Our primary use case is for monitoring traffic for unusual behaviors.
Solution Architect at MCS
Excellent portfolio, subscription based pricing, with plans to increase usage
Pros and Cons
- "I find the complete portfolio to be excellent."
- "I would like to see some additional enhancements."
What is our primary use case?
What is most valuable?
I find the complete portfolio to be excellent.
What needs improvement?
I would like to see some additional enhancements and the price adjusted because it is expensive.
For how long have I used the solution?
I have been working with Darktrace for the past six months.
Buyer's Guide
Darktrace
November 2024
Learn what your peers think about Darktrace. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
816,406 professionals have used our research since 2012.
What do I think about the scalability of the solution?
It is scalable and we have ten users currently using the system. We do have plans to increase the usage.
How was the initial setup?
The setup is straightforward and not complex at all.
What about the implementation team?
The deployment took us about a week and a half to implement. We did not use a third party to implement but it is available.
What was our ROI?
The return on investment is evident when it comes to security incidents.
What's my experience with pricing, setup cost, and licensing?
The pricing is subscription-based and it is high.
What other advice do I have?
I would rate Darktrace an eight on a scale of one to ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Head of Strategic Business Development at Grove
Simple to set up with a useful antigena and threat visualizer
Pros and Cons
- "It's a very stable product."
- "In the next version, I'd like to see penetration testing."
What is our primary use case?
We primarily use this solution as part of our security.
What is most valuable?
The cyber AI analyst, antigena, and threat visualizer are the most valuable aspects of the solution.
The setup is very simple.
It's a very stable product.
Users can expand it as needed.
What needs improvement?
I don't have any thoughts on where there might be a need for improvement.
In the next version, I'd like to see penetration testing. They already have that coming up, so it'll be good to see that.
For how long have I used the solution?
I've been dealing with the solution for three to four years.
What do I think about the stability of the solution?
The product is extremely stable and mature. There are no bugs or glitches. It doesn't crash or freeze.
What do I think about the scalability of the solution?
The product is very scalable across all vectors of the digital estate.
How was the initial setup?
The initial implementation process is extremely easy. It's extremely seamless and very easy to set up. It's up and running in less than an hour.
What other advice do I have?
I'm a partner and reseller.
We are using the latest version of the solution.
It's deployed on-premise, in the cloud, in email, via SaaS, and on the endpoint.
I'd advise potential new users to use antigena. It's a handy tool to stop cyber attacks.
I'd rate the solution ten out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer:
Buyer's Guide
Darktrace
November 2024
Learn what your peers think about Darktrace. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
816,406 professionals have used our research since 2012.
ICT Coordinator at a tech services company with 51-200 employees
A smart, autonomous solution that monitors and identifies threats based on abnormal patterns and proactively blocks them
Pros and Cons
- "It is autonomous. So, it learns. It uses algorithms and AI to learn the common behavioral patterns on the network, and it is able to identify threats based on abnormal patterns."
- "It is expensive, but everything else has been great so far."
What is our primary use case?
We have a Darktrace appliance, and we are using it to monitor threats in our network environment. It has the Antigena module installed. So, it does not only monitor but also proactively blocks when there is a physical threat.
It scans the entire network, which includes all IP addresses, subnets, and users. It is very smart for all different segments of the network.
What is most valuable?
It is autonomous. So, it learns. It uses algorithms and AI to learn the common behavioral patterns on the network, and it is able to identify threats based on abnormal patterns.
What needs improvement?
It is expensive, but everything else has been great so far. It is fine for now for what we need it to do.
For how long have I used the solution?
I have been using this solution for about a year and a half.
How are customer service and support?
Their support has been great so far.
How was the initial setup?
It was very easy and straightforward.
What's my experience with pricing, setup cost, and licensing?
It is expensive.
What other advice do I have?
It is good. Recently, they have made it more sensitive for tracking or identifying all the behaviors or patterns. So, you're getting more alerts out of it, which I guess is a good thing.
I would rate it a ten out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Seguridad de la Información at Banco Davivienda (Costa Rica) S.A.
Allows us to monitor our network 24/7 without a lot of analysts
Pros and Cons
- "The main valuable feature is that we don't need a lot of analysts. With few analysts, we have all the network monitored, 24/7."
- "I would like to see more protection in the endpoint. Especially because we have a lot of people using VPNs. If they would improve end point security, it would give more control there."
What is our primary use case?
