Try our new research platform with insights from 80,000+ expert users

Darktrace pros and cons

Vendor: Darktrace

4.1 out of 5

74 reviews
94% willing to recommend

2,243 followers

Pros & Cons summary

Darktrace offers consistent performance and valuable network security with autonomous Antigena threat response and advanced machine learning for behavior profiling. It delivers detailed network insights and effective alert filtering but needs better endpoint integration and a more flexible pricing model. Setup complexity, excessive false positives, and limited documentation support are challenges. Users require significant fine-tuning and improved guidance to optimize the system's effectiveness.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.

Prominent pros & cons

PROS

Darktrace is highly stable with no recorded downtime, ensuring reliable network protection.

Alerts generated by Darktrace are meaningful and actionable, providing clear and effective threat intelligence.

Darktrace's AI capabilities facilitate automated, real-time threat detection and response without human intervention.

With features like Antigena, Darktrace autonomously responds to threats, substantially reducing the need for manual intervention.

Darktrace offers comprehensive network visibility and detailed analytics, aiding in proactive threat management and response strategies.

CONS

Darktrace lacks comprehensive endpoint protection and visibility.

Pricing is notably high for many users.

There are reports of frequent false positives that require significant fine-tuning.

Configuration and setup are complex and time-consuming.

Limited integration with third-party security tools and platforms.

Darktrace Pros review quotes

VI

Director Comercial México at Aubay

Dec 16, 2020

It is very easy to work with Darktrace once you know how it works and the type of permissions that you need to get related to the security over a network. The interface is awesome. I'm sure that you have seen Ironman, and you know Jarvis, the computer of Tony Stark. The interface of Darktrace is very similar, and you can see in 3D, like a hologram, the whole network, traffic, and all the traces inside the network. The interface is awesome, and it provides a lot of information. At least for us, it is very easy to handle this interface, get the reports, and do the interpretation of those reports. Darktrace also provides mobile monitoring. With an app on your mobile phone, you can view the information live, which is very useful for area directors and field engineers. Darktrace can be also correlated with any type of big data solution, such as Splunk.

Read full review

Director Of Information Communication Technology (ICT Head) at a maritime company with 1,001-5,000 employees

Aug 22, 2024

Darktrace provides better visibility into network risks, allowing you to take preemptive action against risky user behavior.

Read full review

OO

Director at Baverianvine

Aug 20, 2019

A simple, powerful AI solution that just does all the work for you when you turn it on.

Read full review

Free Report: Darktrace Reviews and More

Learn what your peers think about Darktrace. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.

816,406 professionals have used our research since 2012.

IA

Group IT Manager at a manufacturing company with 1,001-5,000 employees

Jul 7, 2021

I have found the most valuable features to be artificial intelligence for cybersecurity, advanced machine learning capabilities, enterprise Immune System, Antigena Network, and Antigena Email. The way the solution detects the threat over the network before it spreads is very good. It notifies you of what the threat is exactly doing and gives you all the details about the execution of that application that had created the threat over your network.

Read full review

Data Security Manager at Leeds United FC

Jan 26, 2020

Ability to see events and exactly what traffic or website the device had tried to connect to that raised the alert or issue.

Read full review

Senior Security Architect at Meeza

Mar 14, 2023

The solution is outstanding from a monitoring perspective.

Read full review

MP

CISO at Interplex Electronics Malaysia Sdn. Bhd.

Jul 29, 2024

The autonomous response is also highly designed in Darktrace.

Read full review

reviewer1509096

Founder and Director at a tech services company with 11-50 employees

Feb 24, 2021

In terms of features, the data or information they collect and unsupervised machine learning are very valuable. Its unsupervised machine learning has reduced our team's effort. Both Darktrace and Vectra work on unsupervised machine learning that learns the behavior or develops a profile on its own, which allows our security team to do some other tasks rather than spending time on Darktrace or Vectra. Because of unsupervised machine learning, its detection capability is quite good. Along with that, if we utilize the integration feature properly, the automated incident response capability of Darktrace is quite useful.

Read full review

reviewer1215816

Senior Security & Infrastructure Architect at a retailer with 10,001+ employees

Aug 27, 2020

AI analytics are built directly into the product.

Read full review

reviewer1594866

Administrator at a healthcare company with 501-1,000 employees

Feb 27, 2023

t was pretty as far as the granularity of what you were getting out of it.

Read full review

Show 10 more reviews (out of 71)

Darktrace Cons review quotes

VI

Director Comercial México at Aubay

Dec 16, 2020

It would be good if they can include some endpoint protection for remote workers. Nowadays, most people are working remotely. Therefore, they should include some type of sensors that can be installed on the endpoint in order to directly report the main usage and protect remotely. Phone protection will also be a great feature to add to Darktrace.

Read full review

Director Of Information Communication Technology (ICT Head) at a maritime company with 1,001-5,000 employees

Aug 22, 2024

Darktrace needs significant improvement in its notification capabilities.

Read full review

OO

Director at Baverianvine

Aug 20, 2019

It could build in integrations for some complementary products, but it has an assistant plugin so this is not really a big deal.

Read full review

Free Report: Darktrace Reviews and More

Learn what your peers think about Darktrace. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.

816,406 professionals have used our research since 2012.

