Stellar Cyber Open XDR vs Vectra AI comparison

Read 44 Vectra AI reviews

7,988 Views
4,063 Comparison Views

97% willing to recommend

Stellar Cyber Open XDR

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Stellar Cyber Open XDR and Vectra AI based on real PeerSpot user reviews.

Find out in this report how the two Network Detection and Response (NDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Stellar Cyber Open XDR vs. Vectra AI Report (Updated: March 2025).

Stellar Cyber Open XDR vs. Vectra AI

March 2025

Download the complete report

Helped 842,651 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Stellar Cyber Open XDR

Ranking in Network Detection and Response (NDR)

21st

Ranking in Extended Detection and Response (XDR)

35th

Average Rating

0.0

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (51st), Endpoint Detection and Response (EDR) (61st), Security Orchestration Automation and Response (SOAR) (25th)

Vectra AI

Ranking in Network Detection and Response (NDR)

2nd

Ranking in Extended Detection and Response (XDR)

9th

Average Rating

8.6

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Intrusion Detection and Prevention Software (IDPS) (2nd), Identity Threat Detection and Response (ITDR) (5th), AI-Powered Cybersecurity Platforms (4th)

Mindshare comparison

As of March 2025, in the Network Detection and Response (NDR) category, the mindshare of Stellar Cyber Open XDR is 2.1%, up from 0.9% compared to the previous year. The mindshare of Vectra AI is 16.3%, down from 17.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Network Detection and Response (NDR)

Featured Reviews

Hrishiraj Bhattacharjee

Founder & CEO at Team Karimganj

Correlates incidents, allows for quicker identification and helps prioritize investigations

The only challenge is, and that’s where we come into play, it’s a pretty high-tech platform. So, it’s difficult for small and medium-sized organizations to manage it on their own. It’s a very complex system. It requires a lot of expertise. All my guys who work on it have gone through certification from Stellar itself. There are three different certifications that you need to complete. Only then are you certified by Stellar to work on it. It’s a very complex platform. Not everyone can use it. A simple IT engineer or system admin won’t be able to handle it because it’s quite complex. You need to have an understanding of the industry, the subject, and the tool. So, just purchasing this tool or license and then using it on your own would be very difficult to configure and manage on a day-to-day basis. The pricing model is not suitable for small and medium companies, particularly small companies. The minimum pricing model they have is suitable for companies with more than one thousand users. So, if someone has 50 to 100 users, like typical small companies, it’s difficult for them because the cost involved is high. Stellar would charge you for those thousand users, but you do not need all those users. So what are they going to do? I guess Stellar does not want to target small companies directly and maybe relies on resellers and MSPs like us to sell it. So, that is something I would recommend changing. Otherwise, it’s a great tool, but because of the pricing model, small companies are unable to leverage the advantage of this beautiful tool. So, the pricing model should be suitable for small and medium businesses. The product currently has vulnerability monitoring and everything. But if they could also do something about vulnerability management and maybe patch management, that would be nice.

Read full review

Mohammad Alkurdi

Owner at Fortibits

Innovative detection features enhance monitoring

The advantages of the integration are not entirely out-of-the-box. You have to do it manually. When I'm doing tier response, an out-of-the-box solution is not available. You need to have a Linux server, and from the Linux server, you must perform AI tasks, and there is a lot to be handled in the back end. This is a major consideration about them. The recall feature, if it can be placed in some areas instead of the cloud, and charged for, would be better. Recall the storage where you watch all the traffic, and you can recall it and try to analyze it in the back end. It’s cloud-based. If they offer it on-prem, it would be better. I think they have a solution, but I have never tested it, to be honest with you.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Stellar Cyber Open XDR offers these functionalities at a more affordable price, making it easier for me to position it with price-sensitive customers."

"It can integrate with almost any cybersecurity tool available in the market."

"I like the way that Vectra AI focuses on the internal network. Nowadays, most of the attackers are already inside, and they can be inside for many years before they start attacking. With normal monitoring, it's quite difficult to find them."

"Vectra produces actionable data using automation. That has helped us. It's less manpower now to look at incidents, which has definitely increased efficiency. Right now, in a lot of cases, our mean time to detection is within zero days. This tells me by the time something happened, and we were able to detect it, it was within the same day."

"We often use the new feature to create PCAP files from the whole data traffic. It makes it much easier to find network problems such as whether the server is responding to a request. It has nothing to do with security, but it helps a lot to find other problems."

"One of the core features is that Vectra AI triages threats and correlates them with compromised host devices. From a visibility perspective, we can better track the threat across the network. Instead of us potentially finding one device that has been impacted without Vectra AI, it will give us the visibility of everywhere that threat went. Therefore, visibility has increased for us."

