Likelihood to Recommend Malware that doesn’t leave files behind has become widely available. Anyone who can afford to reverse this trend should purchase technology. Application whitelisting isn’t for everyone, and Palo Alto Networks Traps can help. Enterprises looking for a low-affected, next-generation solution with high protection should consider it. PAN Traps is a great product at a reasonable price, and I highly recommend it.
Read full review Very stable and cost-effective. Better integration with leading database vendors would be great; this would address features that are missing like x-windows support and concurrent secure file transfers. Patching is relatively fast and not as frequent as other vendors (with no impact on adherence to security best practices). Very easy to install and low storage footprint. Read full review Pros Direct Access to devices via Live Terminal which provides operations with scripting, triage, and preservation of artifacts. Behavioral Indicators of Compromise which provides alerts on events regarding groups of hosts and their signatures. Querying complex data sets involving a variety of devices for network connections, hashes, DNS, etc. Read full review Most up to date secure/encryption technology. Very fast to set up and maintain. Supported by all major hardware platforms (Microsoft, Linux). Read full review Cons Traps doesn't seem to function as a traditional A/V very well, so it's better as another layer to your endpoint protection Traps can cause issues with some legacy or custom programs, so exceptions may have to be made Traps falsely identifies things as malicious at times, this is not often though Read full review X-windows support could be more robust. Virtual shell adaptation could be improved. Greater concurrency for large secure transmissions would be a great add-on. Read full review Usability Day to day, Cortex is easy to use when you have no alerts and when an agent upgrade doesn't go south. Alerts are far too "clicky", there's too many steps to drilling down to what actually happened to trigger an alert. Investigating alerts in Cortex takes about 5x longer than it should.
Read full review Support Rating The support we receive from Palo Alto is one of the best aspects of Traps. It is very easy to recommend their support. It seems much easier to connect directly with someone with a deep understanding of the product rather than other companies where you basically have to make an airtight case that it is some kind of non-standard issue that can't be solved with existing documentation. Palo Alto digs deep and helps with advanced troubleshooting to get things working.
Read full review Support organization is active, so is online community boards. There have been no significant issues that haven't been able to be quickly addressed by either online documentation or F-Secure support. Easy to use diagnostic tools and information gathering, make problem analysis fast. Phone support can be different due to time zone differences, but this has not been a major issue. Read full review Alternatives Considered Traps is the slickest interface, easy to use and intuitive rule making, and the rest just didn't quite stack up to the performance level of Traps.
McAfee and Kaspersky just hog processor and RAM power. I didn't like the interface and functionality of
SentinelOne as much as Traps. Palo Alto really put a lot of time into the development of this software, and had some of the founding fathers of IT Security heading the development process. Can't beat that.
Read full review This suite of software does not have any mentionable competition, in my opinion. It adheres to current security protocols, in-frequent patching requirements, low IT overhead, and on-going support are exemplary. Robust documentation and online community boards help keep support and maintenance transparent and efficient. Legacy support for older OS' is quite useful. Simplicity when onboarding into custom hybrid network configurations is also vital. Read full review Return on Investment After putting Palo Alto Networks Cortex XDR on a user's system, users came back with a positive response that there are no performance issues now. We are able to track and control granular suspicious and malicious activities. Web controls are missing, which if they would have been there would have been very helpful. Read full review Very low cost. Low IT overhead (very low network bandwidth, CPU, storage utilization). Supported by all major hardware vendors. Read full review ScreenShots