Darktrace is deployed on our LAN, inside the network. No site, no internet, it's just for monitoring the LAN, local access network. It helps us to find a lot of threats inside the network. We are very happy with the solution. You don't need to have a lot of analysts with Darktrace who are making or following the incident. This solution helps you to send the notification and avoid threats.
What is most valuable?
The main valuable feature is that we don't need a lot of analysts. With few analysts, we have all the network monitored, 24/7.
What needs improvement?
Firstly, the integration should be improved.
In terms of what additional features I would like included in the next release of Darktrace, I would like to see more protection in the endpoint. Especially because we have a lot of people using VPNs. If they would improve end point security, it would give more control there.
For how long have I used the solution?
We have been using Darktrace for three years.
What do I think about the stability of the solution?
In terms of stability, Darktrace is an excellent product.
What do I think about the scalability of the solution?
Darktrace's scalability is very good. We have about 1,200 users on it currently.
How are customer service and technical support?
Their technical support is excellent.
Which solution did I use previously and why did I switch?
We have more than an SOC, a security operation center, so we switched to Darktrace because they use artificial intelligence and they are more sophisticated in preventing threats.
How was the initial setup?
The initial setup is straight forward. Deployment took one day.
What about the implementation team?
We implemented with a consultant. It required two people.
What was our ROI?
Our ROI as a result of Darktrace is excellent. The return of the cost of the solution for preventing threats is very good.
What's my experience with pricing, setup cost, and licensing?
Darktrace is expensive, but its results are invaluable.
What other advice do I have?
Because of all it does, Darktrace is a very good solution, and it doesn't take a lot of time to implement and to get results. You can learn the behavior of the network and take actions, not based in signatures. I think this is very, very good.
On a scale of one to ten, I would give Darktrace a nine.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Product Owner - Cyber Security at a healthcare company with 10,001+ employees
Helps us to find a few anomalies but I would like to see supervised machines in the next version
Pros and Cons
- "Darktrace is extremely stable."
- "Darktrace does not have any capabilities to configure."
What is our primary use case?
Our primary use case of this solution is to monitor lateral traffic.
How has it helped my organization?
The solution helped us to find a few anomalies.
What needs improvement?
Darktrace does not have any capabilities to configure. So I would like to see supervised machines and capabilities in the next version.
For how long have I used the solution?
I have been using the latest version of Darktrace for about three months.
What do I think about the stability of the solution?
Darktrace is extremely stable.
What do I think about the scalability of the solution?
We are only four users on Darktrace currently, and I believe it is scalable.
How are customer service and technical support?
I am satisfied with the technical support we received.
How was the initial setup?
The initial setup was very straightforward because, in fact, there was nothing to configure. You just plug in the box and search for kickbacks. Deployment took about a day and it was done by one of Darktrace's consultants.
Which other solutions did I evaluate?
I worked on another solution before but we decided to test out Darktrace so that we could compare them.
What other advice do I have?
Darktrace is a good product and it can be implemented on premises. Someone who wants to take care of the lateral movement and configure it, will love what it offers. I rate this solution a seven out of ten. I would like to see supervised machine running in the future.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Networking & Security Specialist at a tech services company with 51-200 employees
Very stable and easy to use, but needs better threat analyzer and pricing and an option to monitor agents
Pros and Cons
- "It is very stable and easy to use."
- "Its threat analyzer could be better. It should also have agents. They should improve this product by installing agents for the machine to get more visibility. Currently, they are monitoring only the network. They should also monitor the agents from inside. It should also have a better pricing plan because it is an expensive product."
What is our primary use case?
We are using it for proof of concept purposes. We are using it to monitor all traffic on our network, and it is analyzing the traffic. We have 5,000 users. We are using the latest version.
What is most valuable?
It is very stable and easy to use.
What needs improvement?
Its threat analyzer could be better. It should also have agents. They should improve this product by installing agents for the machine to get more visibility. Currently, they are monitoring only the network. They should also monitor the agents from inside.
It should also have a better pricing plan because it is an expensive product.
For how long have I used the solution?
I have been using this solution for a few weeks.
What do I think about the stability of the solution?
It is very stable.
How are customer service and technical support?
Currently, we are working with their pre-sales and technical teams. For POC, there is a dedicated team for us to ask and check what we want, and they have been good. I have not yet contacted their support. When we purchase the solution, we will be directly connected with the support team.
Which solution did I use previously and why did I switch?
We were using Trend Micro's Deep Discovery Inspector.
