ExtraHop Reveal(x) 360 vs Threat Stack Cloud Security Platform comparison

ExtraHop Networks and Threat Stack are both solutions in the Intrusion Detection and Prevention Software (IDPS) category. ExtraHop Networks is ranked #19 with an average rating of 8.5, while Threat Stack is ranked #24. Additionally, 100% of ExtraHop Networks users are willing to recommend the solution, compared to 88% of Threat Stack users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 16, 2024

Threat Stack Cloud Security Platform and ExtraHop Reveal(x) 360 are two prominent cloud security solutions. Threat Stack has an edge in terms of ease of deployment, while ExtraHop provides more comprehensive features, making it a preferred choice for users who value robust functionality.

Features: Threat Stack users value its real-time threat detection, compliance management, and straightforward deployment. ExtraHop users appreciate its advanced threat analysis, real-time visibility, and sophisticated features, giving it an advantage in this area.

Room for Improvement: Threat Stack users want better alert filtering, enhanced dashboard customization, and more detailed documentation. ExtraHop users suggest better integration capabilities, improved documentation, and more intuitive interface design.

Ease of Deployment and Customer Service: Threat Stack is praised for its straightforward deployment and responsive support. ExtraHop receives positive feedback for deployment ease, scoring higher for technical support efficiency.

Pricing and ROI: Threat Stack often has a more attractive initial setup cost and faster ROI. ExtraHop, while more expensive, is considered to deliver superior value over time due to its extensive features and performance.

To learn more, read our detailed ExtraHop Reveal(x) 360 vs. Threat Stack Cloud Security Platform Report (Updated: November 2024).

Buyer's Guide

ExtraHop Reveal(x) 360 vs. Threat Stack Cloud Security Platform

November 2024

Download the complete report

Helped 825,609 peers since 2012

Categories and Ranking

SentinelOne Singularity Clo...

Featured Reviews

Andrew W

VP - Information Technology at a financial services firm with 201-500 employees

Tells us about vulnerabilities as well as their impact and helps to focus on real issues

Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.

Read full review

Maksym Toporkov

Head of Research And Development at Quipu GmbH

A competitive choice for network detection and response with exceptional user interface, ease of implementation and minimal false positives

The NDR feature analyzes network traffic, creating records with connection details. While these records offer insights, there's a limitation in investigating payloads directly. ExtraHop provides an option for an additional server to save payloads, but its temporary storage has constraints. Unlike some competitors, it lacks an automatic payload-saving feature for each detection, presenting an improvement opportunity. Suggested enhancement involves the main sensor prompting payload storage for specific detections, streamlining the investigation process, and contributing to a more efficient workflow. A drawback includes packet storage limitations for payload data, necessitating timely extraction for thorough investigations.

Read full review

Skyler Cain

Software Development Manager at Rent Dynamics

SecOps program for us, as a smaller company, is amazing; they know what to look for

They could give a few more insights into security groups and recommendations on how to be more effective. That's getting more into the AWS environment, specifically. I'm not sure if that's Threat Stack's plan or not, but I would like them to help us be efficient about how we're setting up security groups. They could recommend separation of VPCs and the like - really dig into our architecture. I haven't seen a whole lot of that and I think that's something that, right off the bat, could have made us smarter. Even as part of the SecOps Program, that could be helpful; a quick analysis. They're analyzing our whole infrastructure and saying, "You have one VPC and that doesn't make a lot of sense, that should be multiple VPCs and here's why." The architecture of the servers in whatever cloud-hosting provider you're on could be helpful. Other than that, they should continue to expand on their notifications and on what's a vulnerability. They do a great job of that and we want them to continue to do that. It would be cool, since the agent is already deployed and they know about the server, they know the IP address, and they know what vulnerability is there, for them to test the vulnerability and see if they can actually exploit it. Or, once we patch it, they could double-check that it can't be. I don't know how hard that would be to build. Thinking on it off the top off my head, it could be a little challenging but it could also be highly interesting. It would also be great if we could test a couple of other features like hammering a server with 100 login attempts and see what happens. Real test scenarios could be really helpful. That is probably more something close to what they do with the SOC 2 audit or the report. But more visualization of that, being able to test things out on our infrastructure to make sure we can or can't hit this box could be interesting.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Cloud Native Security's most valuable features include cloud misconfiguration detection and remediation, compliance monitoring, a robust authentication security engine, and cloud threat detection and response capabilities."

