Try our new research platform with insights from 80,000+ expert users

Check Point SandBlast Network vs Palo Alto Networks WildFire vs RiskIQ Illuminate comparison

 

Comparison Buyer's Guide

Executive Summary
 

Mindshare comparison

Advanced Threat Protection (ATP)
Advanced Threat Protection (ATP)
Attack Surface Management (ASM)
 

Featured Reviews

AshleyMorales - PeerSpot reviewer
Helps detect and prevent attacks and offer helpful sandbox analysis
The configuration could be optimized. The usability could improve. They need to make the guides more specific with images, as it is very complicated to guess where each option is located. The management of alerts could improve them a bit - especially in event management. In terms of performance, at some point, I have come to feel that it drops during certain hours. Some additional features that can be added may be the use of Artificial Intelligence (AI) and Machine Learning (ML).
Mario Lacroix - PeerSpot reviewer
Provides seamless automation functionality and has a straightforward setup process
The platform's most valuable feature is its seamless automation within the broader Palo Alto ecosystem. Its ability to function autonomously, with automatic updates and integration with tools like Panorama, significantly reduces manual intervention. Additionally, its threat detection capabilities allow us to respond quickly to potential incidents, and the system is self-sufficient, managing itself once configured.
SimonClark - PeerSpot reviewer
Able to discover unpatched servers, offers good stability, and scales very well
A low-cost service to evaluate the risk score of a supply chain would be very helpful. This could be useful for insurance companies offering cyber insurance to enterprise customers, providing the insurer with a valuable way to unobtrusively, quickly, and frequently assess their customers and apply appropriate premiums for the level of risk. This would also be useful for enterprises. They could, for example, assess companies prior to a merger or acquisition. What would also be useful for any enterprise would be if their supply chain has some kind of direct digital access to parts of their network.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Check Point SandBlast is best in terms of the extraction function. Customers can get a clean firewall with extraction after I've cleaned and scanned it from Check Point. It's easy for users, too."
"When our workers are downloading software, SandBlast Cloud is useful to emulate the downloads that the workers are doing. Then, there are no threats coming into the company."
"The Check Point SandBlast Network gives us incredibly good features."
"Very few false positives are detected, which gives the confidence to raise flags when needed, ensuring the IT department is aware of threats and acting fast."
"It has caught some harmful attachments and downloads."
"The most valuable thing about this product is that it keeps the network secure against zero-day threats."
"Check Point SandBlast Network Solution provides signature-based as well as zero-day threat protection. Also sandboxing can be performed on an on-premise device, cloud as well as the combination of both. Threat emulation is done on multiple OS & verdict is provided."
"Threat extraction can help us to remove malicious content from documents by converting them to PDF."
"Being an application-based firewall, this is one of the critical focus factors along with the threat prevention services it provides."
"Intuitive threat prevention and analysis solution, with a machine learning feature. Scalable, stable, and protects against zero-day threats."
"For example, if a security Intel threat talks about an IOC. We can then go to our MSP and say, "Is there a signature for this particular type of malware that just came out?" And if they'll say yes, then we'll say, "Okay. Does it apply to these firewalls? And have we seen any hits on it?" There's absolutely value in it."
"What I like about Palo Alto is that it is a complete product, with everything in it."
"Stability is never a concern."
"It gives a more accurate assessment of a virus in terms of whether it's truly a virus, malware, or a false positive. We have some legacy software that could pop up as being something that is malware. WildFire goes through and inspects it, and then it comes back and lets us know if it's a false positive. Usually, when it finds out that it's not a virus, it lets us know that it's benign, and it can exclude it from that scan, which means I don't even have to worry about that one popping up anymore."
"High availability with active-active and active-passive modes."
"The most valuable feature of this solution is how it keeps up-to-date with viruses."
"The solution is stable with 12 years of established historical data."
 

