NetWitness NDR vs OpenText Core Endpoint Protection comparison

NetWitness and OpenText are both solutions in the Endpoint Protection Platform (EPP) category. NetWitness is ranked #55, while OpenText is ranked #49 with an average rating of 5.0. NetWitness holds a 0.5% mindshare in EPP, compared to OpenText’s 1.1% mindshare. Additionally, 87% of NetWitness users are willing to recommend the solution, compared to 89% of OpenText users who would recommend it.

NetWitness NDR

Read 15 NetWitness NDR reviews

2,568 Views
745 Comparison Views

87% willing to recommend

OpenText Core Endpoint Prot...

Read 31 OpenText Core Endpoint Protection reviews

2,040 Views
1,816 Comparison Views

89% willing to recommend

NetWitness NDR

OpenText Core Endpoint Prot...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Dec 28, 2025

NetWitness NDR and OpenText Core Endpoint Protection compete in the network security sector. OpenText Core Endpoint Protection has the upper hand due to its advanced endpoint security features and user satisfaction in deployment and support.

Features: NetWitness NDR offers real-time threat detection, comprehensive network visibility, and advanced analytics. OpenText Core Endpoint Protection focuses on endpoint security with machine learning-driven insights, extensive control options, and robust threat remediation capabilities.

Room for Improvement: NetWitness NDR could streamline its deployment process, reduce the learning curve, and improve integration capabilities. OpenText Core Endpoint Protection could benefit from pricing adjustments, enhanced dashboard usability, and more detailed reporting options.

Ease of Deployment and Customer Service: OpenText Core Endpoint Protection provides seamless deployment and strong technical support, ensuring a quick operational start. In contrast, NetWitness NDR, while detailed in guidance, presents a steeper learning curve, affecting ease of use.

Pricing and ROI: NetWitness NDR is noted for cost-effective network monitoring, but OpenText Core Endpoint Protection, despite a higher price, offers enhanced security features, leading to a compelling ROI due to its comprehensive protection.

To learn more, read our detailed NetWitness NDR vs. OpenText Core Endpoint Protection Report (Updated: December 2025).

Buyer's Guide

NetWitness NDR vs. OpenText Core Endpoint Protection

December 2025

Download the complete report

Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

NetWitness NDR

Ranking in Endpoint Protection Platform (EPP)

55th

Average Rating

8.0

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Threat Intelligence Platforms (TIP) (40th), Endpoint Detection and Response (EDR) (57th), Security Orchestration Automation and Response (SOAR) (25th), Network Detection and Response (NDR) (19th), Extended Detection and Response (XDR) (38th)

OpenText Core Endpoint Prot...

Ranking in Endpoint Protection Platform (EPP)

49th

Average Rating

7.8

Reviews Sentiment

5.8

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of January 2026, in the Endpoint Protection Platform (EPP) category, the mindshare of NetWitness NDR is 0.5%, up from 0.2% compared to the previous year. The mindshare of OpenText Core Endpoint Protection is 1.1%, up from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Protection Platform (EPP) Market Share Distribution
Product	Market Share (%)
OpenText Core Endpoint Protection	1.1%
NetWitness NDR	0.5%
Other	98.4%

Endpoint Protection Platform (EPP)

Featured Reviews

reviewer1799727

Manager, IT Security Operations at a non-profit with 11-50 employees

Reliable and good support but can be expensive

I have no real complaints about the solution. Threat detection could be better. They need to enhance their threat intelligence feeds. We would like to have more IOCs or more trade intelligence to not only rely on the intelligence of the engineer in charge but to have some threat intelligence and some seeds of IOCs and to have the host have some artificial intelligence to reduce the number of false positives. I don't see this solution being very scalable. The solution is pricey.

Read full review

reviewer2584380

vCIO At Grove Networks Inc. at a computer software company with 11-50 employees

Improving threat detection is critical for enhanced protection

We use Webroot Business Endpoint Protection as a NextGen antivirus solution for our clients. It's included in the contract we have with our clients as a cost-effective option for antivirus protection Webroot Business Endpoint Protection is cost-effective for rolling it out to all of our clients,…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It is stable. We have been using it for some time, without any issues."

"We've contacted technical support several times. They've been very good. They have been able to help us resolve our issues."

"It is very easy to use, and its usability is great. The use cases are also very easy. The visualizations of the use cases are magnificent. You cannot find this in any other solution. From my point of view, it is great."

"The interface of this solution is very flexible and easy to use."

"This solution allows us to locate the malware in real-time."

"It helps our security team respond more accurately when there are threats, then we get less false positives or negatives."

"RSA NetWitness does market analysis in a more granular form. It gives you full visibility."

