No more typing reviews! Try our Samantha, our new voice AI agent.

Cisco Sourcefire SNORT vs Claroty Platform comparison

The compared Cisco and Claroty solutions aren't in the same category. Cisco is ranked #14 in ID , with an average rating of 8.5, and holds a 3.0% mindshare in the category. Claroty is ranked #2 in CPSP , with an average rating of 8.3, and holds a 38.1% mindshare. Additionally, 95% of Cisco users are willing to recommend the solution, compared to 100% of Claroty users who would recommend it.
Cisco Sourcefire SNORT
Read 20 Cisco Sourcefire SNORT reviews
  • 2,025 Views
  • 1,721 Comparison Views
95% willing to recommend
Claroty Platform
Read 18 Claroty Platform reviews
  • 8,597 Views
  • 860 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Cisco Sourcefire SNORT and Claroty Platform based on real PeerSpot user reviews.

Find out what your peers are saying about Fortinet, Darktrace, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Intrusion Detection and Prevention Software (IDPS) Report (Updated: June 2026).
Buyer's Guide
Intrusion Detection and Prevention Software (IDPS)
June 2026
Download the complete report
Helped 900,277 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Sourcefire SNORT
Average Rating
7.8
Reviews Sentiment
6.8
Number of Reviews
20
Ranking in other categories
Intrusion Detection and Prevention Software (IDPS) (14th)
Claroty Platform
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
18
Ranking in other categories
Remote Access (9th), Vulnerability Management (24th), Operational Technology (OT) Security (2nd), Cyber-Physical Systems Protection (2nd)
 

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Cisco Sourcefire SNORT is designed for Intrusion Detection and Prevention Software (IDPS) and holds a mindshare of 3.0%, up 2.5% compared to last year.
Claroty Platform, on the other hand, focuses on Cyber-Physical Systems Protection, holds 38.1% mindshare, down 42.3% since last year.
Intrusion Detection and Prevention Software (IDPS) Mindshare Distribution
ProductMindshare (%)
Cisco Sourcefire SNORT3.0%
Darktrace10.3%
Fortinet FortiGate9.6%
Other77.1%
Intrusion Detection and Prevention Software (IDPS)
Cyber-Physical Systems Protection Mindshare Distribution
ProductMindshare (%)
Claroty Platform38.1%
Armis35.6%
Phosphorus Cybersecurity10.7%
Other15.599999999999994%
Cyber-Physical Systems Protection
 

Featured Reviews

reviewer2772102 - PeerSpot reviewer
reviewer2772102
Cloud Architect at a consultancy with 1-10 employees
Logging and customizable rules have helped improve threat monitoring and detection
The logging is mainly what I consider one of the best features with Cisco Sourcefire SNORT. Being able to log and store it in a file allows you to push it to a centralized repository. The logging and reporting help improve incident response. You should always be logging threats, any sort of misconfiguration, and anything that could be an issue. It's important to at least log and monitor it. The basic rules provide a good baseline in assessing Cisco Sourcefire SNORT's ability in providing real-time analytics for threat detection, but as a professional, you should look to constantly modify that baseline. They provide extensive customizability so you can define your own rules. The customizability allows it to be adaptable in protecting against diverse network threats to the constant change.
Read full review
TarunKumar11 - PeerSpot reviewer
TarunKumar11
Member Of Leadership Advisory Council at a tech company with 10,001+ employees
Improved industrial asset visibility has transformed risk management and compliance monitoring
I think there are some areas of weaknesses in Claroty Platform. The pricing could improve, as some of the features require licensing tiers and therefore the pricing could be higher. Claroty Platform could benefit from simpler licensing and pricing structures. The executive dashboard can improve as well, and they can expand their third-party integration. Additionally, their predictive AI-driven recommendations can be improved. I think it does provide for very good behavior analysis through AI capabilities and risk prioritization, which is generally quite trustworthy. As the capability of AI enhances, I think it can provide for better risk recommendations. Claroty Platform can have a better and simpler licensing arrangement. Their third-party integrations can expand. They can have better executive dashboards and more AI-driven predictive risk recommendations. I would rate them an eight for these reasons. Dashboards, licensing, integrations, and AI-driven recommendations are areas for improvement. Probably one more to add is that they can have better and more enhanced automated remediation workflows.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"With Cisco Sourcefire SNORT, we've been able to prevent and detect intrusion in our network and actually decrease our SLA (Service Level Agreement)."
"I like most of Cisco's features, like malware detection and URL filtering."
"It simplifies the configuration process by offering pre-defined base configurations, including security and connectivity settings."
"The most valuable features of Cisco Sourcefire SNORT are the dashboard for monitoring events."
"We primarily use this solution as an intrusion prevention system for external firewalls and deploy the solution on-premises."
"The most valuable feature is the visibility that we have across the virtual environment."
"It has a huge rate of protection. It's has a low level of positives and a huge rate of threat protection. It's easy to deploy and easy to implement. It has an incredible price rate compared to similar solutions."
"Users have access to intelligent security automation as one of the features, which can easily automate your event impact assessment so your IPS policy tuning can be done as well as your network behavior analysis, and you can do real-time contextual awareness with correlation of events created on your applications, user devices, operating systems, or vulnerabilities, with all of this real-time data captured including your apps and port scans."
More Cisco Sourcefire SNORT pros
"The product helps mitigate potential threats, especially if its users have signature rules. The product also provides alerts."
"The platform ensures security without imposing significant delays, boosts productivity, and allows secure remote access to engineers through advanced methods while providing seamless integration with legacy systems and supporting both passive and active reconnaissance."
"I have had a very good experience with the Claroty Platform."
"Customer service is number one and the best."
"Our different execution team is there to handle it, but overall, the product is pretty easy to deploy and integrate with the existing system."
"After implementation of Claroty Platform, the visibility goes up to one hundred percent, which otherwise was probably in the range of 60 to 70 percent, and this really has a lot of business impact on security, compliance, and operations."
"The solution offers comprehensive tools that greatly enhance your IT operations if implemented correctly."
"I appreciate the active coding, deep inspection of packages, and data retrieval. The tool covers information about assets and attack vectors, which I find superior to other tools. Based on alerts, I create reports detailing how an attacker can penetrate the plant, both externally and internally."
More Claroty Platform pros
 

