I can easily recommend Snort to them. It gives you some more peace of mind knowing that its always scanning traffic for malicious looking code. Even things your major firewalls and security hardware might miss, Snort has picked up. Its an easy recommendation for me.
Verified User
Anonymous
Read full review
Palo Alto Networks
Palo Alto NTP is an appropriate suite of protection for any enterprise environment or anyone that truly needs some serious perimeter protection in a one-stop, all-in-one unit. There are no modules or add-ons or clunky interfaces to deal with it; everything works out of one management plane, licensing, implementation, monitoring. updating, etc. As a network admin, that is immensely valuable to me. Additionally, I get real-time reporting on all the stuff NTP is catching, and it is nothing to shirk at. The real value in NTP comes in only after you begin doing SSL-decryption, however, to truly inspect the traffic. Short of that, you are just seeing a bunch of encrypted data and the NTP suite of tools isn't going to avail you. NTP plus decryption, though, is invaluable!
Derek Benson | TrustRadius Reviewer
Derek Benson
Infrastructure , Network Administrator
Read full review
Pros
Cisco
  • IPS detection.
  • DoS detection.
  • Packet logging.
Verified User
Anonymous
Read full review
Palo Alto Networks
  • The threat engine has constant updates for important threats.
  • Wildfire helps supplement the Threat engine to help protect against 0 day threats.
  • The way the threat engine can be added at different levels to different zones and policies helps to ensure business essential traffic can have policies that are tuned to ensure traffic will flow.
Alex Waitkus, CISSP-ISSAP, OSCP | TrustRadius Reviewer
Read full review
Cons
Cisco
  • At times can be unstable with Cisco bugs, require frequent upgrading.
  • FTD images that are being pushed for ASAs are less efficient from an administration standpoint, no CLI.
Alan Matson, CCNA:S, MCP | TrustRadius Reviewer
Alan Matson, CCNA:S, MCP
Senior Network Security Engineer
Read full review
Palo Alto Networks
  • Cost is high, but it is a premium product
  • Endpoints are still vulnerable.
  • TAC engineers aren't always equipped with ATP knowledge
Verified User
Anonymous
Read full review
Usability
Cisco
No answers on this topic
Palo Alto Networks
The reason to give ATP this rating is it specialises in detecting command control traffic whose primary role is to identify unusual outbound traffic patterns which blocks the command control communication and notifies to different security team to take necessary actions. ATP Global protect holds the responsibility of inspecting all the inbound and outbound traffic going to and from corporate system regardless of the network they are on. ATP plays a major role to identify the threats that blocks threats that could lead to data breach also it identifies any malicious file enter the system will be blocked proactively
IS
irfan shaik
Technical Consultant
Read full review
Alternatives Considered
Cisco
For our organization, the Cisco defense in depth concept works the best. While Cisco can be made to work with other vendors, we have found the best in depth protection by integrating Cisco products for maximum visibility. We had a Barracuda Web Filter, but it was difficult to maintain when you had limited scope on what you could block, so we created a whitelist only setup which required a lot of additional manpower. This wouldn't have covered new threats with DNS spoofing and the like. Sourcefire also integrated with our anti-malware platform (Cisco AMP) for even better visibility on what may be happening on the end users workstation. We are planning on adding in Cisco ISE to complete the approach and possibly stealthwatch to cover our bases in the future. The Palo Alto gear was interesting, but it was priced far out of our range.
DM
David Myers
Network Administrator
Read full review
Palo Alto Networks
Having used Palo Alto Firewalls for years, implementing threat protection was the next step in perimeter security. Works much better than the few competitors I have personally used. Frequent content updates occur which may impact some policy rules, but that is normal across most vendors.
Verified User
Anonymous
Read full review
Return on Investment
Cisco
  • Being open source, ROI on free is hard to beat for something that works.
  • I believe it greatly enhances the security of my network.
CD
Read full review
Palo Alto Networks
  • After adding PA Threat Protection, we are now getting our network traffic completely inspected.
  • We are now applying security checks and scans like AV scan and Anti Spyware checks.
  • This is also giving visibility into threat and attack vectors that are using vulnerabilities and exploits to enter our environment.
DS
Read full review
ScreenShots