"The most valuable feature of SentinelOne Singularity Cloud Security is its advanced AI and machine learning capabilities, which allow it to identify and respond to threats in real time."

"Cloud Native Security's best feature is its ability to identify hard-coded secrets during pull request reviews."

"It has a user-friendly dashboard that I can access without any difficulty."

"Atlas security graph is pretty cool. It maps out relationships between components on AWS, like load balancers and servers. This helps visualize potential attack paths and even suggests attack paths a malicious actor might take."

"It is advantageous in terms of time-saving and cost reduction."

"Cloud Native Security offers a valuable tool called an offensive search engine."

"PingSafe can integrate all your cloud accounts and resources you create in the AWS account, We have set it up to scan the AWS transfer services, EC2, security groups, and GitHub."

More SentinelOne Singularity Cloud Security pros

"It stands out for its intuitive and efficient user interface, robust detection capabilities with minimal false positives, and the ability to handle encrypted traffic, making it a valuable asset for network security and management."

"It is scalable."

"It is very easy to collect and handle data in ExtraHop Reveal(X) Cloud. Integration with Big Data is also easy. Many of our customers integrate it with Big Data platforms like Splunk or Elastic. It is also easy to handle and easy to understand."

"It is scalable. It deploys easily with curl and yum."

"There has been a measurable decrease in the meantime to remediation... because we have so many different tech verticals already collated in one place, our ability to respond is drastically different than it used to be."

"We like the ability of the host security module to monitor the processes running on our servers to help us monitor activity."

"It has been quite helpful to have the daily alerts coming to my email, as well as the Sev 1 Alerts... We just went through a SOX audit and those were pivotal."

"With Threat Stack, we quickly identified some AWS accounts which had services that would potentially be exposed and were able to remediate them prior to release of products."

"An important feature of this solution is monitoring. Specifically, container monitoring."

"The number-one feature is the monitoring of interactive sessions on our Linux machines. We run an immutable environment, so that nothing is allowed to be changed in production... We're constantly monitoring to make sure that no one is violating that. Threat Stack is what allows us to do that."

"Threat Stack has connectivity."

More Threat Stack Cloud Security Platform pros

Cons

"The SentinelOne customer support needs improvement, as they are sometimes late in responding, which is critical in a production issue."

"Sometimes the Storyline ID is a bit wacky."

"In addition to our telecom and Slack channels, it would be helpful to receive Cloud Native Security security notifications in Microsoft Teams."

"I want PingSafe to integrate additional third-party resources. For example, PingSafe is compatible with Azure and AWS, but Azure AD isn't integrated with AWS. If PingSafe had that ability, it would enrich the data because how users interact with our AWS environment is crucial. All the identity-related features require improvement."

"The area of improvement is the cost, which is high compared to other traditional endpoint protections."

"There's an array of upcoming versions with numerous features to be incorporated into the roadmap. Customers particularly appreciate the service's emphasis on intensive security, especially the secret scanning aspect. During the proof of concept (POC) phase, the system is required to gather logs from the customer's environment. This process entails obtaining specific permissions, especially in terms of gateway access. While most permissions for POC are manageable, the need for various permissions may need improvement, especially in the context of security."

"We had a glitch in PingSafe where it fed us false positives in the past."

"It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background."

More SentinelOne Singularity Cloud Security cons

"There needs to be more support."

"A drawback includes bucket storage limitations for payload data, necessitating timely extraction for thorough investigations."

"They can include integration with SAP. Currently, no vendor provides network performance monitoring in the SAP market. It is a very big market. We have around 400 customers for SAP in Korea. In the USA, there are more than 10,000 customers."

