Cisco Sourcefire SNORT vs Claroty Platform comparison

The compared Cisco and Claroty solutions aren't in the same category. Cisco is ranked #14 in ID , with an average rating of 8.0, and holds a 3.1% mindshare in the category. Claroty is ranked #2 in CPSP , with an average rating of 8.2, and holds a 40.9% mindshare. Additionally, 95% of Cisco users are willing to recommend the solution, compared to 100% of Claroty users who would recommend it.

Cisco Sourcefire SNORT

Read 20 Cisco Sourcefire SNORT reviews

1,181 Views
1,004 Comparison Views

95% willing to recommend

Claroty Platform

Read 16 Claroty Platform reviews

6,544 Views
720 Comparison Views

100% willing to recommend

Cisco Sourcefire SNORT

Claroty Platform

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Cisco Sourcefire SNORT and Claroty Platform based on real PeerSpot user reviews.

Find out what your peers are saying about Fortinet, Darktrace, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS).

To learn more, read our detailed Intrusion Detection and Prevention Software (IDPS) Report (Updated: December 2025).

Buyer's Guide

Intrusion Detection and Prevention Software (IDPS)

December 2025

Download the complete report

Helped 879,422 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cisco Sourcefire SNORT

Average Rating

7.8

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Intrusion Detection and Prevention Software (IDPS) (14th)

Claroty Platform

Average Rating

8.2

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

Remote Access (7th), Vulnerability Management (22nd), Operational Technology (OT) Security (2nd), Cyber-Physical Systems Protection (2nd)

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Cisco Sourcefire SNORT is designed for Intrusion Detection and Prevention Software (IDPS) and holds a mindshare of 3.1%, up 2.1% compared to last year.
Claroty Platform, on the other hand, focuses on Cyber-Physical Systems Protection, holds 40.9% mindshare, down 41.9% since last year.

Intrusion Detection and Prevention Software (IDPS) Market Share Distribution
Product	Market Share (%)
Cisco Sourcefire SNORT	3.1%
Fortinet FortiGate	13.9%
Darktrace	12.2%
Other	70.8%

Intrusion Detection and Prevention Software (IDPS)

Cyber-Physical Systems Protection Market Share Distribution
Product	Market Share (%)
Claroty Platform	40.9%
Armis	34.5%
Verve Security Center	12.8%
Other	11.799999999999997%

Cyber-Physical Systems Protection

Featured Reviews

reviewer2772102

Cloud Architect at a consultancy with 1-10 employees

Logging and customizable rules have helped improve threat monitoring and detection

The logging is mainly what I consider one of the best features with Cisco Sourcefire SNORT. Being able to log and store it in a file allows you to push it to a centralized repository. The logging and reporting help improve incident response. You should always be logging threats, any sort of misconfiguration, and anything that could be an issue. It's important to at least log and monitor it. The basic rules provide a good baseline in assessing Cisco Sourcefire SNORT's ability in providing real-time analytics for threat detection, but as a professional, you should look to constantly modify that baseline. They provide extensive customizability so you can define your own rules. The customizability allows it to be adaptable in protecting against diverse network threats to the constant change.

Read full review

AbhishekPandey5

Senior Consultant at Payatu

Passive scanning excels and support proves invaluable

Regarding the cons of the Claroty Platform, it is not about the deployment, but rather the identification. The Claroty Platform becomes too noisy when it gives numerous CVEs related to vendor match. Sometimes, these CVEs are not actually related to the device in the firmware at the site. The Claroty Platform identifies effectively but sometimes identifies many CVEs which might not be the actual issue in certain scenarios.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The solution is rather easy to use."

"Solid intrusion detection and prevention that scales easily in very large environments."

"It is quite an intelligent product."

"I like most of Cisco's features, like malware detection and URL filtering."

"The solution is stable."

"The tool's most valuable feature is threat detection, which is important because we have multiple layers not only in Cisco."

"The whole solution is very good, and stable."

"Cisco technical support is unbeatable. It offers a premium service every time."

More Cisco Sourcefire SNORT pros

"Claroty provides continuous threat protection and identifies pre-empty stuff and false positives."

"I believe the two main aspects where Claroty stands out are their ability to provide a complete platform and their OT-specific focus."

"The product helps mitigate potential threats, especially if its users have signature rules. The product also provides alerts."

"Claroty assigns a score based on how well you are doing in the course. If you skip a video, your score decreases, making it essential to watch the content attentively."

"I appreciate the active coding, deep inspection of packages, and data retrieval. The tool covers information about assets and attack vectors, which I find superior to other tools. Based on alerts, I create reports detailing how an attacker can penetrate the plant, both externally and internally."

"The tool's best feature was the UI and the simplicity it offers."

"I have had a very good experience with the Claroty Platform."

"Their SRA solution, the Secure Remote Access solution, is very useful for industrial environments."

More Claroty Platform pros

Cons

"The initial setup is a little difficult compared to other products in the market. It depends on the environment. If we are doing any migration, it might take months in a brown-field environment."

"To be frank, the product is not really stable, although they're working on that. Whenever I go to the technical community with an issue, they will usually say that it is not there yet, but the technical team are working on it. The issues are not insolvable. I think they should just keep working on the product to make sure that the product can become very stable. The technical support is great. I appreciate that. We have a lot of communities supporting Firepower now, so you can find help for whatever issue you have."

"There are problems setting up VPNs for some regions."

"Performance needs improvement."

"The implementation could be a bit easier."

"I want to see a better dashboard for the product. The dashboard can be a bit modified or enhanced."

