Darktrace Reviews

Darktrace is deployed on our LAN, inside the network. No site, no internet, it's just for monitoring the LAN, local access network. It helps us to find a lot of threats inside the network. We are very happy with the solution. You don't need to have a lot of analysts with Darktrace who are making or following the incident. This solution helps you to send the notification and avoid threats.

The main valuable feature is that we don't need a lot of analysts. With few analysts, we have all the network monitored, 24/7.

Firstly, the integration should be improved. 

In terms of what additional features I would like included in the next release of Darktrace, I would like to see more protection in the endpoint. Especially because we have a lot of people using VPNs. If they would improve end point security, it would give more control there.

We have been using Darktrace for three years.

In terms of stability, Darktrace is an excellent product.

Darktrace's scalability is very good. We have about 1,200 users on it currently.

Their technical support is excellent.

We have more than an SOC, a security operation center, so we switched to Darktrace because they use artificial intelligence and they are more sophisticated in preventing threats.

The initial setup is straight forward. Deployment took one day.

We implemented with a consultant. It required two people.

Our ROI as a result of Darktrace is excellent. The return of the cost of the solution for preventing threats is very good.

Darktrace is expensive, but its results are invaluable.

Because of all it does, Darktrace is a very good solution, and it doesn't take a lot of time to implement and to get results. You can learn the behavior of the network and take actions, not based in signatures. I think this is very, very good.

On a scale of one to ten, I would give Darktrace a nine.

We are a system integrator and we pose solutions, including this one, to our clients.

It is mainly used to reinforce response capabilities with respect to network security.

I find it very good in the way that they show the past events, including the attack history. You are able to visualize all of the attack paths and connectivity to see what's happened.

The GUI interface is very good.

They are using the best machine learning and AI at the moment.

The need to simplify the analysis from a user perspective. In a few cases, you have to be a specialist in order to understand what's happening. It would be helpful if they could recognize incidents and simplify the customer's challenge to identify what is happening.

I was been working with Darktrace for two years.

Stability-wise, we have not had any issues and it has been quite good.

We haven't had any trouble with scalability.

We have had contact with technical support and help was quite straightforward. Our feedback for them is good.

We work with a variety of products in the security space including Darktrace, Splunk, Elastic, and others.

The initial setup is really simple. This product is normally deployed as an on-premises appliance and it normally takes less than one day. It depends on how complex the network is, but it's usually quite simple.

Our customers feel that the price of Darktrace is quite high compared to other solutions. However, I feel that they are one of the top solutions in this space and they want to be paid for that.

They are currently working on improving their interface by including AI to help simplify things, but it does not work on real-time data. Rather, it works on historical events.

This is definitely a product that I can recommend, although I would probably be using it together with a SOC service or somebody else who can manage it properly.

I would rate this solution a seven out of ten.

Once installed, it starts picking up and learning the network very well because it's got a powerful AI integrated into it.

The user interface is very intuitive.

The Dynamic Threat Dashboard is very nice, as it lists all of your threats and rates them, and then you can choose whether to investigate further.

This solution has some good features for customization in terms of how you're tagging your network, which basically makes it easier to identify what is actually happening. You can see where the traffic is going, where it is coming from, and that sort of thing.

Darktrace has quite a few inbuilt features such as its own packet analysis module, which is an offshoot of Wireshark.

This solution has some powerful APIs, although we do not use that functionality at the moment.

This is quite an expensive product so the pricing is something that can be improved.

I have been using Darktrace for between two and three years.

We've seen no major problems between the master and slave devices in our architecture.

Darktrace is definitely scalable. We started off with a single device monitoring a single site and we progressively added more sites with different devices in a master/slave architecture. The more we've added, we've had to re-think a little bit, but overall the scalability is excellent.

We have ten security analysts who are using this solution.

The Darktrace technical support is very good.

We started off with Darktrace. It was based on a decision from somebody in the business who had previously used it.

Personally, I have used a few other solutions and with respect to the interface, you probably couldn't get more intuitive than Darktrace.

Darktrace is very easy to set up. Even our basic technical people are able to do it. It's almost like plug and play. There is some basic configuration to do, but it's nothing major.

I would say that most technical people can do the majority of the setup.

We were granted access to all of the documentation and information from Darktrace, so we did the implementation ourselves. There may have been one or two areas that we had to go back to Darktrace directly to get clarification on, but there was no third-party partner or reseller involved.

We're very pleased with Darktrace so it is a bit difficult to pinpoint areas for improvement. It covers all of our needs and from what I can see, it does the basics very well. There are many advanced features, also.

This is a solution that I definitely recommend. It offers a proof of value rather than a proof of concept, where they run the tool in your network, let it learn and then catch any vulnerabilities. Then you will actually see the value of the solution, either potentially blocking any exploitive threats or not, but its a really good thing to go through. To do this, I think that you have to go through an actual partner unless you're in a location where Darktrace has a physical office. In any event, I strongly recommend going through the proof of value to see if you like it. If there is a charge then it is definitely worth it.

I would rate this solution an eight out of ten.

We have a Darktrace appliance, and we are using it to monitor threats in our network environment. It has the Antigena module installed. So, it does not only monitor but also proactively blocks when there is a physical threat.

