No more typing reviews! Try our Samantha, our new voice AI agent.

Darktrace vs LogRhythm NDR [EOL] comparison

Darktrace and Exabeam are both solutions in the Network Detection and Response (NDR) category. Additionally, 95% of Darktrace users are willing to recommend the solution, compared to 100% of Exabeam users who would recommend it.
Darktrace
Read 84 Darktrace reviews
  • 26,968 Views
  • 7,281 Comparison Views
95% willing to recommend
LogRhythm NDR [EOL]
Read 3 LogRhythm NDR [EOL] reviews
    100% willing to recommend
     

    Comparison Buyer's Guide

    Download the report
    Executive SummaryUpdated on Jun 3, 2026

    Darktrace and LogRhythm NDR [EOL] are both network detection and response solutions. Darktrace appears superior with its real-time threat identification through adaptive machine learning, while LogRhythm's strength lies in its comprehensive threat intelligence and automated response capabilities.

    Features: Darktrace offers autonomous response technology, AI-driven anomaly detection, and a self-learning cybersecurity system. LogRhythm NDR [EOL] provides centralized logging, detailed forensic visibility, and integrated alarm management for robust threat management.

    Ease of Deployment and Customer Service: Darktrace enables swift cloud-based deployment with minimal configuration and offers prompt, informative customer support. LogRhythm NDR [EOL] involves intricate on-premise deployment with substantial setup support and is known for detailed guidance from customer service.

    Pricing and ROI: Darktrace requires significant upfront investment with ROI realized through reduced breach incidents over time. LogRhythm NDR [EOL] has a premium price point with ROI dependent on the scale of deployment and breadth of usage, providing higher returns in detailed operational intelligence scenarios.

    DOWNLOAD THE COMPLETE REPORT
    To learn more, read our detailed Network Detection and Response (NDR) Report (Updated: June 2026).
    Buyer's Guide
    Network Detection and Response (NDR)
    June 2026
    Download the complete report
    Helped 900,644 peers since 2012

    Review summaries and opinions

    We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
     

    Categories and Ranking

    Darktrace
    Average Rating
    8.2
    Reviews Sentiment
    7.1
    Number of Reviews
    84
    Ranking in other categories
    Email Security (10th), Intrusion Detection and Prevention Software (IDPS) (2nd), Network Traffic Analysis (NTA) (1st), Network Detection and Response (NDR) (1st), Extended Detection and Response (XDR) (7th), Cloud Security Posture Management (CSPM) (10th), Cloud-Native Application Protection Platforms (CNAPP) (9th), Attack Surface Management (ASM) (4th), AI-Powered Cybersecurity Platforms (5th), AI Observability (6th)
    LogRhythm NDR [EOL]
    Average Rating
    8.0
    Reviews Sentiment
    7.0
    Number of Reviews
    3
    Ranking in other categories
    No ranking in other categories
     

    Featured Reviews

    Pasan Jayarathna - PeerSpot reviewer
    Pasan Jayarathna
    Network Security Engineer at Cyberwell Solution
    Monitoring has improved data loss detection and now spots abnormal internal file transfers quickly
    In my understanding, the best feature Darktrace offers is the identification of copying files, which acts as a DLP, and it is a main concern for companies because users sometimes copy data outside without knowing, especially those without a technical background. When I mention the DLP-like feature and file copying detection, the alerts have been very timely, as we get an alert within a couple of minutes, which is excellent. Even if some developers are working after hours and copying files, our SOC team detects this, and most of the time they call us so we can identify the users. The alerts are quite accurate and proactive.
    Read full review
    AshishDubey - PeerSpot reviewer
    AshishDubey
    Product manager at Tata Communications Ltd
    A scalable and stable tool that offers users a great GUI
    Though I have not extensively worked on LogRhythm NDR, I know the need for a compute side since, in the past, we had required the compute side to deploy the solution in one of our company's client's infrastructure. The product's setup phase was easy and not complicated. The deployment process of LogRhythm NDR can vary between three and four weeks, depending on the skill set of the people involved in the deployment process. For deployment of the product, you have to purchase the license from LogRhythm, and you have to ensure that the compute side is ready for LogRhythm. After you deploy NDR and sensors in the premises of our company's customer on the SPAN and TAP port, and once the logs go through throughput, you can see the logs coming to LogRhythm NDR's console.
    Read full review