"Cognito Streams gives you a detailed view of what happens in the network in the form of rich metadata. It is just a super easy way to capture network traffic for important protocols, giving us an advantage. This is very helpful on a day-to-day basis."

"It gives you access, with Recall, to instant visibility into your network through something like a SIEM solution. For us, being able to correlate all of this network data without having to manage it, has provided immediate value. It gives us the ability to really work on the stuff where I and my team have expertise, instead of having to manage a SIEM solution..."

"There are many detection features available."

"The initial setup was pretty straightforward."

More Vectra AI pros

Cons

"I would rate the stability at about five to six. The platform requires some fine-tuning, especially when integrating data sources and creating connectors."

"Support is an issue because they have a limited number of resources."

"Vectra is still limited to packet management. It's only monitoring packet exchanges. While it can see a lot of things, it can't see everything, depending on where it's deployed. It has its limits and that's why I still have my SIEM."

"We had another product with Vectra AI and used the MDR solution as an add-on. Initially, it wasn't fully appropriately configured, so we didn't get the expected results. Even once configured correctly, we weren't fully satisfied with its response. The issue was both with their service response and the product's capabilities."

"One of the things I am not so happy about when it comes to Vectra is the scoring board."

"I'd like to be able to get granular reports and to be able to output them into formats that are customizable and more useful. The reporting GUI is lacking."

"The solution needs to become more proactive. When Vectra AI is the primary solution in an environment - like it is in our case - you must work on response time. We have a small team so response time at endpoint level is vital."

"One of the things that we are missing a bit is the capability to add our own rules to it. At the moment, the tech engine does its thing, but we have some cool ideas to make additional rules. There should be an option in the platform to add custom rules, or there should be some kind of user group where we can suggest them for the roadmap and see if they get evaluated and get transparent communication on whether they will be implemented in the product or not."

"ExtraHop has better features that seem more advantageous when compared to Vectra."

"They use a proprietary logging format that is probably 90% similar to Bro Logs. Their biggest area of improvement is finishing out the remaining 10%. That 10% might not be beneficial to their ML engine, but that's fine. The industry standard is Zeek Logs or Bro Logs, or Bro or Zeek, depending on how old you are. While they have 90% of those fields, they're still missing some fields. In very rare instances, some community rules do not have the fields that they need, and we had to modify community rules for our logs. So, their biggest area of improvement would be to just finish their matching of the Zeek standard."

More Vectra AI cons

Pricing and Cost Advice

"It’s a single license platform."

"The pricing and licensing are quite straightforward because they're based on the IP licenses. As a result, they are easy to count."

"At the time of purchase, we found the pricing acceptable. We had an urgency to get something in place because we had a minor breach that occurred at the tail end of 2016 to the beginning of 2017. This indicated we had a lack of ability to detect things on the network. Hence, why we moved quickly to get into the tool in place. We found things like Bitcoin mining and botnets which we closed quickly. In that regard, it was worth the money."

"Their licensing model is antiquated. I'm not a fan of their licensing model. We have to pay for licensing based on four different things. You have to pay based on the number of unique IPs, the number of logs that we send through Recall and Stream, and the size of our environment. They need to simplify their licensing down to just one thing. It should be based on the amount of data, the number of devices, or something else, but there should be just one thing for everything. That's what they need to base their licensing on. Cost-wise, they're not cheap. They were definitely the most expensive option, but you get what you pay for. They're not the cheapest option."

"There are additional features that can be purchased in addition to the standard licensing fee, such as Cognito Recall and Stream."

"The upfront pricing model that we have would have been more beneficial if it had been a recurring license fee, but that wasn't a massive issue for us. It's fairly priced."

"We are running at about 90,000 pounds per year. The solution is a licensed cost. The hardware that they gave us was pretty much next to nothing. It is the license that we're paying for."

"Its cost is too much. It's an investment that we can afford. It's a lot, but it's worth it."

"Cost is a big factor, as always. However, I think we have a very good price–performance ratio."

More Vectra AI pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Network Detection and Response (NDR) solutions are best for your needs.

See recommendations

842,651 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

16%

Comms Service Provider

12%

Manufacturing Company

Financial Services Firm

13%

Computer Software Company

13%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What is your experience regarding pricing and costs for Stellar Cyber Open XDR?

If you purchase directly from Stellar, you need to have more than a thousand users for the cost to be reasonable. So for larger companies, it’s more reasonable than for small ones. Otherwise, we ne...

What needs improvement with Stellar Cyber Open XDR?

What is your primary use case for Stellar Cyber Open XDR?

We basically took Stellar platform and are now sell it to our customers. There are different use cases, but it’s mainly focused on incident response. Customers typically have a range of technologie...

What is the biggest difference between Corelight and Vectra AI?

