Try our new research platform with insights from 80,000+ expert users

Darktrace vs Fortra's Tripwire Enterprise comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Nov 24, 2024
 

Categories and Ranking

Darktrace
Ranking in Intrusion Detection and Prevention Software (IDPS)
1st
Average Rating
8.2
Reviews Sentiment
7.2
Number of Reviews
75
Ranking in other categories
Email Security (12th), Network Traffic Analysis (NTA) (1st), Network Detection and Response (NDR) (1st), Extended Detection and Response (XDR) (4th), AI-Powered Chatbots (3rd), Cloud Security Posture Management (CSPM) (16th), Cloud-Native Application Protection Platforms (CNAPP) (12th), Attack Surface Management (ASM) (3rd), AI-Powered Cybersecurity Platforms (1st)
Fortra's Tripwire Enterprise
Ranking in Intrusion Detection and Prevention Software (IDPS)
16th
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
8
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of December 2024, in the Intrusion Detection and Prevention Software (IDPS) category, the mindshare of Darktrace is 19.4%, up from 16.6% compared to the previous year. The mindshare of Fortra's Tripwire Enterprise is 1.5%, up from 1.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Intrusion Detection and Prevention Software (IDPS)
 

Featured Reviews

Luis KiambatA - PeerSpot reviewer
Great autonomous support, offers an easy setup, and has responsive support
The autonomous response is great. It blocks basically everything that is outside the normal, and what's happening 24/7. When we don't have anybody looking, it's great. The visibility that it gives you into any incident is great. You can see everything. I would say these two are the biggest aspects we really appreciate. It is easy to set everything up. The solution is stable. Users can scale the product. Technical support is helpful and responsive.
reviewer2093205 - PeerSpot reviewer
It has excellent scalability and allows you to execute custom COCR rules, letting you fine-tune agent monitoring
I'm using Tripwire Enterprise version 9.0. In my company, thirty to forty people use Tripwire Enterprise, mainly different types of engineers, governance, risk, compliance, and cybersecurity personnel. I advise people planning to use Tripwire Enterprise to take the training because the solution has a fairly complex interface. You can do a lot of work with it, but it isn't very easy. Tripwire Enterprise is a sophisticated tool. I rate the tool an eight on a scale of one to ten because it does an excellent job of handling the unique challenges of maintaining NERC CIP compliance and monitoring industrial controls.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of Darktrace and the most valuable feature is the artificial intelligence module because that is the tool that determines automatically if there is any risk or not in the network."
"I particularly like Antigena and the analytics around the real-time monitoring of our network. I also like its reporting because it has got a seven-day reporting period within the system. Every time you run the reports, it gives you the data about the previous seven days. I like that because it is in real-time. I enjoy reading those reports and getting a very clear and decisive idea of what's happening on my network on a real-time basis. I like the actual real-time monitoring of spoofing and things like that. I also like the user monitoring as well as the network logging capabilities."
"I like the dashboards, which are cool. They are more user-friendly, in my experience. Its learning capabilities are really good."
"The platform has many modules, and each module examines a different situation in the behavior."
"The initial setup is simple."
"The ability to see what we have not seen before is most valuable. It is very interesting to find out the most vulnerable devices in our network."
"The Antigena feature is most valuable. Once it learns your environment, Antigena can step in and block a denial of service attack, a ransomware attack, or just about anything that doesn't belong in the environment. It can detect any type of attack that hits the environment because it understands what normal looks like for the network. It is very useful for an autonomous response."
"I am impressed with the product's ability to give insights into network traffic."
"File monitoring is the most valuable feature of the solution."
"Its reporting features are great. It gives you an in-depth report. Its customization is also great, and it is working fine."
"The most valuable feature is integrity management. I had some discussions with service providers, and they also agreed."
"Even if you change a single word in Notepad, it will let you know whether it was added, removed, or modified."
"What's most valuable in Tripwire Enterprise is the ability to execute custom COCR rules that lets me fine-tune how I monitor Linux and Windows agents."
"The product supports different platforms."
"We use Tripwire Enterprise as a tool to test the vulnerability of a network. That is the most valuable feature of the product for us."
"The most valuable feature is the integrity."
 