    Quotes from Members

    We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
     

    Pros

    "The solution can scale."
    "It is very easy to work with Darktrace once you know how it works and the type of permissions that you need to get related to the security over a network. The interface is awesome. I'm sure that you have seen Ironman, and you know Jarvis, the computer of Tony Stark. The interface of Darktrace is very similar, and you can see in 3D, like a hologram, the whole network, traffic, and all the traces inside the network. The interface is awesome, and it provides a lot of information. At least for us, it is very easy to handle this interface, get the reports, and do the interpretation of those reports. Darktrace also provides mobile monitoring. With an app on your mobile phone, you can view the information live, which is very useful for area directors and field engineers. Darktrace can be also correlated with any type of big data solution, such as Splunk."
    "The Antigena feature is very useful."
    "It's beneficial to me and I can see that with more time and energy put into optimizing it and personalizing the unit, it can be much more powerful than the way I am using it now."
    "The solution is powerful and very useful, it has the ability to avert many attacks."
    "We liked their approach to identifying intrusions or network anomalies using AI."
    "The most valuable feature of this solution is that it does not require human intervention to eliminate a threat; it blocks everything automatically."
    "The autonomous mode, which is the Antigena AI response, is particularly valuable."
    More Darktrace pros
    "It's an excellent security tool with a user-friendly interface that's easy for anyone to use."
    "The solution doesn't require the creation of rules or use cases from scratch, which assists our delivery team in installation and deployment. Its dashboard is user-friendly."
    "It is a stable solution...It is a scalable solution."
     

    Cons

    "Its threat analyzer could be better. It should also have agents. They should improve this product by installing agents for the machine to get more visibility. Currently, they are monitoring only the network. They should also monitor the agents from inside. It should also have a better pricing plan because it is an expensive product."
    "The only thing that I can think of that would improve it would be if they had a better visualization and a reporting portal."
    "They just need to work on their price."
    "Upper management wasn't sold on the value proposition."
    "I would like to see a feature where the tool ingests information from an anti-malware product that is present at the endpoint."
    "It would be useful if there was a way to check to see if there are certain devices that are not in sync with the solution. I'm not sure if this is an option or not."
    "There aren't so many third-party vendor platforms natively integrated with the platform."
    "The solution could have better integration capabilities."
    More Darktrace cons
    "From an improvement perspective, I would like LogRhythm NDR to reduce the compute size. I would also like LogRhythm NDR to improve the pricing model."
    "The tool has one limitation compared to its competitors. It does have a mobile app for NDR monitoring. Moreover, there is only operational training and not deployment training."
    "There are opportunities for improvement, particularly in upgrading the expertise of local professionals and addressing support issues, which could potentially lead to cost reduction."
     

    Pricing and Cost Advice

    "It is pretty expensive, but it is worth it. Its licensing is yearly."
    "The cost of the solution can be reduced to make it more appealing to customers."
    "The pricing is quite high, estimated at around $350,000 per year."
    "They are too expensive compared with other vendors."
    "The cost of the solution is expensive for smaller businesses. They will not be able to afford it or might not need this type of security solution."
    "The price of the solution is not cheap. It is not a one-time purchase, there is a subscription that needs to be paid every one to five years depending on your choice. It is expensive but you can reduce the price by only using the services that you want."
    "Darktrace is pricey, but the price is reasonable for what the solution does, and it's comparable to other products."
    "We've budgeted about 50,000 Kuwaiti dinars for the solution. That is a yearly operating cost."
    More Darktrace pricing and cost advice
    "The tool costs are two million rupees for 5000 users."
    "There are certain payments to be made towards the licensing costs attached to the product yearly. The pricing of LogRhythm NDR falls under the mid-range, in my opinion."
    "When looking at the market and comparing it with other vendors, the cost seems relatively high."
    report
    See which vendors are best for you
    Use our free recommendation engine to learn which Network Detection and Response (NDR) solutions are best for your needs.
    See recommendations
    900,644 professionals have used our research since 2012.
     