"It shoots back a lot of alerts."

"Some features do not work as expected."

"The reports aren't very good. We've automated the report generation via the API and replaced almost all the reports that they generate for us using API calls instead."

"The user interface can be a little bit clunky at times... There's a lot of information that needs to be waded through, and the UI just isn't great."

"They could give a few more insights into security groups and recommendations on how to be more effective. That's getting more into the AWS environment, specifically. I'm not sure if that's Threat Stack's plan or not, but I would like them to help us be efficient about how we're setting up security groups. They could recommend separation of VPCs and the like - really dig into our architecture. I haven't seen a whole lot of that and I think that's something that, right off the bat, could have made us smarter."

"The compliance and governance need improvement."

"I would like further support of Windows endpoint agents or the introduction of support for Windows endpoint agents."

"The one thing that we know they're working on, but we don't have through the tool, is the application layer. As we move to a serverless environment, with AWS Fargate or direct Lambda, that's where Threat Stack does not have the capacity to provide feed. Those are areas that it's blind to now..."

More Threat Stack Cloud Security Platform cons

Pricing and Cost Advice

"Its pricing was a little less than other providers."

"The pricing is fair. It is not inexpensive, and it is also not expensive. When managing a large organization, it is going to be costly, but it meets the business needs. In terms of what is out there on the market, it is fair and comparable to what I have seen, so I do not have any complaints about the cost"

"PingSafe is priced reasonably for our workload."

"While SentinelOne Singularity Cloud Security offers robust protection, its high cost may be prohibitive for small and medium-sized businesses."

"As a partner, we receive a discount on the licenses."

"Singularity Cloud Workload Security's licensing and price were cheaper than the other solutions we looked at."

"I understand that SentinelOne is a market leader, but the bill we received was astronomical."

"Its pricing is constant. It has been constant over the previous year, so I am happy with it. However, price distribution can be better explained. That is the only area I am worried about. Otherwise, the pricing is very reasonable."

More SentinelOne Singularity Cloud Security pricing and cost advice

"When compared to other solutions, it aligns with the market average, indicating a competitive pricing level."

"It is a cost-effective choice versus other solutions on the market."

"Pricing seems to be in line with the market structure. It's fine."

"It is very expensive compared to some other products. The pricing is definitely high."

"We find the licensing and pricing very easy to understand and a good value for the services provided."

"It came in cheaper than Trend Micro when we purchased it a few years ago."

"What we're paying now is somewhere around $15 to $20 per agent per month, if I recall correctly. The other cost we have is SecOps."

"I'm happy with the amount that we spend for the product that we get and the overall service that we get. It's not cheap, but I'm still happy with the spend."

See which vendors are best for you

Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.

See recommendations

825,609 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

19%

Financial Services Firm

15%

Manufacturing Company

Government

Financial Services Firm

12%

Computer Software Company

University

Insurance Company

Computer Software Company

21%

Financial Services Firm

14%

Real Estate/Law Firm

10%

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about PingSafe?

The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...

See all answers

What is your experience regarding pricing and costs for PingSafe?

The pricing is somewhat high compared to other market tools. This cost can be particularly prohibitive for small busi...

See all answers

What needs improvement with PingSafe?

SentinelOne Singularity Cloud Security has limited legacy system support and may not fully support older operating sy...

See all answers

What do you like most about ExtraHop Reveal(x) 360?

It stands out for its intuitive and efficient user interface, robust detection capabilities with minimal false positi...

See all answers

What needs improvement with ExtraHop Reveal(x) 360?

The NDR feature analyzes network traffic, creating records with connection details. While these records offer insight...

See all answers

What advice do you have for others considering ExtraHop Reveal(x) 360?

I recommend prioritizing demos over POCs when engaging with vendors. Organizing POCs involves significant time and re...

