NetWitness NDR vs Webroot Business Endpoint Protection comparison

NetWitness and OpenText are both solutions in the Endpoint Protection Platform (EPP) category. NetWitness is ranked #59, while OpenText is ranked #42 with an average rating of 7.0. NetWitness holds a 0.3% mindshare in EPP, compared to OpenText’s 0.7% mindshare. Additionally, 87% of NetWitness users are willing to recommend the solution, compared to 89% of OpenText users who would recommend it.

NetWitness NDR

Read 15 NetWitness NDR reviews

616 Views
482 Comparison Views

87% willing to recommend

Webroot Business Endpoint P...

Read 31 Webroot Business Endpoint Protection reviews

1,919 Views
1,632 Comparison Views

89% willing to recommend

NetWitness NDR

Webroot Business Endpoint P...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

NetWitness NDR and Webroot Business Endpoint Protection compete in the cybersecurity sector. NetWitness NDR is favored for its advanced threat detection capabilities, while Webroot is praised for its ease of use and lightweight nature.

Features: NetWitness NDR provides detailed network visibility, comprehensive threat detection, and extensive analytics. Webroot Business Endpoint Protection offers simplicity, efficient malware detection, and ease of use.

Room for Improvement: NetWitness NDR could improve integration capabilities, more intuitive configuration, and user experience. Webroot could enhance reporting functionality, provide more customizable policies, and improve reporting features.

Ease of Deployment and Customer Service: NetWitness NDR has a complex deployment process but offers responsive customer service. Webroot Business Endpoint Protection is straightforward to deploy with minimal resource impact and reliable support.

Pricing and ROI: NetWitness NDR has higher setup costs but offers strong ROI with thorough threat management capabilities. Webroot Business Endpoint Protection has lower initial costs, making it cost-effective for smaller businesses, but ROI may vary based on protection levels needed.

To learn more, read our detailed NetWitness NDR vs. Webroot Business Endpoint Protection Report (Updated: March 2025).

Buyer's Guide

NetWitness NDR vs. Webroot Business Endpoint Protection

March 2025

Download the complete report

Helped 841,540 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

NetWitness NDR

Ranking in Endpoint Protection Platform (EPP)

59th

Average Rating

8.0

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Threat Intelligence Platforms (34th), Endpoint Detection and Response (EDR) (62nd), Security Orchestration Automation and Response (SOAR) (24th), Network Detection and Response (NDR) (20th), Extended Detection and Response (XDR) (37th)

Webroot Business Endpoint P...

Ranking in Endpoint Protection Platform (EPP)

42nd

Average Rating

7.8

Reviews Sentiment

5.8

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of March 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of NetWitness NDR is 0.3%, up from 0.2% compared to the previous year. The mindshare of Webroot Business Endpoint Protection is 0.7%, down from 0.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Protection Platform (EPP)

Featured Reviews

SupravatMaji

Associate Vice President - IT Security at Inspira Enterprise

Beneficial single unified dashboard, good native application integration, and high availability

My advice to those wanting to implement RSA NetWitness Network is they have to first do a little due diligence, such as the exact requirement based on their needs. That will give them a direction for their investment because otherwise, the bill of material or bill of quantity (BOQ) may be higher side. It is important to do good due intelligence on the environment, see the exact requirement, and then go ahead with the solution. The solution is perfectly stable. I rate RSA NetWitness Network a nine out of ten.

Read full review

Rick Cassel

Owner at R. A. Cassel & Associates

Lightweight and not hard to set up however, does not offer good reporting

We've had a couple of events both this year and last year where it just didn't seem to catch ransomware, which is impossible to do if someone has hands-on with the system. There were some things that they had or used to have or don't have that I still haven't figured out called journaling. And it was supposed to be a way to roll back changes that were made. However, they're telling me they don't have that. That's not in the system. It’s my understanding that it doesn’t actually scan any files at all. They just look at their database of files they've scanned previously, and either it matches or doesn't. That might be where the shortcoming is, is that it just can't stay up-to-date fast enough to stop new things that are coming in. It's an after-the-fact anti-virus. It doesn't do anything proactive. The virus has to hit the machine before it detects it. There is one thing that is deplorable with the product that I would change as soon as I found a better one. However, the reports are worthless. You go and look at a scan report and cannot get a log of machines. I can log into a console and see the files were scanned every day at 2:00 AM, and they all passed green or something was detected and removed. However, you have to go to the console. I don't have anything that I can send to my client on reports. What they give you is a bunch of bar graphs with no details. You can't drill down. It'll say two infections. However, it doesn't tell you what machines. You've just really got several different reports, and they're all just a bunch of graphs and wasted paper. There's nothing really substantial. The reports that I can use for client-facing, once a month, to say, "Here, we scanned all these workstations. Here are our results," don’t exist. They've got fake reports. I've screamed about that for years, and they just won't do anything. Therefore, I created my own little up-to-date or not ask fail-type report. I send that to them in place of a report directly from a product.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"This solution allows us to locate the malware in real-time."