    Top Industries

    By visitors reading reviews
    Manufacturing Company
    10%
    Financial Services Firm
    9%
    Computer Software Company
    9%
    Government
    7%
    No data available
     

    Company Size

    By reviewers
    Large Enterprise
    Midsize Enterprise
    Small Business
    By reviewers
    Company SizeCount
    Small Business44
    Midsize Enterprise20
    Large Enterprise29
    No data available
     

    Questions from the Community

    How does Crowdstrike Falcon compare with Darktrace?
    Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a cl...
    See all answers
    Which is better - SentinelOne or Darktrace?
    Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is meant for smaller to medium-sized businesses. It is also a good option for organ...
    See all answers
    What is your experience regarding pricing and costs for Darktrace?
    Concerning pricing for the product, I would say it is somewhat expensive.
    See all answers
    What is your experience regarding pricing and costs for LogRhythm NDR?
    The tool costs are two million rupees for 5000 users.
    See all answers
    What needs improvement with LogRhythm NDR?
    The tool has one limitation compared to its competitors. It does have a mobile app for NDR monitoring. Moreover, there is only operational training and not deployment training.
    See all answers
    What is your primary use case for LogRhythm NDR?
    Our use cases are mostly for mining, telco, finance, and banking industries.
    See all answers
     

    Comparisons

    Vectra AI vs Darktrace Logo
    Vectra AI vs Darktrace
    Compared 5% of the time
    CrowdStrike Falcon vs Darktrace Logo
    CrowdStrike Falcon vs Darktrace
    Compared 4% of the time
    Cisco Secure Network Analytics vs Darktrace Logo
    Cisco Secure Network Analytics vs Darktrace
    Compared 2% of the time
    SentinelOne Singularity Endpoint vs Darktrace Logo
    SentinelOne Singularity Endpoint vs Darktrace
    Compared 2% of the time
    ExtraHop Reveal(x) vs Darktrace Logo
    ExtraHop Reveal(x) vs Darktrace
    Compared 2% of the time
    More Darktrace Competitors
    Vectra AI vs LogRhythm NDR [EOL] Logo
    Vectra AI vs LogRhythm NDR [EOL]
    Compared 18% of the time
    LinkShadow NDR vs LogRhythm NDR [EOL] Logo
    LinkShadow NDR vs LogRhythm NDR [EOL]
    Compared 15% of the time
    NetWitness NDR vs LogRhythm NDR [EOL] Logo
    NetWitness NDR vs LogRhythm NDR [EOL]
    Compared 12% of the time
    Sangfor Cyber Command vs LogRhythm NDR [EOL] Logo
    Sangfor Cyber Command vs LogRhythm NDR [EOL]
    Compared 12% of the time
    Cynet vs LogRhythm NDR [EOL] Logo
    Cynet vs LogRhythm NDR [EOL]
    Compared 9% of the time
    More LogRhythm NDR [EOL] Competitors
     

    Product Reports

    Buyer's Guide
    Darktrace
    June 2026
    Darktrace reportDownload Darktrace product report
    Buyer's Guide
    Network Detection and Response (NDR)
    June 2026
    LogRhythm NDR [EOL] reportDownload LogRhythm NDR [EOL] product report
     

    Also Known As

    No data available
    LogRhythm MistNet
     

    Overview

    Darktrace revolutionizes network security with AI-driven alerts, anomaly detection, and robust visibility across networks. It autonomously detects threats, minimizing the need for human oversight, and offers efficient IP identification with minimal false positives.

