We performed a comparison between Corelight and Darktrace based on real PeerSpot user reviews.
Find out in this report how the two Network Traffic Analysis (NTA) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Corelight is easy to use."
"It's easy to create additional dashboards specific to supporting specific tasks."
"It is easy to deploy and easy to handle."
"It's an easy way for us to get visibility in a client's environment."
"The most valuable feature is the embedded IDS from Suricata."
"It is a stable solution without downtime."
"Darktrace is extremely stable."
"Darktrace's most valuable features are that it understands the network environment and is able to trace the traffic and alert on anomalies."
"I have found the automation and AI features to be valuable. If someone were to come in to the office at midnight and log in, Darktrace would flag it."
"We liked their approach to identifying intrusions or network anomalies using AI."
"Darktrace is very useful for us because it has a large number of models for detecting threats."
"It provides a comprehensive, detailed view of network activity and whatever is happening inside it."
"It has helped the organization to detect any malware affecting the machines...The network monitoring and the email monitoring features are very valuable for us."
"Corelight hasn’t added features in a long time."
"In the next release, building a graphical user interface would be helpful."
"They can enhance the interface of the product. They can make it more interactive and also easier to use for feature access."
"Machine learning could be a good improvement, but it's very costly."
"The solution’s architecture is complex and difficult to understand. There are multiple machines and VMs."
"This is quite an expensive product so the pricing is something that can be improved."
"I'd love them to see maybe covering the cloud a bit more."
"Darktrace could expand into EDR (endpoint detection and response) and combine it with its network detection."
"One thing that I would like to look at going forward is to have a fully automated network infrastructure that is monitored automatically real-time, and that gives me this kind of capability where I would be able to look at my network at any given time and see the state of my network. With Darktrace, at the moment, I have to almost put in a date and tell them that want you to give me data from this date to this date. I don't want that. I want a fast solution in which it doesn't matter when I log into the application. Whenever I log in, I must be able to see my network and run a report. In other words, if I go in now and I say, "Give me a full report of what happened today, it must be able to give me that. It mustn't just be limited to a seven-day period, for argument's sake. It must be able to give me real-time and day-to-day tracking of what has happened within my network."
"It's a very complex platform."
"It would be helpful if they could recognize incidents and simplify the customer's challenge to identify what is happening."
"The product doesn't have an endpoint agent that can react to triggers set on the device,"
"In an upcoming release, there could be more customizable playbooks or a library of playbooks to choose from."
Corelight is ranked 7th in Network Traffic Analysis (NTA) with 5 reviews while Darktrace is ranked 1st in Network Traffic Analysis (NTA) with 65 reviews. Corelight is rated 9.0, while Darktrace is rated 8.2. The top reviewer of Corelight writes "An open-source solution that gave us insight into our clients' network traffic flow ". On the other hand, the top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". Corelight is most compared with ExtraHop Reveal(x), Vectra AI, Cisco Secure Network Analytics, Arista NDR and SolarWinds NetFlow Traffic Analyzer, whereas Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and Cybereason Endpoint Detection & Response. See our Corelight vs. Darktrace report.
See our list of best Network Traffic Analysis (NTA) vendors.
We monitor all Network Traffic Analysis (NTA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.