Try our new research platform with insights from 80,000+ expert users

Darktrace vs LogRhythm NDR comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Nov 24, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Darktrace
Ranking in Network Detection and Response (NDR)
1st
Average Rating
8.2
Reviews Sentiment
7.2
Number of Reviews
77
Ranking in other categories
Email Security (9th), Intrusion Detection and Prevention Software (IDPS) (1st), Network Traffic Analysis (NTA) (1st), Extended Detection and Response (XDR) (5th), AI-Powered Chatbots (2nd), Cloud Security Posture Management (CSPM) (16th), Cloud-Native Application Protection Platforms (CNAPP) (12th), Attack Surface Management (ASM) (3rd), AI-Powered Cybersecurity Platforms (2nd)
LogRhythm NDR
Ranking in Network Detection and Response (NDR)
19th
Average Rating
8.0
Reviews Sentiment
7.0
Number of Reviews
3
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of February 2025, in the Network Detection and Response (NDR) category, the mindshare of Darktrace is 25.3%, down from 26.5% compared to the previous year. The mindshare of LogRhythm NDR is 0.8%, down from 1.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Network Detection and Response (NDR)
 

Featured Reviews

Peter-Murphy - PeerSpot reviewer
Enables proactive threat detection and immediate response through AI monitoring
The most valuable feature of Darktrace is its ability to detect and counter threats before they occur. The autonomous response capability is always enabled, blocking threats immediately without hesitation. Additionally, the Darktrace email platform is a significant asset since it addresses incoming threats before they reach the network, enhancing our security measures. Protecting the business is essential, and ensuring security through 24/7 AI monitoring is invaluable.
AshishDubey - PeerSpot reviewer
A scalable and stable tool that offers users a great GUI
Though I have not extensively worked on LogRhythm NDR, I know the need for a compute side since, in the past, we had required the compute side to deploy the solution in one of our company's client's infrastructure. The product's setup phase was easy and not complicated. The deployment process of LogRhythm NDR can vary between three and four weeks, depending on the skill set of the people involved in the deployment process. For deployment of the product, you have to purchase the license from LogRhythm, and you have to ensure that the compute side is ready for LogRhythm. After you deploy NDR and sensors in the premises of our company's customer on the SPAN and TAP port, and once the logs go through throughput, you can see the logs coming to LogRhythm NDR's console.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The ability to detect activity on the network is very useful to us. Even if it's not necessarily an illegal activity, if it is abnormal activity, it is able to detect it and notify us."
"The features that are most valuable to me include detection, response with analytics, and network detection."
"One member of staff is enough for deployment and maintenance because Darkforce is AI-driven. It does a lot of things by itself."
"It is very easy to work with Darktrace once you know how it works and the type of permissions that you need to get related to the security over a network. The interface is awesome. I'm sure that you have seen Ironman, and you know Jarvis, the computer of Tony Stark. The interface of Darktrace is very similar, and you can see in 3D, like a hologram, the whole network, traffic, and all the traces inside the network. The interface is awesome, and it provides a lot of information. At least for us, it is very easy to handle this interface, get the reports, and do the interpretation of those reports. Darktrace also provides mobile monitoring. With an app on your mobile phone, you can view the information live, which is very useful for area directors and field engineers. Darktrace can be also correlated with any type of big data solution, such as Splunk."
"I like the dashboards, which are cool. They are more user-friendly, in my experience. Its learning capabilities are really good."
"It is very stable and easy to use."
"Darktrace is very stable, and I would rate its stability a ten out of ten."
"The most valuable features of Darktrace are its full capabilities. You have visibility of everything."
"The solution doesn't require the creation of rules or use cases from scratch, which assists our delivery team in installation and deployment. Its dashboard is user-friendly."
"It is a stable solution...It is a scalable solution."
"It's an excellent security tool with a user-friendly interface that's easy for anyone to use."
 

Cons

"The management dashboards and the meter dashboards should be more user-friendly and simple to use for easy management."
"In an upcoming release, there could be more customizable playbooks or a library of playbooks to choose from."
"In the next version, I'd like to see penetration testing."
"The pricing is a bit high for the region."
"It is expensive, but everything else has been great so far."
"The solution's user interface and stability could be improved."
"It should be easier to access the Darktrace portal and its documentation. Only the customer can access their portal and support. It could be cheaper."
"I'd love them to see maybe covering the cloud a bit more."
"The tool has one limitation compared to its competitors. It does have a mobile app for NDR monitoring. Moreover, there is only operational training and not deployment training."
"There are opportunities for improvement, particularly in upgrading the expertise of local professionals and addressing support issues, which could potentially lead to cost reduction."
"From an improvement perspective, I would like LogRhythm NDR to reduce the compute size. I would also like LogRhythm NDR to improve the pricing model."
 

Pricing and Cost Advice

"I am using a demo of Darktrace for deployment and testing which is free."
"The product is expensive."
"There is an annual license to use Darktrace."
"The price of the solution is not cheap. It is not a one-time purchase, there is a subscription that needs to be paid every one to five years depending on your choice. It is expensive but you can reduce the price by only using the services that you want."
"It is expensive. I don't have the price for other competitors."
"The tool's pricing is costly."
"The pricing is subscription-based and it is high."
"They are too expensive compared with other vendors."
"The tool costs are two million rupees for 5000 users."
"When looking at the market and comparing it with other vendors, the cost seems relatively high."
"There are certain payments to be made towards the licensing costs attached to the product yearly. The pricing of LogRhythm NDR falls under the mid-range, in my opinion."
report
Use our free recommendation engine to learn which Network Detection and Response (NDR) solutions are best for your needs.
838,640 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Manufacturing Company
8%
Financial Services Firm
8%
Government
7%
Computer Software Company
16%
Manufacturing Company
12%
Marketing Services Firm
10%
Financial Services Firm
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

How does Crowdstrike Falcon compare with Darktrace?
Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a cl...
Which is better - SentinelOne or Darktrace?
Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is meant for smaller to medium-sized businesses. It is also a good option for organ...
What do you like most about Darktrace?
A very useful feature in Darktrace for real-time threat analysis is the packet inspection that analyzes the packet traffic in real time.
What do you like most about LogRhythm NDR?
It is a stable solution...It is a scalable solution.
What needs improvement with LogRhythm NDR?
The tool has one limitation compared to its competitors. It does have a mobile app for NDR monitoring. Moreover, there is only operational training and not deployment training.
 

Comparisons

No data available
 

Also Known As

No data available
LogRhythm MistNet
 

Overview

 

Sample Customers

Irwin Mitchell, Open Energi, Wellcome Trust, FirstGroup plc, Virgin Trains, Drax, QUI! Group, DNK, CreaCard, Macrosynergy, Sisley, William Hill plc, Toyota Canada, Royal British Legion, Vitol, Allianz, KKR, AIRBUS, dpd, Billabong, Mclaren Group.
EMW, Conduent, University of Massachusetts, Deloitte Canada, Central Bank of Barbados, Coalfire
Find out what your peers are saying about Darktrace vs. LogRhythm NDR and other solutions. Updated: January 2025.
838,640 professionals have used our research since 2012.