TrustRadius

Darktrace vs. Splunk User Behavior Analytics (UBA)

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Darktrace
Score 8.7 out of 10
N/A
Darktrace AI interrupts in-progress cyber-attacks, including ransomware, email phishing, and threats to cloud environments. It's able to detect and establish baselines for your organization so it can make the distinction between what is and what isn't normal network activity for your organization. This allows it to tackle complex cyber-attacks as they happen and prevent future cyber-attacks from happening.N/A
Splunk User Behavior Analytics (UBA)
Score 5.8 out of 10
N/A
Splunk supplies security analytics as a standalone solution or priced as an add-on for users of its popular SIEM products, to protect enterprises against unknown threats and malicious behavior, via the Splunk User Behavior Analytics (UBA) application.N/A
Pricing
DarktraceSplunk User Behavior Analytics (UBA)
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
DarktraceSplunk User Behavior Analytics (UBA)
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
DarktraceSplunk User Behavior Analytics (UBA)
Top Pros
Top Cons
Best Alternatives
DarktraceSplunk User Behavior Analytics (UBA)
Small Businesses
Auvik
Auvik
Score 8.1 out of 10
ActivTrak
ActivTrak
Score 8.7 out of 10
Medium-sized Companies
InsightIDR
InsightIDR
Score 9.3 out of 10
ManageEngine ADAudit Plus
ManageEngine ADAudit Plus
Score 9.6 out of 10
Enterprises
InsightIDR
InsightIDR
Score 9.3 out of 10
ManageEngine ADAudit Plus
ManageEngine ADAudit Plus
Score 9.6 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
DarktraceSplunk User Behavior Analytics (UBA)
Likelihood to Recommend
8.5
(11 ratings)
10.0
(2 ratings)
Likelihood to Renew
9.7
(2 ratings)
-
(0 ratings)
Usability
9.0
(1 ratings)
-
(0 ratings)
Support Rating
9.4
(2 ratings)
9.0
(1 ratings)
User Testimonials
DarktraceSplunk User Behavior Analytics (UBA)
Likelihood to Recommend
Darktrace
Darktrace is a product well suited for the vast majority of infrastructures and helps monitoring and responding to threats based on the network in a very elastic way. This is a product based on on-premise infrastructures that hosts its machines locally, of course it can be technically difficult to monitor an entire On-Cloud infrastructure but even there there's room for sensors and monitoring, not to mention the SaaS and mail integration that completes the product.
Verified User
Anonymous
Read full review
Splunk
Splunk User Behavior Analytics application is necessary when any company wants to capture the threat based on user behavior instead of just counting the number of occurrences of particular event. With Splunk UBA, we can analyse number of anomalies captured and which in turn creating threats which are nearly true positive.
Verified User
Anonymous
Read full review
Pros
Darktrace
  • Uses it Al model UEBA to detect anomalies in the behaviour of not only the users in a corporate network but also the routers, servers, and endpoints in that network.
  • Provides a visualisation of both egress and outbound network traffics flowing in and out of the organisation.
  • Darktrace comes with it autonomous AI model detection and responses capabilities.
  • Darktrace as an AI next generation NDR solution, prevents ,contains and quarantines malicious traffics from and into the corporate network.
ROBERT OFOLI KWEI | TrustRadius Reviewer
ROBERT OFOLI KWEI
Senior Security Specialist
Read full review
Splunk
  • Monitor and troubleshoot for any system errors.
  • Get the insights on application data sets and do some predictive analysis.
Verified User
Anonymous
Read full review
Cons
Darktrace
  • There are few areas that I would say need to be improved; their customer support portal allows you to log tickets with any suggestions or things you feel the product is missing, and they will generally show you how to achieve what you want, or in some cases, introduce it as a feature in a later update.
Verified User
Anonymous
Read full review
Splunk
  • Performance-wise, it can be improved. Queries take a long time.
  • Dataset exploration - More data visualization charts can be added.
Verified User
Anonymous
Read full review
Likelihood to Renew
Darktrace
It's a powerfull product that help administrators to provide email security to our organization.
Good metrics about received emails that help us to determine in doubt case if the email is a false positive or it's malware.
They're improving the product releasing continuous updates and have mobile phone app to manage it.
AR
Antonio Rodriguez
Information Technology Audit Manager
Read full review
Splunk
No answers on this topic
Usability
Darktrace
Darktrace comes with a simple usability interface with easy navigation and organisation.
ROBERT OFOLI KWEI | TrustRadius Reviewer
ROBERT OFOLI KWEI
Senior Security Specialist
Read full review
Splunk
No answers on this topic
Support Rating
Darktrace
Darktrace support is excellent in my experience. They send a competent engineer on-site to provide on-boarding training. They were also very responsive in responding to questions and concerns. Having an individual point of contact who is a competent network and security engineer is not a common experience, at least for me.
Verified User
Anonymous
Read full review
Splunk
No answers on this topic
Alternatives Considered
Darktrace
We did NOT select Darktrace. OSSIM/AlienVault is a more mature product and it provided better intelligence and reporting. The end user interface is much easier to use - and you can tell built form engineers who have had to do the work. My suggestion for anyone considering Darktrace, is to get the price upfront; do a 30/60 onsite trail; and do the same thing, at the same time, with AlienVault. AlientVault will win every time. I say that because that's exactly what I did.
Matthew Frederickson | TrustRadius Reviewer
Matthew Frederickson
Director of Information Technology
Read full review
Splunk
Easier we were using Splunk Enterprise on heavy forwarder on which all the add-on were installed and were using Splunk Cloud with respect to search head and indexers stack. And with Splunk Enterprise Security premium app, we were relying on correlation rules which were throwing more number of false positive but after implementing Splunk UBA, we are now getting real-time true positive threat or incidents.
Verified User
Anonymous
Read full review
Return on Investment
Darktrace
  • One big positive is how it helps us with the security assessments that clients have done on us. They are looking to see if we know how we might have unusual/malicious traffic running on the network.
  • If you have a small network and only need 1 appliance, it can be a good ROI and peace of mind.
  • You could go down a hole in trying to spend time looking at all of your traffic with this software. You need to focus only on what it is showing as potential bad traffic.
Verified User
Anonymous
Read full review
Splunk
  • Fewer team members to work on real threats.
  • Less time required to deal with real incidents.
  • Easy to implement across the network.
Verified User
Anonymous
Read full review
ScreenShots