No more typing reviews! Try our Samantha, our new voice AI agent.

Cisco Sourcefire SNORT vs Claroty Platform comparison

The compared Cisco and Claroty solutions aren't in the same category. Cisco is ranked #14 in ID , with an average rating of 8.0, and holds a 3.1% mindshare in the category. Claroty is ranked #2 in CPSP , with an average rating of 8.2, and holds a 40.5% mindshare. Additionally, 95% of Cisco users are willing to recommend the solution, compared to 100% of Claroty users who would recommend it.
Cisco Sourcefire SNORT
Read 20 Cisco Sourcefire SNORT reviews
  • 1,386 Views
  • 1,192 Comparison Views
95% willing to recommend
Claroty Platform
Read 16 Claroty Platform reviews
  • 7,183 Views
  • 790 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Cisco Sourcefire SNORT and Claroty Platform based on real PeerSpot user reviews.

Find out what your peers are saying about Fortinet, Darktrace, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Intrusion Detection and Prevention Software (IDPS) Report (Updated: April 2026).
Buyer's Guide
Intrusion Detection and Prevention Software (IDPS)
April 2026
Download the complete report
Helped 885,837 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Sourcefire SNORT
Average Rating
7.8
Reviews Sentiment
6.8
Number of Reviews
20
Ranking in other categories
Intrusion Detection and Prevention Software (IDPS) (14th)
Claroty Platform
Average Rating
8.2
Reviews Sentiment
7.2
Number of Reviews
16
Ranking in other categories
Remote Access (8th), Vulnerability Management (22nd), Operational Technology (OT) Security (2nd), Cyber-Physical Systems Protection (2nd)
 

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Cisco Sourcefire SNORT is designed for Intrusion Detection and Prevention Software (IDPS) and holds a mindshare of 3.1%, up 2.2% compared to last year.
Claroty Platform, on the other hand, focuses on Cyber-Physical Systems Protection, holds 40.5% mindshare, down 42.9% since last year.
Intrusion Detection and Prevention Software (IDPS) Mindshare Distribution
ProductMindshare (%)
Cisco Sourcefire SNORT3.1%
Fortinet FortiGate12.6%
Darktrace11.2%
Other73.1%
Intrusion Detection and Prevention Software (IDPS)
Cyber-Physical Systems Protection Mindshare Distribution
ProductMindshare (%)
Claroty Platform40.5%
Armis36.6%
Verve Security Center10.0%
Other12.900000000000006%
Cyber-Physical Systems Protection
 

Featured Reviews

reviewer2772102 - PeerSpot reviewer
reviewer2772102
Cloud Architect at a consultancy with 1-10 employees
Logging and customizable rules have helped improve threat monitoring and detection
The logging is mainly what I consider one of the best features with Cisco Sourcefire SNORT. Being able to log and store it in a file allows you to push it to a centralized repository. The logging and reporting help improve incident response. You should always be logging threats, any sort of misconfiguration, and anything that could be an issue. It's important to at least log and monitor it. The basic rules provide a good baseline in assessing Cisco Sourcefire SNORT's ability in providing real-time analytics for threat detection, but as a professional, you should look to constantly modify that baseline. They provide extensive customizability so you can define your own rules. The customizability allows it to be adaptable in protecting against diverse network threats to the constant change.
Read full review
AP
AbhishekPandey5
Senior Consultant at Payatu
Passive scanning excels and support proves invaluable
Regarding the cons of the Claroty Platform, it is not about the deployment, but rather the identification. The Claroty Platform becomes too noisy when it gives numerous CVEs related to vendor match. Sometimes, these CVEs are not actually related to the device in the firmware at the site. The Claroty Platform identifies effectively but sometimes identifies many CVEs which might not be the actual issue in certain scenarios.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The whole solution is very good, and stable."
"The most valuable feature of this solution is the filtering."
"The most valuable features of Cisco Sourcefire SNORT are the dashboard for monitoring events."
"We primarily use this solution as an intrusion prevention system for external firewalls and deploy the solution on-premises."
"Cisco technical support is unbeatable. It offers a premium service every time."
"If you compare it to other vendors, the technical support from Cisco is excellent."
"The most valuable feature is the ability to automatically learn the traffic in our environment, and change the merit recommendations based on that."
"The URL filtering is very good and you can create a group for customized URLs."
More Cisco Sourcefire SNORT pros
"Claroty identifies all vulnerabilities available in our environment."
"The solution offers comprehensive tools that greatly enhance your IT operations if implemented correctly."
"Their SRA solution, the Secure Remote Access solution, is very useful for industrial environments."
"The solution's most valuable feature is the map, which shows everything that is connected and communicates with each other."
"I believe the two main aspects where Claroty stands out are their ability to provide a complete platform and their OT-specific focus."
"I like how the tool does passive and active discovery and threat detection and shows risks, recommendations, and vulnerabilities. It gives risk scores and gathers everything in one place - IP, device name, etc. We can integrate it with other tools for overall network mapping. It's useful for audits, compliance, and monitoring of all devices in the industry. It provides both monitoring and control. We also have SRA for incident response, which lets us search all alerts if we deploy the Claroty Platform."
"Customer service is number one and the best."
"I appreciate the active coding, deep inspection of packages, and data retrieval. The tool covers information about assets and attack vectors, which I find superior to other tools. Based on alerts, I create reports detailing how an attacker can penetrate the plant, both externally and internally."
More Claroty Platform pros
 

