Try our new research platform with insights from 80,000+ expert users

Splunk User Behavior Analytics vs Trellix Intrusion Prevention System comparison

Splunk and Trellix are both solutions in the Intrusion Detection and Prevention Software (IDPS) category. Splunk is ranked #16 with an average rating of 8.0, while Trellix is ranked #13 with an average rating of 8.4. Splunk holds a 2.3% mindshare in ID, compared to Trellix’s 3.2% mindshare. Additionally, 100% of Splunk users are willing to recommend the solution, compared to 93% of Trellix users who would recommend it.
Splunk User Behavior Analytics
Read 18 Splunk User Behavior Analytics reviews
  • 1,524 Views
  • 868 Comparison Views
100% willing to recommend
Trellix Intrusion Preventio...
Read 14 Trellix Intrusion Prevention System reviews
  • 1,209 Views
  • 925 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Splunk User Behavior Analytics and Trellix Intrusion Prevention System based on real PeerSpot user reviews.

Find out in this report how the two Intrusion Detection and Prevention Software (IDPS) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Splunk User Behavior Analytics vs. Trellix Intrusion Prevention System Report (Updated: October 2024).
Buyer's Guide
Splunk User Behavior Analytics vs. Trellix Intrusion Prevention System
October 2024
Download the complete report
Helped 816,406 peers since 2012
 

Categories and Ranking

Splunk User Behavior Analytics
Ranking in Intrusion Detection and Prevention Software (IDPS)
16th
Average Rating
8.2
Reviews Sentiment
8.7
Number of Reviews
18
Ranking in other categories
User Entity Behavior Analytics (UEBA) (5th)
Trellix Intrusion Preventio...
Ranking in Intrusion Detection and Prevention Software (IDPS)
13th
Average Rating
8.4
Number of Reviews
14
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of November 2024, in the Intrusion Detection and Prevention Software (IDPS) category, the mindshare of Splunk User Behavior Analytics is 2.3%, down from 3.2% compared to the previous year. The mindshare of Trellix Intrusion Prevention System is 3.2%, up from 3.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Intrusion Detection and Prevention Software (IDPS)
 

Featured Reviews

Sharath Chander - PeerSpot reviewer
It's more user-friendly than other solutions we tried, but it could use more features like process mining and automation
We want to have an automated system for bot hunting that enables us to detect anomalies predictively based on historical data. It would be helpful if Splunk included process mining as an alternative option. We have a threat workflow, but it would be useful if we could supplement that with some process mining capabilities over time.
Read full review
Juan Muriel - PeerSpot reviewer
Protects from attacks in real-time and provides accurate threat intelligence updates
I rate the ease of setup a seven or eight out of ten. The platform functions very well. We need technical support to make improvements to the platform. The deployment takes eight months. We need two or three system engineers and one electronic engineer specialized in Trellix platforms to deploy the tool. We need only one system engineer to maintain the product.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Splunk is more user-friendly than some competing solutions we tried."
"The most valuable features are its data aggregation and the ability to automatically identify a number of threats, then suggest recommended actions upon them."
"It is a solution that helps test and measure customer satisfaction."
"The product is at the forefront of auto-remediation networking. It's great."
"This is a good security product."
"The solution appears to be stable, although we haven't used it heavily."
"We are really pleased with Splunk and its features. It would be practically impossible to function without it. To provide a general overview of the system, it's important to note that the standard log files are currently around 250 gigabytes per day. It would be impossible to manually walk through these logs by hand, which is why automation is essential."
"This intelligent user behavior analytics package is easy to configure and use while remaining feature filled."
More Splunk User Behavior Analytics pros
"It has a lot of functions, such as firewall. We are administrators, and we create some rules to protect our network. We also monitor the traffic in and out and have disk encryption on-premises. When we detect malware, we scan for the virus on the PC. We can then delete or block the malware."
"The ability to centrally manage all the IPS sensors, track the different security events generated by it, and customize the different policies, depending on their location."
"The threat intelligence updates are very accurate."
"McAfee NSP is much more stable than Cisco."
"The product is worth the investment."
"The feature I found most valuable is the network threat analyzer in the security platform. It also integrates with GTI, or Global Threat Intelligence. Otherwise, I just use the basic features."
"There's a good dashboard you can drill down into. It helps you easily locate intrusions and the source of attacks."
"Great monitoring feature."
More Trellix Intrusion Prevention System pros
 