The two platforms take a fundamentally different approach to NDR. Corelight is limited to use cases that require the eventual forwarding of events and parsed data logs to a security team’s SIEM or ...

What do you like most about Vectra AI?

The solution is currently used as a central threat detection and response system.

What is your experience regarding pricing and costs for Vectra AI?

It is very acceptable when you compare it with Darktrace, for example.

Wazuh vs Stellar Cyber Open XDR

Comparisons

Compared 17% of the time

CrowdStrike Falcon vs Stellar Cyber Open XDR

Compared 10% of the time

Fortinet FortiSIEM vs Stellar Cyber Open XDR

Compared 8% of the time

Lumu vs Stellar Cyber Open XDR

Compared 7% of the time

Cortex XDR by Palo Alto Networks vs Stellar Cyber Open XDR

Compared 3% of the time

More Stellar Cyber Open XDR Competitors

Darktrace vs Vectra AI

Compared 33% of the time

ExtraHop Reveal(x) vs Vectra AI

Compared 11% of the time

Corelight vs Vectra AI

Compared 6% of the time

Cisco Secure Network Analytics vs Vectra AI

Compared 6% of the time

Arista NDR vs Vectra AI

Compared 6% of the time

More Vectra AI Competitors

Product Reports

Extended Detection and Response (XDR)

February 2025

Download Stellar Cyber Open XDR product report

Download Vectra AI product report

March 2025

Also Known As

No data available

Vectra Networks, Vectra AI NDR

Overview

Stellar Cyber’s AI-driven Security Operations Platform powered by Open XDR delivers comprehensive, unified security without complexity, empowering lean security teams of any skill to secure their environments successfully. With Stellar Cyber, Enterprises, MSSPs and MSPs reduce risk with early and precise identification and remediation of threats while slashing costs, retaining investments in existing tools, and improving analyst productivity, delivering a 20X improvement in MTTD and an 8X improvement in MTTR.

What are the standout features?

Ease of Deployment: Quick and straightforward implementation process.
Comprehensive Security Analytics: Deep insights into security threats through advanced analytics.
Automated Threat Detection: Proactive identification and mitigation of threats.
Intuitive Dashboard: User-friendly interface for efficient security management.
Seamless Tool Integration: Compatibility with diverse security tools.
Real-Time Reporting: Immediate insights into threat activity.
Scalability: Adapts to growing security needs.
Responsive Customer Support: Timely assistance to resolve any issues.

What benefits should users look for?

Improved Threat Visibility: Comprehensive insights into potential cyber threats.
Streamlined Incident Management: Efficient handling and resolution of security incidents.
Reduced False Positives: Enhanced accuracy in threat identification.
Faster Threat Identification: Quick recognition and response to security threats.
Enhanced Data Integration: Unified view of security data from multiple sources.

Stellar Cyber Open XDR is especially beneficial in industries that demand state-of-the-art cybersecurity measures, such as finance, healthcare, and retail. Users in these sectors rely on it for its comprehensive data integration, real-time threat detection, and seamless tool compatibility, enabling them to maintain high-security standards while dealing with sensitive information.

Stellar Cyber

Vectra AI is used for detecting network anomalies and potential malicious activities, providing visibility into network traffic and enhancing threat detection across environments.

Organizations deploy Vectra AI mainly on-premises with additional cloud components. It helps with compliance, incident response, security monitoring, detecting insider threats, and correlating network events. Vectra AI captures and enriches network metadata, provides detailed dashboards, reduces false positives, and supports cross-environment behavioral analysis to enhance threat detection and prioritization. While valued for its high accuracy and alert aggregation, it has room for improvement in UI/UX, packet management, and integration with SIEMs and other tools. It is noted for expensive pricing and limited proactive threat response features.

What are Vectra AI's most valuable features?

High accuracy in identifying threat locations
Aggregation of alerts into single incidents
24/7 threat detection
Visibility into the entire attack lifecycle
Risk score aggregation
Effective triaging of alerts
Integration with other tools

What benefits or ROI should users look for?

Enhanced threat detection and prioritization
Comprehensive network visibility
Reduction in false positives
Better incident response capabilities
Improved compliance monitoring

In specific industries, Vectra AI is deployed to monitor complex networks and alleviate challenges in threat detection. It is particularly effective in sectors requiring stringent compliance and security measures, offering insights and capabilities crucial for protecting sensitive data and maintaining operational integrity.

Sample Customers

Sumitomo Chemical USA, PlastiPak Packaging, University of Denver, Large California State Agency, Large Midwestern American City

Tribune Media Group, Barry University, Aruba Networks, Good Technology, Riverbed, Santa Clara University, Securities Exchange, Tri-State Generation and Transmission Association