Snort vs. Symantec Advanced Threat Protection

Snort

27 Reviews and Ratings

Symantec Advanced Threat Protection

Symantec Advanced Threat Protection

66 Reviews and Ratings

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Snort	Score 8.4 out of 10	N/A	Sourcefire developed Snort, an open source intrusion prevention system capable of real-time traffic analysis and packet logging. Snort was acquired (and is now supported) by Cisco in 2013.	N/A
Symantec Advanced Threat Protection	Score 7.5 out of 10	N/A	Symantec Advanced Threat Protection is a single unified solution that uncovers, prioritizes, and remediates advanced attacks. The product fuses intelligence from endpoint, network, and email control points, as well as Symantec’s massive global sensor network, to stop threats that evade individual security products. It leverages existing Symantec Endpoint Protection and Symantec Email Security.cloud investments, so it does not require the deployment of any new agents. It includes functionality…	N/A

Pricing

Snort

Symantec Advanced Threat Protection

Editions & Modules

No answers on this topic

No answers on this topic

Offerings

Pricing Offerings
Snort	Symantec Advanced Threat Protection
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

No setup fee

Additional Details

—

—

More Pricing Information

Community Pulse
	Snort	Symantec Advanced Threat Protection
Top Pros	Pro Malware protection Pro Customizable and easy Pro Add ons	Pro Management console Pro Easy to use Pro Real time
Top Cons	Minus Upgrade process Minus Version 5 Minus False positives	Minus Hard to set Minus Incredibly slow Minus Non technical

Best Alternatives
	Snort	Symantec Advanced Threat Protection
Small Businesses	AlienVault USM Score 8.0 out of 10	NinjaOne Score 9.2 out of 10
Medium-sized Companies	CrowdStrike Falcon Score 9.1 out of 10	Nmap Score 8.8 out of 10
Enterprises	CrowdStrike Falcon Score 9.1 out of 10	Nmap Score 8.8 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Snort	Symantec Advanced Threat Protection
Likelihood to Recommend	8.1 (5 ratings)	6.7 (14 ratings)
Likelihood to Renew	- (0 ratings)	7.0 (2 ratings)
Usability	- (0 ratings)	7.0 (2 ratings)
Support Rating	- (0 ratings)	8.0 (2 ratings)
Implementation Rating	- (0 ratings)	8.0 (1 ratings)

User Testimonials
	Snort	Symantec Advanced Threat Protection
Likelihood to Recommend	Cisco If a colleague was looking to tighten down their network I can easily recommend Snort to them. It gives you some more peace of mind knowing that its always scanning traffic for malicious looking code. Even things your major firewalls and security hardware might miss, Snort has picked up. Its an easy recommendation for me. Incentivized Verified User Anonymous Read full review	Broadcom It is valuable software for when it comes to a large or medium organization, since it helps to protect the endpoints, but as the number of servers increases its value increases. However, it is important to keep in mind that when it comes to low end devices, its protection can affect their performance. This is because it is not a software with a very light agent. Incentivized Emma Jones Smith Senior Software Engineering Read full review
Pros	Cisco IPS detection. DoS detection. Packet logging. Incentivized Verified User Anonymous Read full review	Broadcom The incident management piece is the heart and soul of the product. A single area where all data in relation to network and email protection is available. Works well in conjunction with the standard Symantec Endpoint product. URL Protection is advanced and very helpful Technical support is great and definitely the best I have ever seen for a "anti-virus" type product. Incentivized Verified User Anonymous Read full review
Cons	Cisco At times can be unstable with Cisco bugs, require frequent upgrading. FTD images that are being pushed for ASAs are less efficient from an administration standpoint, no CLI. Incentivized Alan Matson, CCNA:S, MCP Senior Network Security Engineer Read full review	Broadcom I don't like that I have to maintain the client and keep it up to date. Updating the client is not a very easy process. Deploying the client could be easier. They have a deployment tool, but it doesn't really get to all PCs, which means I still have to manually deploy it. Because the product has so much customization, it can also be very difficult to set up and understand. Incentivized AB Andrew Bouwhuis Network System Administrator Read full review
Likelihood to Renew	Cisco No answers on this topic	Broadcom Symantec Advanced Threat Protection has done a sufficient job at identifying true positives. However, the UI could be improved and the amount of false positives is a little too frequent for my liking Incentivized Verified User Anonymous Read full review
Usability	Cisco No answers on this topic	Broadcom There is a small learning curve, but compared to other AV products it is fairly simple and easy to catch onto Incentivized Verified User Anonymous Read full review
Support Rating	Cisco No answers on this topic	Broadcom Support responds fast for higher priority issues, they have always been good at solving the problems we encounter. Incentivized Verified User Anonymous Read full review
Implementation Rating	Cisco No answers on this topic	Broadcom No, besides to review documentation prior to beginning. That is what helped lead to a smooth implementation Incentivized Verified User Anonymous Read full review
Alternatives Considered	Cisco For our organization, the Cisco defense in depth concept works the best. While Cisco can be made to work with other vendors, we have found the best in depth protection by integrating Cisco products for maximum visibility. We had a Barracuda Web Filter, but it was difficult to maintain when you had limited scope on what you could block, so we created a whitelist only setup which required a lot of additional manpower. This wouldn't have covered new threats with DNS spoofing and the like. Sourcefire also integrated with our anti-malware platform (Cisco AMP) for even better visibility on what may be happening on the end users workstation. We are planning on adding in Cisco ISE to complete the approach and possibly stealthwatch to cover our bases in the future. The Palo Alto gear was interesting, but it was priced far out of our range. Incentivized DM David Myers Network Administrator Read full review	Broadcom Frankly, the other products were too expensive to make the change from Symantec so we continued with the tried and true protection. We don't have the funding to move to a more expensive product and the manpower that it would take to implement a new solution. Incentivized Kevin McCusker Global Information Technology Manager Read full review
Return on Investment	Cisco Being open source, ROI on free is hard to beat for something that works. I believe it greatly enhances the security of my network. CD Curt Dickman Owner Read full review	Broadcom Some digital assets were lost due to failures to detect various threats. We had to use other products in combination in order to trust that all threats were actually detected, taking extra time. We couldn't use just SATP. Ability to quickly manage/deploy via AD made maintenance of the application itself quick and easy. Incentivized David Crawford IT Consultant Read full review
ScreenShots