"It's a scalable solution. We have around five to eight customers using RSA NetWitness Endpoint, and we hope to increase the number of users."

More NetWitness NDR pros

"The initial setup is not complex at all. It's very straightforward."

"The feature we found most valuable is the AI functionality for maintaining endpoint security. This is very powerful."

"There aren't any features that really stand out — I just want it to keep malware out of my system. To date, I haven't had any malware in my system."

"I haven't observed any of the instabilities in the solution. It is a stable solution."

"The solution is very simple and straightforward to use."

"The ease of use of the centralized admin console is its best asset."

"The main reason we had Webroot is that it was cost-effective for our clients."

"I like that Webroot is very lightweight. It didn't bog down the machine, and more importantly, it had heuristics artificial intelligence to some degree. It wasn't like full-blown artificial intelligence, but something where you have one endpoint recognizing issues because it maintains a cloud database. If one client recognizes a threat, it would add it to the database, and almost immediately, every agent in the world would also know about that threat. That was very appealing to us. However, now it's becoming commonplace, whereas ventures like Symantec and McAfee were based more on the traditional model of definition and updates, and we were always falling behind. Webroot also has pretty good technical support."

More OpenText Core Endpoint Protection pros

Cons

"Threat detection could be better."

"The integration of the solution needs to be improved. The dashboard needs lots of updates as well. In the next release, we would like to see advanced fraud detection features."

"This solution needs an upgrade in reporting. I have heard from RSA that they are working on this, but as of yet it is not available."

"The threat intelligence could improve in RSA NetWitness Endpoint."

"I would like to see Security Orchestration and Response Automation (SOAR) integration."

"The contamination feature could be improved."

"The solution is modular, for example you can buy the RSA ePack, which you buy as a module is not part of the conduit solution. They could include it and have it as an all-in-one solution."

"NetWitness Endpoint's blocking feature does not work properly - if there's a malicious process, it's not possible to kill it via a custom rule unless and until it's flagged as malicious."

More NetWitness NDR cons

"Since they're dealing with multi-core environments now, the best option would be for them to enhance the product so that the product can automatically do an assessment on the machine."

"One of the biggest pain points is that it's not really ransomware-oriented. They will be able to catch some, but that's where Sentinel One is a better player compared to Webroot."

"It needs to improve the problems with the faster connection, and have a huge reduction in false positives."

"We need to have a stronger defense against CryptoLock and other attackers."

"It would be great if there was a feature which would allow you to scan an individual file on an endpoint user's computer."

"The only complaint I have with Webroot is its inability to prevent UoD phishing and its inability to check against bots or block anti-attacks. Plus the URL server is in zero-definition."

"There needs to be more advanced analytics. It would make it a more powerful antivirus solution within the marketplace."

"I did notice that my OS slowed down, but I don't know if that's due to Webroot."

More OpenText Core Endpoint Protection cons

Pricing and Cost Advice

"The cost depends on the number of endpoints that you want to monitor, but it is not expensive."

"The price of the solution depends on the environment. If the environment is large then it will cost more. However, the larger the environment with more endpoints, you will receive an increased discount. If the environment is very small, then you might think it is expensive. It is always better to buy in bulk to receive a discount. The minimum number of assets is usually 500, with discounts on 1000 and 2000."

"We are on a three-year contract to use RSA NetWitness Network."

"NetWitness Endpoint is less costly than its competitors, but it offers fewer features."

"It is highly scalable. It can be bought based on your requirements."

"The pricing is not very economical. It is a quite costly product for India. One thing is that when you purchase it, you have to purchase a module separately."

"It is an expensive product."

"They can easily adjust if you have the requirements which are required. If you have a budget cut or a budget constraint, they can bend."

More NetWitness NDR pricing and cost advice

"The pricing is high."

"Webroot Business Endpoint Protection is not too expensive. My licenses cost me between $300 and $400. It is really good price wise."

"From a pricing standpoint, I would rate it a four out of five."

"The solution doesn't cost too much. It's about 30 Euros a year for each endpoint. It's pretty affordable for us and for many other companies."

"I can't recall the exact pricing, but I believe there is a monthly fee of $20-30 per user."

"I rate the product's pricing a three on a scale of one to ten, where one is cheap, and ten is expensive. There are no costs in addition to the product's standard licensing fees."

"With Webroot Business Endpoint Protection, I can select a yearly billing cycle."

"Its cost is not much per month. Our price is a couple of bucks a user."

