DNIF HYPERCLOUD vs NetWitness Platform comparison

"Great for scaling productivity for log monitoring purposes."

"Has a great search capability."

"The response time on queries is super-fast."

"The benefit of DNIF was that the solution was able to detect any anomalies and identify and prevent any possible security threats or attacks."

"The solution is quite stable and offers good performance. It also works on a virtual machine. We haven't found any issues with it so far. It's been reliable."

"The dashboard is helpful, and it creates visualizations to let staff review event data and identify patterns and anomalies."

"If you're an enterprise company and want to scale your productivity for log monitoring purposes, I found DNIF a better option than Splunk which has more complex software."

"The most valuable feature of the solution is the number of EPS it can handle."

"NetWitness Platform offers flexibility for deployment and robust integration capabilities."

"The most valuable features are the packet decoder, log decoder, and concentrator."

"It's quite economical compared to other solutions in the market."

"RSA NetWitness is a SIEM and real-time network traffic solution that collects logs and packets, applies a set of alerting, reporting, and analysis rules on them, and thus provides the enterprise with full visibility of the networks and activities of the systems."

"Once it is deployed and you are used to it, you can do whatever you want."

"It gives the ability to investigate into network traffic in the Net and the organization what we couldn't do before."

"Overall, I feel that the product is very good and my biggest complaint is about their support."

"The most valuable features are the threat prediction and network forensics."

"The vendor is fairly new and it's not as big as some of the international competitors. It's not a mature product. If you ask them to move data, it might take a lot of time."

"Dependency on the DNIF support team was frustrating."

"The solution should be able to connect to endpoints, such as desktops and laptops... If this solution had a smart connector to these logs- Windows, Linux, or any other logs - without affecting the performance of the connector, that would be wonderful."

"I think DNIF HYPERCLOUD can implement the ability to export more than 100,000. At the moment, we can't go beyond that. So many times, if you're checking for the firewall logs and working on something related to authentication or network-related traffic, while that log count is low, the account goes beyond that. You can't restrict the logs or the amount of data you can export. It's very important for my situation. It would be better if they could increase the capacity of exports. Although there are many more types of searching in DNIF HYPERCLOUD, people still struggle to query out what they want because not everyone is good at SQL or DQL. The easiest way to query out in DNIF is using the GUI-based interface. But in the GUI interface, you can use operator calls. It gets tricky when you want to search for a specific type of event. You don't know where it will be passed and whether it will be consistent. In the initial phase, it's tough for us to use DNIF. You cannot pass every event in a stable DNIF. When we used that particular tool, we used to get those logs, but sometimes many things are not getting passed. So, we used to export the sheet or export the data into Excel and weigh the required details. In the next release, I would like them to improve the export of the columns and make the application more user-friendly. I would also like a threat-hunting feature in the next release."

"I used version 8 which was not at all stable. The services and processor keep going down, we had to manually keep them up increasing storage space because services are down, and logs not processed."

"The solution should be able to connect to endpoints, such as desktops and laptops."

"The solution's command line should be simpler so that routine commands can be used."

"DNIF HYPERCLOUD is not a stable product compared to other tools like IBM QRadar."

"The solution is pretty complex to set up. Comparatively, I have worked on IBM QRadar and Splunk; they are much easier to set up."

"I'd like to see improvement in its ease of use. It's basically unusable. It's overly complex."

"The documentation is not as structured as I would like, personally, and I think that it can be improved and made much more user-friendly."

"I believe they could improve their support, there are often delays."

"The solution should have more integration capabilities with different platforms."

"The threat detection capability and centralizing and upgrading capability need to be improved. The threat alert capability needs to be improved as well because there is some lag time at present. They need to work on their database search too."

"I am not happy with the RSA support. Sometimes they can be really annoying because it takes so long to get the support that you need."

"The user interface is a little bit difficult for new users and it needs to be improved."

"The pricing is based on the log size."

"The solution requires a huge infrastructure and that is costly."

"Price-wise, the product is quite economical. I rate the solution's price as three or four on a scale of one to ten, where one is considered to be a very economically priced tool."

"The product is expensive."

"The product price was reasonable for my region and the market."

"In comparison to other SIEM solutions such as Splunk, NetWitness is less costly."

"This is a pricey solution; it's not cheap."

"RSA NetWitness Logs and Packets do not have a subscription model, it's a one-time purchase. There is only a perpetual license."

"It provides tools to assist in selecting the appropriate license and usage scenarios."

"The NetWitness Platform may be affordable only for enterprise-level customers, as it may not be within the budget of small and medium-sized businesses."

"We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."