See all answers

Ask a question

Earn 20 points

Comparisons

Wiz vs SentinelOne Singularity Cloud Security

Compared 29% of the time

Prisma Cloud by Palo Alto Networks vs SentinelOne Singularity Cloud Security

Compared 23% of the time

AWS GuardDuty vs SentinelOne Singularity Cloud Security

Compared 8% of the time

Orca Security vs SentinelOne Singularity Cloud Security

Compared 6% of the time

Microsoft Defender for Cloud vs SentinelOne Singularity Cloud Security

Compared 6% of the time

More SentinelOne Singularity Cloud Security Competitors

ExtraHop Reveal(x) vs ExtraHop Reveal(x) 360

Compared 47% of the time

Corelight vs ExtraHop Reveal(x) 360

Compared 16% of the time

Wiz vs ExtraHop Reveal(x) 360

Compared 14% of the time

Forescout Platform vs ExtraHop Reveal(x) 360

Compared 12% of the time

Stellar Cyber Open XDR vs ExtraHop Reveal(x) 360

Compared 11% of the time

More ExtraHop Reveal(x) 360 Competitors

BMC Helix Cloud Security vs Threat Stack Cloud Security Platform

Compared 29% of the time

Microsoft Defender for Cloud Apps vs Threat Stack Cloud Security Platform

Compared 24% of the time

Darktrace vs Threat Stack Cloud Security Platform

Compared 24% of the time

Cisco IOS Security vs Threat Stack Cloud Security Platform

Compared 22% of the time

More Threat Stack Cloud Security Platform Competitors

Product Reports

Buyer's Guide

SentinelOne Singularity Cloud Security

December 2024

SentinelOne Singularity Cloud Security report

Download SentinelOne Singularity Cloud Security product report

Buyer's Guide

Intrusion Detection and Prevention Software (IDPS)

December 2024

Download ExtraHop Reveal(x) 360 product report

Buyer's Guide

Threat Stack Cloud Security Platform

December 2024

Threat Stack Cloud Security Platform report

Download Threat Stack Cloud Security Platform product report

Also Known As

PingSafe

ExtraHop Reveal(X) Cloud, Reveal(X) Cloud

Threat Stack, CSP,

Learn More

SentinelOne

Video not available

ExtraHop Networks

Video not available

Threat Stack

Overview

SentinelOne Singularity Cloud Security protects cloud workloads, offering advanced threat detection and automated response. It integrates seamlessly with cloud environments and secures containerized applications and virtual machines against vulnerabilities.

SentinelOne Singularity Cloud Security is renowned for its efficiency in mitigating threats in real-time. The platform integrates effortlessly with existing cloud environments, ensuring robust cloud security management with minimal manual intervention. Securing containerized applications and virtual machines, it excels in threat intelligence and endpoint protection. However, improvements are needed in performance during high workload periods, and more integrations with third-party tools and better documentation would be beneficial. Users often find the installation process complex, support response times slow, and the dashboard's navigation unintuitive.

What are the key features of SentinelOne Singularity Cloud Security?

Real-time Threat Detection: Identifies and mitigates threats as they occur.
Automated Response: Automatically responds to threats to minimize impact.
Ease of Deployment: Simple setup process with scalable options.
Machine Learning Insights: AI-driven insights enhance threat prevention.
Seamless Integration: Integrates with cloud environments for unified security management.

What are the primary benefits or ROI to expect from SentinelOne Singularity Cloud Security?

Enhanced Threat Mitigation: Improved security against real-time threats.
Reduced Manual Intervention: Automated processes save time and resources.
Scalability: Easily adapts to growing security requirements.
Centralized Management: Manage security across platforms from a single console.
Advanced Threat Intelligence: Provides in-depth analysis and protection.

In specific industries, SentinelOne Singularity Cloud Security is implemented to safeguard critical data and infrastructure. Organizations in finance, healthcare, and technology depend on its real-time threat detection and automated response to protect sensitive information. Its ability to secure containerized applications and virtual machines is particularly valuable in dynamic environments where rapid scaling is necessary.