IA

Group IT Manager at a manufacturing company with 1,001-5,000 employees

Jul 7, 2021

In an upcoming release, there could be more customizable playbooks or a library of playbooks to choose from.

Read full review

Data Security Manager at Leeds United FC

Jan 26, 2020

The product doesn't have an endpoint agent that can react to triggers set on the device,

Read full review

Senior Security Architect at Meeza

Mar 14, 2023

Darktrace is a closed technology, meaning we know very little about how it works, including the architecture, which is significant. As a result, when we implement the system and find we're getting many false positives, we have minimal insight into why it's happening and what we can do to fix it. We don't know how the solution is configured, the criteria for threats to be determined, or the product's inner workings. We understand that they have to ensure privacy and their copyright, but we want to see some documentation or public research into the security Darktrace provides.

Read full review

MP

CISO at Interplex Electronics Malaysia Sdn. Bhd.

Jul 29, 2024

Darktrace should have more automation and integrations with other security monitoring tools.

Read full review

reviewer1509096

Founder and Director at a tech services company with 11-50 employees

Feb 24, 2021

In terms of improvements, fine-tuning is the area where we have to spend some time because it works on unsupervised machine learning. It would be good if they can improve their algorithm or technical functionality to reduce the fine-tuning effort. They can also come up with something at the endpoint level. So far, Darktrace has been a network detection response (NDR) solution. It does not offer much at the endpoint level or on user-client devices or servers. There should be more visibility at the endpoint level. It would be good to have the detection and response at the endpoint level by Darktrace. It should also have integration with an agile environment so that we can have continuous development and continuous integration in the application development environment. This is currently not there. It should also have internet-facing platform visibility, which is currently missing. They also need to improve the reporting and management dashboards. Currently, these are not so easy for a non-technical person. All these features would make Darktrace much better, and they would also be helpful in selling more solutions.

Read full review

reviewer1215816

Senior Security & Infrastructure Architect at a retailer with 10,001+ employees

Aug 27, 2020

A reporting portal could be a great addition to help customize reports.

Read full review

reviewer1594866

Administrator at a healthcare company with 501-1,000 employees

Feb 27, 2023

The price point for the product was too high for what our possible use case could be.

Read full review

Show 10 more reviews (out of 70)

Product Categories

Product Categories

Extended Detection and Response (XDR)

Intrusion Detection and Prevention Software (IDPS)

Network Traffic Analysis (NTA)

Network Detection and Response (NDR)

AI-Powered Chatbots

Cloud Security Posture Management (CSPM)

Cloud-Native Application Protection Platforms (CNAPP)

Attack Surface Management (ASM)

AI-Powered Cybersecurity Platforms

Popular Comparisons

Popular Comparisons

CrowdStrike Falcon vs Darktrace

Wazuh vs Darktrace

SentinelOne Singularity Complete vs Darktrace

Cortex XDR by Palo Alto Networks vs Darktrace

Vectra AI vs Darktrace

Trend Vision One vs Darktrace

Cynet vs Darktrace

Rapid7 InsightIDR vs Darktrace

NetWitness NDR vs Darktrace

Stellar Cyber Open XDR vs Darktrace

Fidelis Elevate vs Darktrace

LogRhythm UEBA vs Darktrace

Adlumin Cybersecurity vs Darktrace

Lumu vs Darktrace

Bitdefender GravityZone Extended Detection and Response (XDR) vs Darktrace

See all alternatives

Product Categories

Product Categories

Extended Detection and Response (XDR)

Intrusion Detection and Prevention Software (IDPS)

Network Traffic Analysis (NTA)

Network Detection and Response (NDR)

AI-Powered Chatbots

Cloud Security Posture Management (CSPM)

Cloud-Native Application Protection Platforms (CNAPP)

Attack Surface Management (ASM)

AI-Powered Cybersecurity Platforms

Popular Comparisons

Popular Comparisons

CrowdStrike Falcon vs Darktrace

Wazuh vs Darktrace

SentinelOne Singularity Complete vs Darktrace

Cortex XDR by Palo Alto Networks vs Darktrace

Vectra AI vs Darktrace

Trend Vision One vs Darktrace

Cynet vs Darktrace

Rapid7 InsightIDR vs Darktrace

NetWitness NDR vs Darktrace

Stellar Cyber Open XDR vs Darktrace

Fidelis Elevate vs Darktrace

LogRhythm UEBA vs Darktrace

Adlumin Cybersecurity vs Darktrace

Lumu vs Darktrace

Bitdefender GravityZone Extended Detection and Response (XDR) vs Darktrace

See all alternatives

Related questions

35

I'm building a next-gen AI powered threat intelligence platform. What's missing from existing solutions?

782

Which is better - SentinelOne or Darktrace?

557

What are the pros and cons of Darktrace vs CrowdStrike Falcon vs alternative EPP solutions?

142

Which alternative solutions (other than Darktrace) do you recommend for an SMB?

189

How does Crowdstrike Falcon compare with Darktrace?

103

What is the best EDR or XDR product for a company with 9000 employees?

14

When evaluating Extended Detection and Response (XDR), what aspect do you think is the most important to look for?

617

How do you decide about the alert severity in your Security Operations Center (SOC)?

180

Which is better for Endpoint Security: EDR or XDR solutions?

468

What are the main differences between XDR and SIEM?