Cons

"I think Check Point provides standard time which ideally most other vendors take to identify behaviors of a file by sending them into a sandbox environment for inspection."
"I would like to see some speed improvements, e.g., how quickly you can get through all the menus. It crashes sometimes because we push so much through it. Therefore, I would like to see more small things behind the scenes, such as, back-end stability in terms of the management application."
"We have found a need for the application to be a bit more elastic, bringing it to SAS services and not IAS."
"We would like to see this solution reach mobile devices more efficiently, through apps or more specific products."
"The Threat Emulation software blade significantly affects the performance of the NGFWs, we have a significant increase in the CPU and memory consumption."
"EDR and EPM solutions like Carbon Black or CyberArk have integrations with the cloud version of Sandblast, however, there must be on-premise Sandblast options also."
"Sometimes, Check Point Sandblast requires more resources, which impacts network performance if it has been deployed with limited resources."
"Many Important controls are only available in CLI & very very complicated. All tecli command features should available on GUI so that it will become easy for normal users to monitor & control queue."
"One area for improvement is the expansion of the sandbox environment to include a broader range of platforms, such as Linux, macOS, and mobile operating systems."
"There are some formats that the solution cannot support ."
"In terms of what I'd like to see in the next release of Palo Alto Networks WildFire, each release is based on malware that has been identified. The key problem is an average of six months from the time malware is written to the time it's discovered and a signature is created for it. The only advice that I can give is for them to shorten that timeframe. I don't know how they would do it, but if they shorten that, for example, cut it in half, they'll make themselves more famous."
"The integration is almost not easy because it depends on the vendor."
"If Wi-Fi can be improved to offer real-time security profiling and updates, it can prevent traits unrelated to Wi-Fi."
"The product's false positive logs could be more user-friendly to understand. They could provide examples of precious cases to learn."
"​The VPN and decryption need improvement."
"Improving detection on non-Windows formats would be beneficial as there are many samples, such as Linux or ransomware for macOS."
"A low-cost service to evaluate the risk score of a supply chain would be very helpful."
 

Pricing and Cost Advice

"We have seen ROI."
"We would like to try the Threat Extraction blade, but you need to buy a license. Check Point is expensive. I would like to buy things, but I would need the funding."
"Choosing the correct set of licenses is essential because, without the additional software blade licenses, the Check Point gateways are just a stateful firewall."
"I think the overall cost for introducing Check Point with SandBlast was reasonable and competitive in the market."
"The cost of Check Point SandBlast Network is annually, and there is only a standard license."
"The cost is not significantly high and it can be negotiated during any purchase of NGFW."
"The product's cost is high."
"The pricing is quite effective, not excessively high. On a scale of one to ten, where ten is the highest price, I rate the pricing a nine."
"It is a reasonable price compared to other solutions on the market."
"The price of the Palo Alto Networks WildFire license is expensive. When it came time to renew the solution the price doubled."
"It's pretty expensive but with respect to value for money, it's okay."
"The solution is worth its price"
"I use Palo Alto Networks WildFire's free version."
"WildFire is a little bit pricey. Sometimes it's difficult to sell it to customers at the current price."
"The solution is overpriced."
"Palo Alto Networks WildFire is quite expensive, and this is what puts people off."
Information not available
report
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
816,636 professionals have used our research since 2012.
 

Comparison Review

it_user206346 - PeerSpot reviewer
Mar 11, 2015
Cisco ASA vs. Palo Alto Networks
Cisco ASA vs. Palo Alto: Management Goodies You often have comparisons of both firewalls concerning security components. Of course, a firewall must block attacks, scan for viruses, build VPNs, etc. However, in this post I am discussing the advantages and disadvantages from both vendors concerning…
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
15%
Government
11%
Security Firm
6%
Computer Software Company
16%
Financial Services Firm
10%
Government
9%
Manufacturing Company
8%
Financial Services Firm
21%
Computer Software Company
18%
Manufacturing Company
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Check Point SandBlast Network?
The solution can detect and prevent attacks that may be encrypted.
What needs improvement with Check Point SandBlast Network?
The cost is a little bit high-end, and you need to get precise performance metrics in order to get the correct size. ...
How does Cisco Firepower NGFW Firewall compare with Palo Alto Networks Wildfire?
The Cisco Firepower NGFW Firewall is a very powerful and very complex piece of anti-viral software. When one conside...
Which is better - Wildfire or FortiGate?
FortiGate has a lot going for it and I consider it to be the best, most user-friendly firewall out there. What I like...
How does Cisco ASA Firewall compare with Palo Alto's WildFire?
When looking to change our ASA Firewall, we looked into Palo Alto’s WildFire. It works especially in preventing advan...
Ask a question
Earn 20 points
 

Also Known As

No data available
No data available
RiskIQ Digital Threat Management
 

Overview

 

Sample Customers

Edenred, State Transport Leasing Company (STLC), Edel AG, Laurenty, Conseil Départemental du Val de Marne, Koch Media
Novamedia, Nexon Asia Pacific, Lenovo, Samsonite, IOOF, Sinogrid, SanDisk Corporation
DocuSign, Outbrain, The Economist Group, Rackspace, The Citizen Lab
Find out what your peers are saying about Microsoft, Palo Alto Networks, Fortinet and others in Advanced Threat Protection (ATP). Updated: November 2024.
816,636 professionals have used our research since 2012.