We performed a comparison between Cisco Sourcefire SNORT and Darktrace based on real PeerSpot user reviews.
Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Cisco Sourcefire SNORT is easy to configure and the reporting is great. It's also very user-friendly."
"The solution is rather easy to use."
"Cisco technical support is unbeatable. It offers a premium service every time."
"The most valuable feature of this solution is the filtering."
"The solution is stable."
"The solution can be integrated with some network electors like Cisco Stealthwatch, Cisco ISE, and Active Directory to provide the client with authentication certificates."
"The most valuable feature is the ability to automatically learn the traffic in our environment, and change the merit recommendations based on that."
"Solid intrusion detection and prevention that scales easily in very large environments."
"The most valuable feature of Darktrace is the AI that detects abnormal network activity."
"The product offers us a very good user interface and we've found the network visibility to be very good so far."
"I have used multiple solutions, but its graphical user interface is quite interesting and quite descriptive. There are a lot of video animations, and we can easily see how the data is transferred between various points. That's something really interesting. It is also quite easy to understand for a new user."
"The most valuable feature of this solution is that it does not require human intervention to eliminate a threat."
"It is very stable and easy to use."
"One thing I appreciate is Antigena Email, which is for email protection."
"I am impressed with the product's ability to give insights into network traffic."
"AI analytics are built directly into the product."
"To be frank, the product is not really stable, although they're working on that. Whenever I go to the technical community with an issue, they will usually say that it is not there yet, but the technical team are working on it. The issues are not insolvable. I think they should just keep working on the product to make sure that the product can become very stable. The technical support is great. I appreciate that. We have a lot of communities supporting Firepower now, so you can find help for whatever issue you have."
"I don't think this solution is a time-based control system, because one cannot filter traffic based on time."
"The customization of the rules can be simplified."
"The pricing needs to be improved. We have lots of low-budget clients around us. Budget constraints are always a deterrent in our market."
"I did not experience any pain points that required improvement. Maybe a couple of false-positives, but that's about it."
"I would like to have analytics included in the suite."
"The main dashboard of Cisco Sourcefire SNORT could improve."
"Integration with other components — even Cisco's own products — can be enhanced to improve administrative experience."
"There aren't so many third-party vendor platforms natively integrated with the platform."
"It would be good if they can include some endpoint protection for remote workers. Nowadays, most people are working remotely. Therefore, they should include some type of sensors that can be installed on the endpoint in order to directly report the main usage and protect remotely. Phone protection will also be a great feature to add to Darktrace."
"I would like to see some additional enhancements."
"I was under impression that Darktrace's automatic blocking would be an out-of-the-box feature, but we had to integrate it with our firewall to get it to block automatically. The salesperson should be upfront and explain that you need to integrate it with your network. I would also like to see more reporting on risk. Banks in my region want to see at a glance the risk level of various assets."
"I would like to see a feature where the tool ingests information from an anti-malware product that is present at the endpoint."
"I believe their network monitoring device licensing module could use some improvement."
"I think there is some MSSP missing."
"The level of tracking within the network from the transmission level up to the machine level can use improvement."
Cisco Sourcefire SNORT is ranked 11th in Intrusion Detection and Prevention Software (IDPS) with 18 reviews while Darktrace is ranked 1st in Intrusion Detection and Prevention Software (IDPS) with 66 reviews. Cisco Sourcefire SNORT is rated 7.6, while Darktrace is rated 8.2. The top reviewer of Cisco Sourcefire SNORT writes "An IPS solution for security and protection but lacks stability". On the other hand, the top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". Cisco Sourcefire SNORT is most compared with Fortinet FortiGate IPS, Cisco NGIPS, Check Point IPS, Palo Alto Networks Advanced Threat Prevention and Vectra AI, whereas Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and ExtraHop Reveal(x). See our Cisco Sourcefire SNORT vs. Darktrace report.
See our list of best Intrusion Detection and Prevention Software (IDPS) vendors.
We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.