More OpenText Core Endpoint Protection pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

881,082 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

10%

Computer Software Company

10%

Manufacturing Company

Performing Arts

Computer Software Company

11%

Performing Arts

Manufacturing Company

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	10
Midsize Enterprise	2
Large Enterprise	5

By reviewers
Company Size	Count
Small Business	35
Midsize Enterprise	2
Large Enterprise	2

Questions from the Community

Ask a question

Earn 20 points

What do you like most about Webroot Business Endpoint Protection?

I haven't observed any of the instabilities in the solution. It is a stable solution.

See all answers

What is your experience regarding pricing and costs for Webroot Business Endpoint Protection?

Webroot Business Endpoint Protection is probably on the cheaper side, so I would rate their pricing a one or a two out of ten.

See all answers

What needs improvement with Webroot Business Endpoint Protection?

Webroot Business Endpoint Protection needs to improve its ability to detect threats. It does not do what it's advertised to do. Real-time threat detection also doesn't work as it should.

See all answers

Comparisons

Darktrace vs NetWitness NDR

Compared 9% of the time

Trellix Endpoint Security Platform vs NetWitness NDR

Compared 5% of the time

ExtraHop Reveal(x) vs NetWitness NDR

Compared 5% of the time

Wazuh vs NetWitness NDR

Compared 5% of the time

Corelight vs NetWitness NDR

Compared 4% of the time

More NetWitness NDR Competitors

Microsoft Defender for Endpoint vs OpenText Core Endpoint Protection

Compared 23% of the time

Huntress Managed EDR vs OpenText Core Endpoint Protection

Compared 8% of the time

HP Wolf Security vs OpenText Core Endpoint Protection

Compared 7% of the time

SentinelOne Singularity Complete vs OpenText Core Endpoint Protection

Compared 6% of the time

Malwarebytes Teams vs OpenText Core Endpoint Protection

Compared 6% of the time

More OpenText Core Endpoint Protection Competitors

Product Reports

Buyer's Guide

NetWitness NDR

January 2026

Download NetWitness NDR product report

Buyer's Guide

OpenText Core Endpoint Protection

January 2026

OpenText Core Endpoint Protection report

Download OpenText Core Endpoint Protection product report

Also Known As

RSA ECAT, NetWitness Network

Webroot SecureAnywhere Business Endpoint Protection

Overview

Using a centralized combination of network and endpoint analysis, behavioral analysis, data science techniques and threat intelligence, NetWitness NDR helps analysts detect and resolve known and unknown attacks while automating and orchestrating the incident response lifecycle. With these capabilities on one platform, security teams can collapse disparate tools and data into a powerful, blazingly fast user interface.

NetWitness

OpenText Core Endpoint Protection offers cloud-managed endpoint security with AI integration, providing real-time protection and lightweight performance. It ensures low system impact, seamless cloud integration, and cost-effective security solutions for various devices.

OpenText Core Endpoint Protection is a comprehensive endpoint security platform utilized by managed-service providers for antivirus and firewall functionality across servers, workstations, and mobile devices. It employs AI for robust threat detection, integrating with cloud applications for real-time updates. Multi-layered security features include malware protection, network defense, and DNS protection. Although connectivity and threat reporting need improvement, this platform extensively supports remote device management and integrates efficiently with Active Directory policies.

What are the key features of OpenText Core Endpoint Protection?

Cloud Management: Centralized admin console for easy oversight
AI Integration: Enhanced threat detection capabilities
Lightweight Performance: Minimal impact on system resources
Real-time Threat Database: Constant updates for effective protection
Web Control Interface: Monitors and controls web traffic

What benefits are associated with OpenText Core Endpoint Protection?

Ease of Setup and Maintenance: Facilitates quick deployment and upkeep
Seamless Cloud Integration: Simplifies scalability and operation
Cost-Effectiveness: Affordable pricing with comprehensive features
Mobile Security Capabilities: Supports remote device management

OpenText Core Endpoint Protection finds application in industries requiring stringent data protection and peace of mind over device security. Managed-service providers implement this for comprehensive antivirus and firewall features, safeguarding multi-device networks. It is particularly useful for DNS protection and integrating with Active Directory policies, enabling secure yet flexible operations across sectors.

OpenText

Sample Customers

ADP, Ameritas, Partners Healthcare

Mytech Partners

Buyer's Guide

NetWitness NDR vs. OpenText Core Endpoint Protection

December 2025

Free Report: NetWitness NDR vs. OpenText Core Endpoint Protection

Find out what your peers are saying about NetWitness NDR vs. OpenText Core Endpoint Protection and other solutions. Updated: December 2025.

DOWNLOAD NOW

881,082 professionals have used our research since 2012.

See our NetWitness NDR vs. OpenText Core Endpoint Protection report.

See our list of best Endpoint Protection Platform (EPP) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.