How was the initial setup?
It was done in less than half an hour.
What about the implementation team?
We are a system integrator. For its deployment, one cybersecurity specialist would be enough.
What's my experience with pricing, setup cost, and licensing?
It is a very expensive product.
Which other solutions did I evaluate?
I am comparing Darktrace with other products like Stealthwatch and Vectra, but for now, I find Darktrace as good.
What other advice do I have?
We have been using it for a few weeks. As of now, we plan to keep using it. I would recommend this solution for big companies.
I would rate Darktrace a seven out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Integrator
Founder and CEO at a tech services company with 51-200 employees
Detects and blocks attacks automatically, and has excellent support
Pros and Cons
- "The most valuable feature of this solution is that it does not require human intervention to eliminate a threat."
- "The user interface and the configuration are a bit complex and should be improved or simplified."
What is our primary use case?
We are using this solution for both the detection and elimination of attacks.
What is most valuable?
The most valuable feature of this solution is that it does not require human intervention to eliminate a threat. It blocks everything automatically.
What needs improvement?
The user interface and the configuration are a bit complex and should be improved or simplified.
It's user-friendly, but it could be easier.
The pricing could be better and the scalability should be simplified for the customers.
The integration could be better, as it's not that interactive. They could make it more interactive for the customer's daily use.
For how long have I used the solution?
I have been using Darktrace for three years.
What do I think about the stability of the solution?
It's a very stable solution. We are very satisfied with stability.
What do I think about the scalability of the solution?
It's a scalable solution, but it's not very easy to scale. When using a detection environment, it's not very easy for the customer.
How are customer service and technical support?
Technical support is very good. They are excellent.
Which solution did I use previously and why did I switch?
Previously, we had completed some trials with IronNet.
How was the initial setup?
The initial setup is straightforward.
What's my experience with pricing, setup cost, and licensing?
It could be cheaper.
When it comes to large installations, it can be expensive, but for small accounts it's fine.
What other advice do I have?
We are resellers and integrators of Darktrace.
I would rate Darktrace a nine out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: reseller
CEO at a tech services company with 11-50 employees
Good security and network visibility but they should develop integration with other SIEM solutions
What is our primary use case?
- Security
- Network visibility
- Breach detection in a VMware environment of about 25 VMs.
How has it helped my organization?
- Developed breach detection and security threats
- GDPR
- Privacy compliance
- ISO 27001 compliance.
What is most valuable?
DT console and alerting system allow getting detailed information about the behavior of users and malicious external or internal threats.
What needs improvement?
Block attack capabilities or integration with other SIEM solutions such as IBM QRadar.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free Darktrace Report and get advice and tips from experienced pros
sharing their opinions.
Updated: November 2024
Product Categories
Extended Detection and Response (XDR) Email Security Intrusion Detection and Prevention Software (IDPS) Network Traffic Analysis (NTA) Network Detection and Response (NDR) AI-Powered Chatbots Cloud Security Posture Management (CSPM) Cloud-Native Application Protection Platforms (CNAPP) Attack Surface Management (ASM) AI-Powered Cybersecurity PlatformsPopular Comparisons
CrowdStrike Falcon
Wazuh
SentinelOne Singularity Complete
Cortex XDR by Palo Alto Networks
Vectra AI
Trend Vision One
Cynet
Rapid7 InsightIDR
NetWitness NDR
Stellar Cyber Open XDR
Fidelis Elevate
LogRhythm UEBA
Adlumin Cybersecurity
Bitdefender GravityZone Extended Detection and Response (XDR)
Buyer's Guide
Download our free Darktrace Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- I'm building a next-gen AI powered threat intelligence platform. What's missing from existing solutions?
- Which is better - SentinelOne or Darktrace?
- What are the pros and cons of Darktrace vs CrowdStrike Falcon vs alternative EPP solutions?
- Which alternative solutions (other than Darktrace) do you recommend for an SMB?
- How does Crowdstrike Falcon compare with Darktrace?
- What is the best EDR or XDR product for a company with 9000 employees?
- When evaluating Extended Detection and Response (XDR), what aspect do you think is the most important to look for?
- How do you decide about the alert severity in your Security Operations Center (SOC)?
- Which is better for Endpoint Security: EDR or XDR solutions?
- What are the main differences between XDR and SIEM?
A real interesting solution, with tremendous efficiency, especially for special accounts and VIP. The cost is quite a bit expensive.