"NetWitness Endpoint's most valuable features are its interoperability across many different operating systems and the ease of pivoting from network to endpoint via a single console."

"It helps our security team respond more accurately when there are threats, then we get less false positives or negatives."

"Technical support is knowledgeable."

"It is very easy to use, and its usability is great. The use cases are also very easy. The visualizations of the use cases are magnificent. You cannot find this in any other solution. From my point of view, it is great."

"The most valuable feature is the way it captures the traffic, and it contains every detail of the communication."

"It's a scalable solution. We have around five to eight customers using RSA NetWitness Endpoint, and we hope to increase the number of users."

"The stability of the RSA NetWitness Endpoint is very good."

More NetWitness NDR pros

"Webroot's tech support is pretty good; they've given me some pointers."

"The solution is very simple and straightforward to use."

"Their policy management, their cloud-based dashboard and user interface are very easy to navigate."

"Doesn't consume resources or affect the computer performance at all."

"I like that Webroot is very lightweight. It didn't bog down the machine, and more importantly, it had heuristics artificial intelligence to some degree. It wasn't like full-blown artificial intelligence, but something where you have one endpoint recognizing issues because it maintains a cloud database. If one client recognizes a threat, it would add it to the database, and almost immediately, every agent in the world would also know about that threat. That was very appealing to us. However, now it's becoming commonplace, whereas ventures like Symantec and McAfee were based more on the traditional model of definition and updates, and we were always falling behind. Webroot also has pretty good technical support."

"They have a lot of features integrated from way back, which shows that the product developers know exactly what they're doing."

"Webroot Business Endpoint Protection is very scalable."

"The Webroot cloud console is very powerful."

More Webroot Business Endpoint Protection pros

Cons

"I would like to see Security Orchestration and Response Automation (SOAR) integration."

"Threat detection could be better."

"The contamination feature could be improved."

"We would like to see the hunting and investigation features of this solution improved, in order to provide better visibility of issues."

"The threat intelligence could improve in RSA NetWitness Endpoint."

"The integration of the solution needs to be improved. The dashboard needs lots of updates as well. In the next release, we would like to see advanced fraud detection features."

"When analyzing something, you have to click several times. It requires a lot of effort to find something."

"The deployment process is complex. I don't know why, but this solution will suddenly stop working. Logs stop coming. Often, one thing or another stops working. Most of the time, one of my team members is working with troubleshooting and working with technical support. Log passing is also one of the biggest challenge."

More NetWitness NDR cons

"Technical support is not the best. It's hard to get a hold of them if we need help. It's something that definitely needs improvement."

"I did notice that my OS slowed down, but I don't know if that's due to Webroot."

"Its detection capability for certain attacks should be improved. It should have better and wider detection for certain malware attacks. It could also have some sort of RMN."

"Usually, when it comes to reliability, McAfee and Norton are at 99 percent. Webroot's percentage is lower. It is 94% reliable in terms of what it catches, but you're trading that percentage for customer satisfaction because your computer isn't being constantly told that it just blocked something, or it just did something."

"Since they're dealing with multi-core environments now, the best option would be for them to enhance the product so that the product can automatically do an assessment on the machine."

"Unified threat management (UTM) integration."

"Reporting system could be improved."

"The solution could improve by providing better ransomware protection."

More Webroot Business Endpoint Protection cons

Pricing and Cost Advice

"I do not have any opinion on the pricing or licensing of the product."

"With RSA, there is flexibility in choosing the service, products, and the range that meets your requirement, as well as they are flexible in terms of pricing."

"We are on a three-year contract to use RSA NetWitness Network."

"The pricing is not very economical. It is a quite costly product for India. One thing is that when you purchase it, you have to purchase a module separately."

"The price of the solution depends on the environment. If the environment is large then it will cost more. However, the larger the environment with more endpoints, you will receive an increased discount. If the environment is very small, then you might think it is expensive. It is always better to buy in bulk to receive a discount. The minimum number of assets is usually 500, with discounts on 1000 and 2000."

"They can easily adjust if you have the requirements which are required. If you have a budget cut or a budget constraint, they can bend."

"It is an expensive product."

"It is highly scalable. It can be bought based on your requirements."

More NetWitness NDR pricing and cost advice

"We are on an annual subscription for the use of Webroot Business Endpoint Protection."

"I rate the product's pricing a three on a scale of one to ten, where one is cheap, and ten is expensive. There are no costs in addition to the product's standard licensing fees."

"Our strategy was to overestimate the complexity and cost. It turned out that Webroot's assurance was justified."

"Get a trial, then a multi-year license."

"From a pricing standpoint, I would rate it a four out of five."

"The solution is pretty cheap, actually. At our level, which is at 2,500 endpoints, we're paying 87 cents an agent per month."

"The solution is very cost-effective."