Cons

"The pricing needs improvement."
"They just need to make it a little bit more accurate as far as their alerts are concerned. It does generate some false positives that you have to tune. You have to do a lot of tuning when you first get it because of the false positives, but once it is all tuned up and ready to go, it will do its thing from there."
"Its threat analyzer could be better. It should also have agents. They should improve this product by installing agents for the machine to get more visibility. Currently, they are monitoring only the network. They should also monitor the agents from inside. It should also have a better pricing plan because it is an expensive product."
"There are still some issues with the network capturing or blocking traffic even after implementing exceptions. It requires more learning in this area."
"One thing I would like is for Darktrace to flag SMB traffic more accurately. Currently, it only flags that SMB traffic has occurred, but it doesn't specify which file was being transferred. This makes it difficult to investigate incidents involving SMB traffic, as we don't have concrete evidence of what was being sent."
"There is a high ratio of false positive information."
"The pricing model is a little too high and could be more flexible."
"In terms of improvements, fine-tuning is the area where we have to spend some time because it works on unsupervised machine learning. It would be good if they can improve their algorithm or technical functionality to reduce the fine-tuning effort. They can also come up with something at the endpoint level. So far, Darktrace has been a network detection response (NDR) solution. It does not offer much at the endpoint level or on user-client devices or servers. There should be more visibility at the endpoint level. It would be good to have the detection and response at the endpoint level by Darktrace. It should also have integration with an agile environment so that we can have continuous development and continuous integration in the application development environment. This is currently not there. It should also have internet-facing platform visibility, which is currently missing. They also need to improve the reporting and management dashboards. Currently, these are not so easy for a non-technical person. All these features would make Darktrace much better, and they would also be helpful in selling more solutions."
"The main way that it can be improved is through better reporting."
"Cloud monitoring could be better. It would also be better if the company followed a pay-as-you-use model."
"An area for improvement in Tripwire Enterprise is stability, as my company had stability issues with the last few versions of the solution. Tripwire Enterprise has been a bit buggy."
"It needs more local support from the OEM side. It would be great if this can be improved."
"The initial setup is complex."
"The deployment with certain systems can be difficult and it needs to be simplified."
"The Windows online integration license needs to be improved."
"A lot of network devices need a custom integration."
 

Pricing and Cost Advice

"It is expensive. I don't have the price for other competitors."
"This solution is expensive."
"The price of the solution is not cheap. It is not a one-time purchase, there is a subscription that needs to be paid every one to five years depending on your choice. It is expensive but you can reduce the price by only using the services that you want."
"The pricing is reasonable."
"The pricing is very flexible for Darktrace. Sometimes, a customer does not have the appropriate budget, but Darktrace can handle that. They offer monthly payments, so the customer can acquire the solution very easily."
"It's an expensive solution."
"The pricing is expensive. It costs over $100,000 a year."
"The product is expensive."
"Cloud monitoring could be better. It could also be cheaper. It would be better if the company followed a pay-as-you-use model."
"The licensing depends on the equipment, how many devices and the types of devices."
"Tripwire is more expensive than Netwrix."
report
Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
824,053 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
8%
Manufacturing Company
8%
Government
7%
Financial Services Firm
16%
University
14%
Manufacturing Company
10%
Energy/Utilities Company
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How does Crowdstrike Falcon compare with Darktrace?
Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a cl...
Which is better - SentinelOne or Darktrace?
Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is meant for smaller to medium-sized businesses. It is also a good option for organ...
What do you like most about Darktrace?
A very useful feature in Darktrace for real-time threat analysis is the packet inspection that analyzes the packet traffic in real time.
What do you like most about Tripwire Enterprise?
The product supports different platforms.
What needs improvement with Tripwire Enterprise?
The solution has some limitations in OT, IoT, and AIX. The product must provide whitelisting services.
 

Learn More

 

Overview

 

Sample Customers

Irwin Mitchell, Open Energi, Wellcome Trust, FirstGroup plc, Virgin Trains, Drax, QUI! Group, DNK, CreaCard, Macrosynergy, Sisley, William Hill plc, Toyota Canada, Royal British Legion, Vitol, Allianz, KKR, AIRBUS, dpd, Billabong, Mclaren Group.
1. Aetna 2. Adobe 3. ADP 4. Airbus 5. Amazon 6. American Express 7. Aon 8. ATT 9. Bank of America 10. Barclays 11. Baxter International 12. Bechtel 13. Boeing 14. Cisco Systems 15. CocaCola 16. Comcast 17. Dell 18. ETRADE 19. ExxonMobil 20. Ford Motor Company 21. General Electric 22. General Motors 23. Google 24. JPMorgan Chase 25. Kraft Foods 26. Lockheed Martin 27. McDonald's 28. Merck 29. Microsoft 30. Morgan Stanley 31. Nike 32. Oracle
Find out what your peers are saying about Darktrace vs. Fortra's Tripwire Enterprise and other solutions. Updated: December 2024.
824,053 professionals have used our research since 2012.