We performed a comparison between Trellix Advanced Threat Defense and Trellix Network Detection and Response based on real PeerSpot user reviews.
Find out in this report how the two Advanced Threat Protection (ATP) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."I recommend this solution because of its ease of use."
"It is stable and reliable."
"The most valuable features are the administration console and its detection and response module."
"Provides good exfiltration, and is an all-in-one product."
"Its greatest strength is the DXL client which can rapidly disseminate attack information to all clients via the McAfee Agent instead of going through the ePO server."
"It is very scalable."
"It stops in excess of twenty-five malware events per month, all of which could be critical to the business."
"I also like its logging method. Its logging is very powerful and useful for forensic purposes. You can see the traffic or a specific activity or how something entered your network and where it went."
"It is stable and quite protective. It has a lot of features to scan a lot of malicious things and vulnerabilities."
"The most valuable feature is the view into the application."
"The server appliance is good."
"The scalability has not been a problem. We have deployed the product in very high bandwidth networks. We have never had a problem with the FireEye product causing latency issues within our networks."
"Its ability to find zero-day threats, malware and anything malicious has greatly improved my customer's organization, especially for protecting the users' browser."
"The installation phase was easy."
"It protects from signature-based attacks and signature-less attacks. The sandboxing technology, invented by FireEye, is very valuable. Our customers go for FireEye because of the sandboxing feature. When there is a threat or any malicious activity with a signature, it can be blocked by IPS. However, attacks that do not have any signatures and are very new can only be blocked by using the sandboxing feature, which is available only in FireEye. So, FireEye has both engines. It has an IPS engine and a sandbox engine, which is the best part. You can get complete network protection by using FireEye."
"We'd like them to be better at dealing with script threats."
"Lacks remote capabilities not dependent on the internet."
"This solution needs to be made "cloud ready"."
"There could be a tool that automatically updates all-new Microsoft IPs, which are available for free to connect to the client."
"Make the ATD system a part of the whole product and take the whole thing onto the cloud. While it is there already, it is not to the same level as the on-premise version."
"I would like to see future versions of the solution incorporate artificial intelligence technology."
"The initial setup was industry standard complex. It takes awhile and has a lot of planning involved. It could be simplified with product redesign."
"There is a lot of room for Improvement in the offering, from cost to functionality. It is pretty straightforward to implement which is an advantage. However, it falls short in pricing, detection capabilities, and, most importantly, reporting and policy management."
"If you want to search the hashes in the environment, you need to put in IOCs one by one, making it a very hectic job."
"Management of the appliance could be greatly improved."
"We'd like the potential for better scaling."
"It would be great if we could create granular reports based on the protocols, types of attacks, regions of attack, etc. Also we would like to easily be able to add exceptions to rules in cases of false positives."
"Cybersecurity posture has room for improvement."
"It is an expensive solution."
"It would be a good idea if we could get an option to block based upon the content of an email, or the content of a file attachment."
More Trellix Advanced Threat Defense Pricing and Cost Advice →
More Trellix Network Detection and Response Pricing and Cost Advice →
Trellix Advanced Threat Defense is ranked 22nd in Advanced Threat Protection (ATP) with 8 reviews while Trellix Network Detection and Response is ranked 9th in Advanced Threat Protection (ATP) with 37 reviews. Trellix Advanced Threat Defense is rated 7.8, while Trellix Network Detection and Response is rated 8.4. The top reviewer of Trellix Advanced Threat Defense writes "Easy to set up and use with a nice interface". On the other hand, the top reviewer of Trellix Network Detection and Response writes "Offers in-depth investigation capabilities, integrates well and smoothly transitioned from a lower-capacity appliance to a higher one". Trellix Advanced Threat Defense is most compared with Fortinet FortiSandbox, Microsoft Defender for Office 365, Microsoft Defender for Identity and Palo Alto Networks WildFire, whereas Trellix Network Detection and Response is most compared with Fortinet FortiSandbox, Palo Alto Networks WildFire, Fortinet FortiGate, Zscaler Internet Access and Vectra AI. See our Trellix Advanced Threat Defense vs. Trellix Network Detection and Response report.
See our list of best Advanced Threat Protection (ATP) vendors.
We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