Cons

"I don't think this solution is a time-based control system, because one cannot filter traffic based on time."
"The pricing needs to be improved. We have lots of low-budget clients around us. Budget constraints are always a deterrent in our market."
"This solution needs to be more customizable."
"The utopia is to see everything from one dashboard, but sometimes that's not very possible."
"If the price is brought down then everybody will be happy."
"The pricing needs to be improved."
"The main dashboard of Cisco Sourcefire SNORT could improve."
"We are unhappy with technical support for this solution, and it is not as professional as what we typically expect from Cisco."
More Cisco Sourcefire SNORT cons
"We face issues in the alert investigation area because it does not properly give the alert communication patterns."
"There should be AI security solutions implemented."
"The Claroty Platform becomes too noisy when it gives numerous CVEs related to vendor match. Sometimes, these CVEs are not actually related to the device in the firmware at the site."
"There are a few protocols that Claroty doesn't currently support."
"The product could be improved in terms of user interface design."
"The product's integration capabilities are an area of concern where improvements are required."
"If more AI features could be included with the Clarity solution, it would be feasible for everybody."
"Claroty Platform only gives the vulnerabilities based on the make and model of the devices, so it doesn't provide any resolution or any detailed explanation of how one can resolve such issues."
More Claroty Platform cons
 

Pricing and Cost Advice

"Licensing for this solution is paid on a yearly basis."
"The cost is per port and can be expensive but it does include training and support for three years."
"I don't know the exact amount, but most of the time when I go to a company with a proposition, they will say, "This thing that you are selling is good, but it's expensive. Why don't you propose something like FortiGate, Check Point, or Palo Alto?" Cisco device are expensive compared to other devices."
"We have a three-year license for this solution."
"If one is an extremely expensive product, and ten is cheap, I rate the tool's price as a five."
"The tool is quite expensive."
"It's a bit expensive compared to other solutions."
"The licensing for physical devices is cheap, but the software version is expensive. The software version costs around 26-28 dollars. I was surprised and even double-checked. It was shocking."
report
See which vendors are best for you
Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
See recommendations
900,277 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
10%
Construction Company
10%
Comms Service Provider
8%
University
8%
Manufacturing Company
15%
Energy/Utilities Company
9%
Computer Software Company
6%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise8
Large Enterprise7
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise1
Large Enterprise13
 

Questions from the Community

What is your experience regarding pricing and costs for Cisco Sourcefire SNORT?
If one is an extremely expensive product, and ten is cheap, I rate the tool's price as a five. There are some other tools in the market that are more expensive than Cisco. There are no additional c...
See all answers
What needs improvement with Cisco Sourcefire SNORT?
I have not had much experience with the community-driven rule set while utilizing Cisco Sourcefire SNORT. I don't have experience with recognizing zero-day vulnerabilities, but based on my knowledg...
See all answers
What is your primary use case for Cisco Sourcefire SNORT?
Endpoint protection is the main use case. The main aspect involves specifying different rules, and when network traffic hits these rules, it will try to block the traffic or at least log the traffi...
See all answers
What needs improvement with Claroty Platform?
I think there are some areas of weaknesses in Claroty Platform. The pricing could improve, as some of the features require licensing tiers and therefore the pricing could be higher. Claroty Platfor...
See all answers
What is your primary use case for Claroty Platform?
I think a lack of visibility into industrial assets is the main use case for Claroty Platform. Claroty Platform is a cyber-physical system security platform. Lack of visibility into industrial asse...
See all answers
What advice do you have for others considering Claroty Platform?
Claroty Platform has impacted my organization positively by reducing cyber risk, by making the incident detection faster, by improving compliance readiness, reducing operational downtime, and overa...
See all answers
 