Cons

"The pricing needs to be improved."
"I don't think this solution is a time-based control system, because one cannot filter traffic based on time."
"Integration with other components — even Cisco's own products — can be enhanced to improve administrative experience."
"The implementation could be a bit easier."
"We are unhappy with technical support for this solution, and it is not as professional as what we typically expect from Cisco."
"I don't think this solution is a time-based control system, because one cannot filter traffic based on time."
"A lot of Cisco equipment is very good, but in judging the model of this solution that we have, I feel that it is the worst."
"Sometimes the solution will offer up false positives."
More Cisco Sourcefire SNORT cons
"There are a few protocols that Claroty doesn't currently support."
"There is room for improvement in the user interface to make it more vibrant and interactive, similar to IT tools."
"The Claroty Platform becomes too noisy when it gives numerous CVEs related to vendor match. Sometimes, these CVEs are not actually related to the device in the firmware at the site."
"If more AI features could be included with the Clarity solution, it would be feasible for everybody."
"For improvement, I think the training could be more practical. We have external training, but they're mostly theoretical. I want the solution to provide hands-on lab experience to help users learn better."
"There is room for improvement in the user interface to make it more vibrant and interactive, similar to IT tools."
"I've reported four bugs and three feature requests so far. The main area of focus should be on how attacks are detected. The attack vector information needs to be more detailed. For example, it's not enough to state that an SMB v1 version open can lead to a WannaCry attack. A more detailed explanation should help clients understand the various ways an attack could occur."
"I think the only issue is that the hardware Claroty uses is expensive."
More Claroty Platform cons
 

Pricing and Cost Advice

"If one is an extremely expensive product, and ten is cheap, I rate the tool's price as a five."
"Licensing for this solution is paid on a yearly basis."
"We have a three-year license for this solution."
"I don't know the exact amount, but most of the time when I go to a company with a proposition, they will say, "This thing that you are selling is good, but it's expensive. Why don't you propose something like FortiGate, Check Point, or Palo Alto?" Cisco device are expensive compared to other devices."
"The cost is per port and can be expensive but it does include training and support for three years."
"The tool is quite expensive."
"It's a bit expensive compared to other solutions."
"The licensing for physical devices is cheap, but the software version is expensive. The software version costs around 26-28 dollars. I was surprised and even double-checked. It was shocking."
report
See which vendors are best for you
Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
See recommendations
885,837 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
University
10%
Financial Services Firm
10%
Construction Company
8%
Comms Service Provider
8%
Manufacturing Company
15%
Energy/Utilities Company
9%
Computer Software Company
8%
Comms Service Provider
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business6
Midsize Enterprise8
Large Enterprise7
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise1
Large Enterprise11
 