It scans the entire network, which includes all IP addresses, subnets, and users. It is very smart for all different segments of the network.

It is autonomous. So, it learns. It uses algorithms and AI to learn the common behavioral patterns on the network, and it is able to identify threats based on abnormal patterns.

It is expensive, but everything else has been great so far. It is fine for now for what we need it to do.

I have been using this solution for about a year and a half.

Their support has been great so far.

It was very easy and straightforward.

It is expensive.

It is good. Recently, they have made it more sensitive for tracking or identifying all the behaviors or patterns. So, you're getting more alerts out of it, which I guess is a good thing.

I would rate it a ten out of ten.

Overall, I like the system. The product offers us a very good user interface and we've found the network visibility to be very good so far. The solution has one window and shows all networks.

The solution comes in multiple languages, including English and Arab options.

The solution is stable.

We've found that technical support is helpful and available to assist us if we need them.

There are some automation capabilities, however, they could be presented better.

The manual is difficult to follow. While it presents some use cases, it's not very clear. There may also be some language barriers, as it's not available in my language.

Some aspects of the initial setup are complex. 

It would be useful if there was a way to check to see if there are certain devices that are not in sync with the solution. I'm not sure if this is an option or not. 

The cost of the solution is quite high.

I'm very interested in ISO 27001 and these processes. I'd like to better understand how it supports this kind of workflow.

I haven't used the solution for very long. It may only be about 20 hours or so. It's very, very new. 

The solution is mostly stable. I found that, during the POC, sometimes my rights would do off and I would have to reinstate them, however, other than that, it was very stable. The performance was good. 

I've only used the solution for a short amount of time. I can't really speak to the scalability. There were different models that I tried, however, I can't speak about how different models affect the scalability. I've only used it for a very short amount of time.

There are maybe three or four people on the solution, now that we've tested it. 

I haven't really interacted so much with technical support, however, there is a person available to us that could help us troubleshoot or answer our questions if we need assistance. 

There are aspects of the initial setup that are not very straightforward. there is some complexity. I needed to keep going back to the manual to check things at certain points. 

We are still currently in the test period. Within the year, we will have to invest in the cost of licensing. We have not done that yet.

The solution itself is quite expensive. 

We did look at other solutions, however, I can't speak to which solutions we actually looked at.

We are a partner.

I'm not sure which version of the solution we're using. My understanding is that it is version 5.

I would recommend the solution to others. However, it's important to ensure you use the solution in order to set up your processes correctly and to the benefit of the organization.

So far, I would rate the solution at an eight out of ten.

We primarily use this solution as part of our security.

The cyber AI analyst, antigena, and threat visualizer are the most valuable aspects of the solution.

The setup is very simple. 

It's a very stable product.

Users can expand it as needed. 

I don't have any thoughts on where there might be a need for improvement. 

In the next version, I'd like to see penetration testing. They already have that coming up, so it'll be good to see that.

I've been dealing with the solution for three to four years. 

The product is extremely stable and mature. There are no bugs or glitches. It doesn't crash or freeze.

The product is very scalable across all vectors of the digital estate.

The initial implementation process is extremely easy. It's extremely seamless and very easy to set up. It's up and running in less than an hour.

I'm a partner and reseller.

We are using the latest version of the solution. 

It's deployed on-premise, in the cloud, in email, via SaaS, and on the endpoint.

I'd advise potential new users to  use antigena. It's a handy tool to stop cyber attacks.

I'd rate the solution ten out of ten.

We are using this solution for both the detection and elimination of attacks.

The most valuable feature of this solution is that it does not require human intervention to eliminate a threat. It blocks everything automatically.

The user interface and the configuration are a bit complex and should be improved or simplified. 

It's user-friendly, but it could be easier.

The pricing could be better and the scalability should be simplified for the customers.

The integration could be better, as it's not that interactive. They could make it more interactive for the customer's daily use.

I have been using Darktrace for three years.

It's a very stable solution. We are very satisfied with stability.

It's a scalable solution, but it's not very easy to scale. When using a detection environment, it's not very easy for the customer.

Technical support is very good. They are excellent.

Previously, we had completed some trials with IronNet.

The initial setup is straightforward.

It could be cheaper.

When it comes to large installations, it can be expensive, but for small accounts it's fine.

We are resellers and integrators of Darktrace.

I would rate Darktrace a nine out of ten.

Our primary use case of this solution is to monitor lateral traffic.

The solution helped us to find a few anomalies.

Darktrace does not have any capabilities to configure. So I would like to see supervised machines and capabilities in the next version.

Darktrace is extremely stable.

We are only four users on Darktrace currently, and I believe it is scalable.

I am satisfied with the technical support we received. 

The initial setup was very straightforward because, in fact, there was nothing to configure. You just plug in the box and search for kickbacks. Deployment took about a day and it was done by one of Darktrace's consultants.

I worked on another solution before but we decided to test out Darktrace so that we could compare them.

Darktrace is a good product and it can be implemented on premises. Someone who wants to take care of the lateral movement and configure it, will love what it offers. I rate this solution a seven out of ten. I would like to see supervised machine running in the future.