Comparisons

Cisco Secure IPS (NGIPS) vs Cisco Sourcefire SNORT Logo
Cisco Secure IPS (NGIPS) vs Cisco Sourcefire SNORT
Compared 10% of the time
ExtremeCloud IQ vs Cisco Sourcefire SNORT Logo
ExtremeCloud IQ vs Cisco Sourcefire SNORT
Compared 9% of the time
Splunk User Behavior Analytics vs Cisco Sourcefire SNORT Logo
Splunk User Behavior Analytics vs Cisco Sourcefire SNORT
Compared 9% of the time
TrendAI Tipping Point vs Cisco Sourcefire SNORT Logo
TrendAI Tipping Point vs Cisco Sourcefire SNORT
Compared 8% of the time
Fortra's Tripwire Enterprise vs Cisco Sourcefire SNORT Logo
Fortra's Tripwire Enterprise vs Cisco Sourcefire SNORT
Compared 8% of the time
More Cisco Sourcefire SNORT Competitors
Nozomi Networks vs Claroty Platform Logo
Nozomi Networks vs Claroty Platform
Compared 17% of the time
Armis vs Claroty Platform Logo
Armis vs Claroty Platform
Compared 8% of the time
Dragos vs Claroty Platform Logo
Dragos vs Claroty Platform
Compared 8% of the time
Tenable OT Security vs Claroty Platform Logo
Tenable OT Security vs Claroty Platform
Compared 5% of the time
Honeywell Forge vs Claroty Platform Logo
Honeywell Forge vs Claroty Platform
Compared 5% of the time
More Claroty Platform Competitors
 

Product Reports

Buyer's Guide
Cisco Sourcefire SNORT
June 2026
Cisco Sourcefire SNORT reportDownload Cisco Sourcefire SNORT product report
Buyer's Guide
Claroty Platform
June 2026
Claroty Platform reportDownload Claroty Platform product report
 

Also Known As

Sourcefire SNORT
No data available
 

Overview

Cisco Sourcefire SNORT is a versatile cybersecurity tool offering threat detection, scalability, and integration with Cisco tools. It is recognized for ease of configuration and comprehensive protection, making it suitable for intrusion prevention and firewall applications.

Cisco Sourcefire SNORT provides advanced malware protection and integrates seamlessly with Cisco products. It enables automatic IPS tuning, real-time visibility, and intelligent security automation, which together enhance network security. Users benefit from its URL filtering, email spam elimination, and it delivers low false positives. Though highly effective, feedback highlights a desire for improvements in stability, dashboard effectiveness, traffic blocking customizations, and integration with Cisco DNA Center. Cost concerns and calls for cloud-based deployments also emerge in user feedback. Technical support and performance are also discussed, with VPN configuration posing challenges.

What are the key features of Cisco Sourcefire SNORT?
  • Threat Detection: Identifies and mitigates network threats efficiently.
  • Scalability: Easily adapts to growing network demands.
  • Cisco Integration: Works smoothly with existing Cisco infrastructure.
  • Advanced Malware Protection: Provides comprehensive security against sophisticated threats.
  • Real-Time Visibility: Offers live insights into network activity.
  • Automatic IPS Tuning: Adjusts security policies dynamically.
What benefits can be found in user reviews?
  • Ease of Configuration: Streamlined setup process.
  • Comprehensive Protection: Low false positive rates ensuring broader security.
  • Robust Support: Access to extensive Cisco support network.

Organizations primarily deploy Cisco Sourcefire SNORT for network security in sectors like finance and healthcare. Used extensively in data centers with Cisco Firepower, it provides intrusion prevention, URL filtering, and VPN security. Pre-configured settings make it practical for on-premises deployment, ensuring secure user-to-server and server-to-server interactions.

Cisco

The Claroty Platform is tailored for monitoring and securing industrial control systems. It offers deep visibility into OT networks, enabling effective anomaly detection and vulnerability assessments. Its user-friendly interface and robust reporting tools facilitate easy management and compliance, enhancing organizational efficiency and cybersecurity posture in industrial environments.

Claroty
 

Sample Customers

CareCore, City of Biel, Dimension Data, LightEdge, Lone Star College System, National Rugby League, Port Aventura, Smart City Networks, Telecom Italia, The Department of Education in Western Australia
Rockwell Automation
Buyer's Guide
Intrusion Detection and Prevention Software (IDPS)
June 2026
Download Free Report
Find out what your peers are saying about Fortinet, Darktrace, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS). Updated: June 2026.
DOWNLOAD NOW
900,277 professionals have used our research since 2012.

We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.