Cons

"It would be good if the solution had an analytics tool that allowed us to analyze the data without writing specific queries."
"The correlation engine should have persistent and definable rules."
"If the price was lowered and the setup process was less complex, I would consider rating it higher."
"The ability to do more complicated data investigation would be a welcome addition for pros, though the functionality now gives most people what they need."
"There are occasional bugs."
"The initial setup was complex because some of the configurations that we required needed customization."
"We want to have an automated system for bot hunting that enables us to detect anomalies predictively based on historical data. It would be helpful if Splunk included process mining as an alternative option. We have a threat workflow, but it would be useful if we could supplement that with some process mining capabilities over time."
"They should work to add more built-in correlation searches and more use cases based on worldwide customer experiences. They need more ready-made use cases."
More Splunk User Behavior Analytics cons
"Integration with Global Thereat Intelligence could be better. Also, I think management solutions are end of life now at McAfee. Network threat analyzer may be used for endpoint quarantines. Integration between these sides, as well as endpoint APO, will help you quarantine the risky endpoints."
"The solution could improve some aspects of detection."
"The technical support must be improved."
"The Network Security Managers could be more stable, agile, and work faster. When it comes to instability, there is room for improvement."
"We would like to have a simpler version. Some settings and functions on the McAfee console are complex and complicated. I want the management console to be simpler."
"Some of the documentation is not as straightforward as it could be."
"The management console needs to be less complex and easier to navigate."
"The area of concern where the tool needs improvement is how the product prompts users at a network level that helps prevent any wireless network attacks through alerts and notifications."
More Trellix Intrusion Prevention System cons
 

Pricing and Cost Advice

"I hope we can increase the free license to be more than 5 gig a day. This would help people who want to introduce a POC or a demo license for the solution."
"I am not aware of the price, but it is expensive."
"My biggest complaint is the way they do pricing... You can never know the pricing for next year. Every single time you adjust to something new, the price goes up. It's impossible to truly budget for it. It goes up constantly."
"Pricing varies based on the packages you choose and the volume of your usage."
"The licensing costs is around 10,000 dollars."
"There are additional costs associated with the integrator."
"I rate the product’s pricing an eight out of ten."
"The tool is competitively priced."
report
See which vendors are best for you
Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
See recommendations
816,406 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
13%
Government
9%
Manufacturing Company
8%
Computer Software Company
14%
Financial Services Firm
12%
Manufacturing Company
9%
Government
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Splunk User Behavior Analytics?
The solution's most valuable feature is Splunk queries, which allow us to query the logs and analyze the attack vectors.
See all answers
What is your experience regarding pricing and costs for Splunk User Behavior Analytics?
I am not aware of the price, but it is expensive. A rough estimate would be around 150 gigabytes, given the huge amount of data. At the moment there are no additional costs for maintenance.
See all answers
What needs improvement with Splunk User Behavior Analytics?
Sometimes, we need to write explicit queries. It would be good if the solution had an analytics tool that allowed us to analyze the data without writing specific queries. The solution's user interf...
See all answers
What do you like most about McAfee Network Security Platform?
The threat intelligence updates are very accurate.
See all answers
What is your experience regarding pricing and costs for McAfee Network Security Platform?
The tool is competitively priced. I rate the pricing a six out of ten.
See all answers
What needs improvement with McAfee Network Security Platform?
Network Threat Behavior Analysis must be improved. The technical support must be improved. The support team must provide better help with configurations of devices and enabling NTBA.
See all answers
 