Cloud is where your business operates, where it innovates, how it enables employees, and how it connects with customers. Adversaries know this, and that's why attacks against cloud assets in IaaS, PaaS, and SaaS environments are increasing. With Reveal(x) 360, you can mitigate the blast radius of advanced threats like ransomware and supply chain attacks with unified security across multicloud and hybrid environments in a single management pane.

Threat Stack Cloud Security Platform is a CWPP (Cloud Workload Protection Platform) that provides your organization with comprehensive security for modern applications and APIs. It is designed specifically for monitoring cloud environments, vulnerabilities, covering workloads, infrastructure, and compliance. The solution offers application infrastructure protection for all layers of your infrastructure stack and delivers the necessary observability for proactive and targeted remediation action. In addition, it is platform-independent and easily adapts to various environments. Threat Stack Cloud Security Platform works best for companies who want real-time protection against active external threats and need to reduce alert investigation time. It is ideal for small, medium, or large-sized organizations.

Threat Stack Cloud Security Platform Features

Threat Stack Cloud Security Platform has many valuable key features. Some of the most useful ones include:

High-efficacy threat detection
App deployment speed
Increased visibility
Remediation integration
Security and compliance telemetry
Built-in and configurable rules
ML and advanced analytics
Integrations with third-party SecOps tools
File integrity monitoring
Host-based intrusion detection
Vulnerability assessment
Fully integrated IDS functionality
Real-time alerts and threat response

Threat Stack Cloud Security Platform Benefits

There are many benefits to implementing Threat Stack Cloud Security Platform. Some of the biggest advantages the solution offers include:

All-in-one solution: Because Threat Stack Cloud Security Platform offers everything you need in one solution, you don’t need to integrate multiple security solutions in the cloud or spend time manually tweaking the desired functionality.

Continuous proactive monitoring: Threat Stack Cloud Security Platform provides continuous proactive monitoring across your full infrastructure stack. It monitors your web application, can track risky behavior from the point of deployment, can scan your operating system, detect any unusual patterns in file hosting, and analyze other server events in real time.

Real-time protection: The solution offers protection from active intrusion attempts and gives you visibility into ongoing events on the server so you can discover data breaches before it’s too late.

Flexibility: The Threat Stack Cloud Security Platform is tailored to your server’s specific operating system deployment and remains accessible to you no matter how your infrastructure changes or scales over time.

Quick threat detection: Because Threat Stack Cloud Security Platform can quickly isolate problems, issues are less likely to cause damage and can be remediated faster.

Monitoring for reactive, proactive, and interactive threats: The solution is designed to detect even the most evasive discrepancies in your server events.

Reviews from Real Users

Below are some reviews and helpful feedback written by PeerSpot users currently using the Threat Stack Cloud Security Platform solution.

Skyler C., Software Development Manager at Rent Dynamics, says, “The most valuable feature is the SecOps because they have our back and they help us with the reports. We jump on calls monthly to set goals and roadmaps internally for how we can secure our platform more. Their SecOps program is absolutely amazing when you do not have a dedicated resource for security.”

An IT Engineer at a consultancy mentions, “The platform has a good threat and vulnerability manager with very helpful technical support. The scalability is great.”

Sample Customers

Information Not Available

Wizards of the Coast

StatusPage.io, Walkbase, Spanning, DNAnexus, Jobcase, Nextcapital, Smartling, Veracode, 6sense

Buyer's Guide

ExtraHop Reveal(x) 360 vs. Threat Stack Cloud Security Platform

November 2024

Free Report: ExtraHop Reveal(x) 360 vs. Threat Stack Cloud Security Platform

Find out what your peers are saying about ExtraHop Reveal(x) 360 vs. Threat Stack Cloud Security Platform and other solutions. Updated: November 2024.

DOWNLOAD NOW

825,609 professionals have used our research since 2012.

See our ExtraHop Reveal(x) 360 vs. Threat Stack Cloud Security Platform report.

See our list of best Intrusion Detection and Prevention Software (IDPS) vendors and best Container Security vendors.

We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.