"If you purchase for clients, then you are the managing billing entity. It's better to either get a monthly subscription check from your clients, or to prepay for the year (so as to not keep cash in reserve to pay the bill each month) IMHO."

More Webroot Business Endpoint Protection pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

841,540 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

16%

Financial Services Firm

16%

Government

Manufacturing Company

Computer Software Company

18%

Real Estate/Law Firm

13%

Comms Service Provider

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Ask a question

Earn 20 points

What do you like most about Webroot Business Endpoint Protection?

I haven't observed any of the instabilities in the solution. It is a stable solution.

See all answers

What is your experience regarding pricing and costs for Webroot Business Endpoint Protection?

Webroot Business Endpoint Protection is probably on the cheaper side, so I would rate their pricing a one or a two out of ten.

See all answers

What needs improvement with Webroot Business Endpoint Protection?

Webroot Business Endpoint Protection needs to improve its ability to detect threats. It does not do what it's advertised to do. Real-time threat detection also doesn't work as it should.

See all answers

Comparisons

Darktrace vs NetWitness NDR

Compared 16% of the time

Vectra AI vs NetWitness NDR

Compared 13% of the time

Fidelis Elevate vs NetWitness NDR

Compared 10% of the time

Cortex XDR by Palo Alto Networks vs NetWitness NDR

Compared 10% of the time

Corelight vs NetWitness NDR

Compared 7% of the time

More NetWitness NDR Competitors

Microsoft Defender for Endpoint vs Webroot Business Endpoint Protection

Compared 31% of the time

CrowdStrike Falcon vs Webroot Business Endpoint Protection

Compared 25% of the time

Huntress Managed EDR vs Webroot Business Endpoint Protection

Compared 15% of the time

HP Wolf Security vs Webroot Business Endpoint Protection

Compared 13% of the time

SentinelOne Singularity Complete vs Webroot Business Endpoint Protection

Compared 8% of the time

More Webroot Business Endpoint Protection Competitors

Product Reports

Buyer's Guide

NetWitness NDR

February 2025

Download NetWitness NDR product report

Buyer's Guide

Webroot Business Endpoint Protection

February 2025

Webroot Business Endpoint Protection report

Download Webroot Business Endpoint Protection product report

Also Known As

RSA ECAT, NetWitness Network

Webroot SecureAnywhere Business Endpoint Protection

Overview

Using a centralized combination of network and endpoint analysis, behavioral analysis, data science techniques and threat intelligence, NetWitness NDR helps analysts detect and resolve known and unknown attacks while automating and orchestrating the incident response lifecycle. With these capabilities on one platform, security teams can collapse disparate tools and data into a powerful, blazingly fast user interface.

NetWitness

Webroot Business Endpoint Protection provides comprehensive endpoint protection, antivirus, and security features across devices like mobiles, computers, and servers to prevent malware and other threats.

Webroot Business Endpoint Protection helps businesses manage endpoint security through its robust cloud application and integrates with RMM tools for improved management and pricing. It offers EMS service, automatic updates, and a lightweight agent, ensuring ease of use and minimal resource consumption across all devices. This solution maintains a cloud-based database for real-time threat recognition and delivers strong performance with low resource usage, leveraging heuristic AI for threat detection. Companies use it for its antivirus, firewall functions, device location and wiping, and security policy applications, contributing to effective security management.

What are the key features?

Endpoint Protection: Safeguards computers, mobiles, and servers from threats.
Cloud Integration: Manages security through a robust cloud application.
Automatic Updates: Ensures devices are consistently protected with the latest updates.
Lightweight Agent: Minimizes resource usage while delivering high performance.
Heuristic AI: Provides advanced threat detection and prevention capabilities.
EMS Service: Manages security effectively across all endpoints.

What benefits should you look for?

Efficiency: Low resource usage for optimal device performance.
Ease of Use: Simplified installation and configuration processes.
Real-Time Threat Detection: Immediate response to potential threats.
Cost-Effectiveness: Affordable pricing with clear, transparent models.
Comprehensive Protection: Complete security measures for various devices.

Webroot Business Endpoint Protection is implemented across industries to ensure robust endpoint security. Its integration with RMM tools allows for seamless management in IT environments, while its cloud-based threat detection provides essential cybersecurity for sectors such as healthcare, finance, and education.

OpenText

Sample Customers

ADP, Ameritas, Partners Healthcare

Mytech Partners

Buyer's Guide

NetWitness NDR vs. Webroot Business Endpoint Protection

March 2025

Free Report: NetWitness NDR vs. Webroot Business Endpoint Protection

Find out what your peers are saying about NetWitness NDR vs. Webroot Business Endpoint Protection and other solutions. Updated: March 2025.

DOWNLOAD NOW

841,540 professionals have used our research since 2012.

See our NetWitness NDR vs. Webroot Business Endpoint Protection report.

See our list of best Endpoint Protection Platform (EPP) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.