Questions from the Community

What do you like most about Cisco Sourcefire SNORT?
The product is inexpensive compared to leading brands such as Palo Alto or Fortinet.
See all answers
What is your experience regarding pricing and costs for Cisco Sourcefire SNORT?
If one is an extremely expensive product, and ten is cheap, I rate the tool's price as a five. There are some other tools in the market that are more expensive than Cisco. There are no additional c...
See all answers
What needs improvement with Cisco Sourcefire SNORT?
I have not had much experience with the community-driven rule set while utilizing Cisco Sourcefire SNORT. I don't have experience with recognizing zero-day vulnerabilities, but based on my knowledg...
See all answers
What needs improvement with Claroty Platform?
Regarding the cons of the Claroty Platform, it is not about the deployment, but rather the identification. The Claroty Platform becomes too noisy when it gives numerous CVEs related to vendor match...
See all answers
What is your primary use case for Claroty Platform?
My clients are using the Claroty Platform for asset identification, finding CVEs and threat intel. I am aware of the continuous threat detection feature of the Claroty Platform, and even if it is g...
See all answers
What advice do you have for others considering Claroty Platform?
I am using the Claroty Platform but not using Armis. They might be able to integrate AI into the Claroty Platform when they are creating attack vectors. I have had a very good experience with the C...
See all answers
 

Comparisons

Cisco Secure IPS (NGIPS) vs Cisco Sourcefire SNORT Logo
Cisco Secure IPS (NGIPS) vs Cisco Sourcefire SNORT
Compared 12% of the time
TrendAI Tipping Point vs Cisco Sourcefire SNORT Logo
TrendAI Tipping Point vs Cisco Sourcefire SNORT
Compared 9% of the time
Fortinet FortiGate vs Cisco Sourcefire SNORT Logo
Fortinet FortiGate vs Cisco Sourcefire SNORT
Compared 9% of the time
ExtremeCloud IQ vs Cisco Sourcefire SNORT Logo
ExtremeCloud IQ vs Cisco Sourcefire SNORT
Compared 8% of the time
Palo Alto Networks Advanced Threat Prevention vs Cisco Sourcefire SNORT Logo
Palo Alto Networks Advanced Threat Prevention vs Cisco Sourcefire SNORT
Compared 8% of the time
More Cisco Sourcefire SNORT Competitors
Nozomi Networks vs Claroty Platform Logo
Nozomi Networks vs Claroty Platform
Compared 21% of the time
Armis vs Claroty Platform Logo
Armis vs Claroty Platform
Compared 9% of the time
Dragos vs Claroty Platform Logo
Dragos vs Claroty Platform
Compared 8% of the time
Tenable OT Security vs Claroty Platform Logo
Tenable OT Security vs Claroty Platform
Compared 7% of the time
Honeywell Forge vs Claroty Platform Logo
Honeywell Forge vs Claroty Platform
Compared 5% of the time
More Claroty Platform Competitors
 

Product Reports

Buyer's Guide
Cisco Sourcefire SNORT
April 2026
Cisco Sourcefire SNORT reportDownload Cisco Sourcefire SNORT product report
Buyer's Guide
Claroty Platform
April 2026
Claroty Platform reportDownload Claroty Platform product report
 

Also Known As

Sourcefire SNORT
No data available
 

Overview

Snort is an open-source, rule-based, intrusion detection and prevention system. It combines the benefits of signature-, protocol-, and anomaly-based inspection methods to deliver flexible protection from malware attacks. Snort gained notoriety for being able to accurately detect threats at high speeds.

Cisco

The Claroty Platform is tailored for monitoring and securing industrial control systems. It offers deep visibility into OT networks, enabling effective anomaly detection and vulnerability assessments. Its user-friendly interface and robust reporting tools facilitate easy management and compliance, enhancing organizational efficiency and cybersecurity posture in industrial environments.

Claroty
 

Sample Customers

CareCore, City of Biel, Dimension Data, LightEdge, Lone Star College System, National Rugby League, Port Aventura, Smart City Networks, Telecom Italia, The Department of Education in Western Australia
Rockwell Automation
Buyer's Guide
Intrusion Detection and Prevention Software (IDPS)
April 2026
Download Free Report
Find out what your peers are saying about Fortinet, Darktrace, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS). Updated: April 2026.
DOWNLOAD NOW
885,837 professionals have used our research since 2012.

We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.