    Darktrace uses advanced AI analytics to enhance network protection. Its powerful real-time threat response capabilities and self-learning enable thorough monitoring and insightful analysis of network activities. While providing scalable and reliable security, users seek improvements in false positive reduction, user-friendly interfaces, and pricing. Enhanced third-party integration, more effective dashboards, and centralized automation features remain top priorities. Users benefit greatly from its Antigena feature, offering automated responses like blocking suspicious connections for robust network defense.

    What Are Darktrace's Key Features?
    • AI-Driven Alerts: Provides real-time alerts for threat detection.
    • Anomaly Detection: Identifies unusual network activities with precision.
    • Real-Time Threat Response: Autonomously counteracts potential threats.
    • Comprehensive Monitoring: Offers detailed network activity insights.
    • Scalability: Adapts to expanding network environments effectively.
    Which Benefits Should Users Consider in Reviews?
    • Stability: Reliable performance ensures constant protection.
    • Efficient Cloud Protection: Safeguards data across cloud infrastructures.
    • Intuitive Interface: Facilitates easy navigation and efficient operations.
    • Network Visibility: Enhances understanding of network traffic and activities.
    • Automated Threat Blocking: Quick response to potential network breaches.

    In industries employing Darktrace, it is pivotal in securing LAN networks, analyzing behavioral patterns, and detecting internal and external threats. Adoption alongside platforms like F5 and SAP enhances incident response, traffic analysis, and threat identification, utilizing Antigena for proactive security measures.

    Darktrace

    LogRhythm NDR [EOL] was an innovative approach to network detection and response, facilitating enhanced threat monitoring and incident response.

    LogRhythm NDR [EOL] offered comprehensive detection capabilities that enabled organizations to quickly identify and investigate network anomalies. It integrated seamlessly with security operations, providing meaningful insights and analysis for better threat management. The adaptable technology ensured it remained relevant despite the evolving threat landscape.

    What were the key features?
    • Real-time Monitoring: Offers continuous oversight to promptly detect any suspicious activities
    • Anomaly Detection: Identifies irregular patterns to pre-empt potential cyber threats
    • Integration Capabilities: Easily integrates with existing security infrastructure for enhanced efficiency
    • Threat Intelligence: Leverages advanced data to assess and respond to security incidents
    What benefits did LogRhythm NDR [EOL] offer?
    • Speedy Incident Response: Facilitates quick actions against detected threats to minimize risks
    • Cost Efficiency: Reduces potential financial losses by improving threat detection and response
    • Enhanced Security Posture: Strengthens defense mechanisms against sophisticated attacks
    • Operational Streamlining: Improves workflow efficiency with integrated security operations

    LogRhythm NDR [EOL] found its place in diverse industries like finance and healthcare where it bolstered compliance and regulatory efforts. Its adaptable nature made it suitable for implementation across sectors with high-security demands.

    Exabeam
     

    Sample Customers

    Irwin Mitchell, Open Energi, Wellcome Trust, FirstGroup plc, Virgin Trains, Drax, QUI! Group, DNK, CreaCard, Macrosynergy, Sisley, William Hill plc, Toyota Canada, Royal British Legion, Vitol, Allianz, KKR, AIRBUS, dpd, Billabong, Mclaren Group.
    EMW, Conduent, University of Massachusetts, Deloitte Canada, Central Bank of Barbados, Coalfire
    Buyer's Guide
    Network Detection and Response (NDR)
    June 2026
    Download Free Report
    Find out what your peers are saying about Darktrace, TrendAI, Vectra AI and others in Network Detection and Response (NDR). Updated: June 2026.
    DOWNLOAD NOW
    900,644 professionals have used our research since 2012.
    See our list of best Network Detection and Response (NDR) vendors.

    We monitor all Network Detection and Response (NDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.