"Integration with other components — even Cisco's own products — can be enhanced to improve administrative experience."

"I don't think this solution is a time-based control system, because one cannot filter traffic based on time."

More Cisco Sourcefire SNORT cons

"Occasionally, I face a login problem despite entering the correct password."

"There should be AI security solutions implemented."

"If more AI features could be included with the Clarity solution, it would be feasible for everybody."

"There is room for improvement in the user interface to make it more vibrant and interactive, similar to IT tools."

"I've reported four bugs and three feature requests so far. The main area of focus should be on how attacks are detected. The attack vector information needs to be more detailed. For example, it's not enough to state that an SMB v1 version open can lead to a WannaCry attack. A more detailed explanation should help clients understand the various ways an attack could occur."

"There are a few protocols that Claroty doesn't currently support."

"Claroty Platform only gives the vulnerabilities based on the make and model of the devices, so it doesn't provide any resolution or any detailed explanation of how one can resolve such issues."

"The product's integration capabilities are an area of concern where improvements are required."

More Claroty Platform cons

Pricing and Cost Advice

"The cost is per port and can be expensive but it does include training and support for three years."

"Licensing for this solution is paid on a yearly basis."

"We have a three-year license for this solution."

"I don't know the exact amount, but most of the time when I go to a company with a proposition, they will say, "This thing that you are selling is good, but it's expensive. Why don't you propose something like FortiGate, Check Point, or Palo Alto?" Cisco device are expensive compared to other devices."

"If one is an extremely expensive product, and ten is cheap, I rate the tool's price as a five."

"The tool is quite expensive."

"The licensing for physical devices is cheap, but the software version is expensive. The software version costs around 26-28 dollars. I was surprised and even double-checked. It was shocking."

"It's a bit expensive compared to other solutions."

See which vendors are best for you

Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.

See recommendations

879,422 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

University

12%

Financial Services Firm

10%

Comms Service Provider

Computer Software Company

Manufacturing Company

14%

Computer Software Company

11%

Energy/Utilities Company

10%

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	6
Midsize Enterprise	8
Large Enterprise	7

By reviewers
Company Size	Count
Small Business	4
Midsize Enterprise	1
Large Enterprise	11

Questions from the Community

What do you like most about Cisco Sourcefire SNORT?

The product is inexpensive compared to leading brands such as Palo Alto or Fortinet.

See all answers

What is your experience regarding pricing and costs for Cisco Sourcefire SNORT?

If one is an extremely expensive product, and ten is cheap, I rate the tool's price as a five. There are some other tools in the market that are more expensive than Cisco. There are no additional c...

See all answers

What needs improvement with Cisco Sourcefire SNORT?

I have not had much experience with the community-driven rule set while utilizing Cisco Sourcefire SNORT. I don't have experience with recognizing zero-day vulnerabilities, but based on my knowledg...

See all answers

What do you like most about Claroty Platform?

The product helps mitigate potential threats, especially if its users have signature rules. The product also provides alerts.

See all answers

What needs improvement with Claroty Platform?

See all answers

What is your primary use case for Claroty Platform?

My clients are using the Claroty Platform for asset identification, finding CVEs and threat intel. I am aware of the continuous threat detection feature of the Claroty Platform, and even if it is g...

See all answers

Comparisons

Cisco Secure IPS (NGIPS) vs Cisco Sourcefire SNORT

Compared 15% of the time

Fortinet FortiGate vs Cisco Sourcefire SNORT

Compared 15% of the time

Palo Alto Networks Advanced Threat Prevention vs Cisco Sourcefire SNORT

Compared 15% of the time

ExtremeCloud IQ vs Cisco Sourcefire SNORT

Compared 10% of the time

Zscaler Cloud IPS vs Cisco Sourcefire SNORT

Compared 8% of the time

More Cisco Sourcefire SNORT Competitors

Nozomi Networks vs Claroty Platform

Compared 29% of the time

Armis vs Claroty Platform

Compared 9% of the time

Tenable OT Security vs Claroty Platform

Compared 8% of the time

Dragos vs Claroty Platform

Compared 8% of the time

Darktrace vs Claroty Platform

Compared 4% of the time

More Claroty Platform Competitors

Product Reports

Buyer's Guide

Cisco Sourcefire SNORT

December 2025

Download Cisco Sourcefire SNORT product report

Buyer's Guide

Claroty Platform

December 2025

Download Claroty Platform product report

Also Known As

Sourcefire SNORT

No data available

Overview

Snort is an open-source, rule-based, intrusion detection and prevention system. It combines the benefits of signature-, protocol-, and anomaly-based inspection methods to deliver flexible protection from malware attacks. Snort gained notoriety for being able to accurately detect threats at high speeds.

Cisco

The Claroty Platform is tailored for monitoring and securing industrial control systems. It offers deep visibility into OT networks, enabling effective anomaly detection and vulnerability assessments. Its user-friendly interface and robust reporting tools facilitate easy management and compliance, enhancing organizational efficiency and cybersecurity posture in industrial environments.

Claroty

Sample Customers

CareCore, City of Biel, Dimension Data, LightEdge, Lone Star College System, National Rugby League, Port Aventura, Smart City Networks, Telecom Italia, The Department of Education in Western Australia

Rockwell Automation

Buyer's Guide

Intrusion Detection and Prevention Software (IDPS)

December 2025

Download Free Report

Find out what your peers are saying about Fortinet, Darktrace, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS). Updated: December 2025.

DOWNLOAD NOW

879,422 professionals have used our research since 2012.

We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.