Comparisons

Darktrace vs Splunk User Behavior Analytics Logo
Darktrace vs Splunk User Behavior Analytics
Compared 12% of the time
Exabeam vs Splunk User Behavior Analytics Logo
Exabeam vs Splunk User Behavior Analytics
Compared 10% of the time
Cynet vs Splunk User Behavior Analytics Logo
Cynet vs Splunk User Behavior Analytics
Compared 9% of the time
IBM Security QRadar vs Splunk User Behavior Analytics Logo
IBM Security QRadar vs Splunk User Behavior Analytics
Compared 8% of the time
Microsoft Defender for Identity vs Splunk User Behavior Analytics Logo
Microsoft Defender for Identity vs Splunk User Behavior Analytics
Compared 8% of the time
More Splunk User Behavior Analytics Competitors
Trend Micro TippingPoint Threat Protection System vs Trellix Intrusion Prevention System Logo
Trend Micro TippingPoint Threat Protection System vs Trellix Intrusion Prevention System
Compared 29% of the time
Cisco Secure IPS (NGIPS) vs Trellix Intrusion Prevention System Logo
Cisco Secure IPS (NGIPS) vs Trellix Intrusion Prevention System
Compared 15% of the time
Trend Micro Deep Discovery vs Trellix Intrusion Prevention System Logo
Trend Micro Deep Discovery vs Trellix Intrusion Prevention System
Compared 10% of the time
Palo Alto Networks Advanced Threat Prevention vs Trellix Intrusion Prevention System Logo
Palo Alto Networks Advanced Threat Prevention vs Trellix Intrusion Prevention System
Compared 10% of the time
Vectra AI vs Trellix Intrusion Prevention System Logo
Vectra AI vs Trellix Intrusion Prevention System
Compared 9% of the time
More Trellix Intrusion Prevention System Competitors
 

Product Reports

Buyer's Guide
Splunk User Behavior Analytics
October 2024
Splunk User Behavior Analytics reportDownload Splunk User Behavior Analytics product report
Buyer's Guide
Trellix Intrusion Prevention System
October 2024
Trellix Intrusion Prevention System reportDownload Trellix Intrusion Prevention System product report
 

Also Known As

Caspida, Splunk UBA
McAfee Network Security Platform, McAfee NSP, IntruShield Network Intrusion Prevention System, IntruShield Network IPS
 

Learn More

Video not available
Splunk
Video not available
Trellix
 

Overview

Splunk User Behavior Analytics is a behavior-based threat detection is based on machine learning methodologies that require no signatures or human analysis, enabling multi-entity behavior profiling and peer group analytics for users, devices, service accounts and applications. It detects insider threats and external attacks using out-of-the-box purpose-built that helps organizations find known, unknown and hidden threats, but extensible unsupervised machine learning (ML) algorithms, provides context around the threat via ML driven anomaly correlation and visual mapping of stitched anomalies over various phases of the attack lifecycle (Kill-Chain View). It uses a data science driven approach that produces actionable results with risk ratings and supporting evidence that increases SOC efficiency and supports bi-directional integration with Splunk Enterprise for data ingestion and correlation and with Splunk Enterprise Security for incident scoping, workflow management and automated response. The result is automated, accurate threat and anomaly detection.

Block More Intrusions
Stop new and unknown attacks with signature-based and signature-less intrusion prevention systems. Signature-less intrusion detection finds malicious network traffic and stops attacks where no signatures exist.

Unify Virtual and Physical Security
Support network virtualization across private and public cloud platforms to scale security and evolve with changing IT dynamics.

Maximize Security and Performance
Scale hardware performance to speeds up to 100 Gbps and leverage data from multiple products.

 

Sample Customers

8 Securities, AAA Western, AdvancedMD, Amaya, Cerner Corporation, CJ O Shopping, CloudShare, Crossroads Foundation, 7-Eleven Indonesia
Desjardins Group, HollyFrontier, Nubia, Agbar, WNS Global Services, INAIL, Universidad de Las Américas Puebla (UDLAP), Cook County, China Pacific Insurance, Bank Central Asia, California Department of Corrections and Rehabilitation, City of Chicago, Macquarie Telecom, Sutherland Global Services, Texas Tech University Health Sciences Center, United Automotive Electronic Systems
Buyer's Guide
Splunk User Behavior Analytics vs. Trellix Intrusion Prevention System
October 2024
Free Report: Splunk User Behavior Analytics vs. Trellix Intrusion Prevention System
Find out what your peers are saying about Splunk User Behavior Analytics vs. Trellix Intrusion Prevention System and other solutions. Updated: October 2024.
DOWNLOAD NOW
816,406 professionals have used our research since 2012.
See our Splunk User Behavior Analytics vs. Trellix Intrusion Prevention System report.

We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.