Try our new research platform with insights from 80,000+ expert users
Mandiant Advantage Logo

Mandiant Advantage pros and cons

Vendor: Google
4.2 out of 5
Leave a review

Pros & Cons summary

Mandiant Advantage enhances SIEM efficiency with platforms like Splunk through enriched live IOC feeds that identify threat actors' tactics. This highly-scalable platform offers directory monitoring for early attack alerts but struggles with bugs, complex data collaboration, and false positives. Its processor-heavy on-prem client slows scans. Improvements in support and portal systems are needed for better user experience.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Mandiant Advantage enriches SIEM, particularly enhancing operational efficiency with platforms like Splunk.
The live IOC feed effectively identifies the type, technique, and tactics used.
Mandiant Advantage provides full context and all the information, with detailed data about threat actors and tactics.
The scalability of Mandiant Advantage is highly rated.
The directory monitoring feature is valuable, offering early alerts and preparation time before attacks.

CONS

Mandiant Advantage's platform has frequent bugs resulting from changes, occasionally leading to the system failure.
Data collaboration can be complex and visually demanding.
Mandiant Advantage generates noise with false positives when dealing with well-known companies.
Support could be improved; the shift to a portal system hasn't been very effective.
Mandiant's on-prem client is processor-intensive, causing CPU strain and slowing tasks during scans.
 

Mandiant Advantage Pros review quotes

MB
Marty_Barron
Regional Cyber Security Manager
Feb 22, 2023
The advantage of the solution is being able to go look up threat actors and get a lot of detailed information about different attacks and different tactics and general information about threats.
Read full review
Joshua Garnett - PeerSpot reviewer
Joshua Garnett
Director, Information Services at Institute of Peace
Mar 9, 2023
It is so valuable to have someone performing these functions outside of our business hours when we don't have staff in the building. We've seen a lot of solid metrics on the amount of malware that it's detecting and resolving. We're pleased with it so far.
Read full review
PP
Peter Pamuk
Managing Member at a tech vendor with self employed
Mar 12, 2023
The feature I have found most valuable is directory monitoring. We experienced an instance of threat actors trying to ensure a complex and massive attack against our customer's infrastructure on the forum. That is, they were animating people on a formum. The solution alerted us to this two days ahead of the attack, which gave us plenty of time to prepare for it.
Read full review
Buyer's Guide
Mandiant Advantage
March 2026
Free Report: Mandiant Advantage Reviews and More
Learn what your peers think about Mandiant Advantage. Get advice and tips from experienced pros sharing their opinions. Updated: March 2026.
DOWNLOAD NOW
885,264 professionals have used our research since 2012.
SameepAgarwal - PeerSpot reviewer
SameepAgarwal
Associate Consultant (IT Security) at Triune Digital Security
Jan 28, 2025
The live IOC feed identifies the type, technique, and tactics used.
Read full review
reviewer2646066 - PeerSpot reviewer
reviewer2646066
Information Security Officer at a tech vendor with 51-200 employees
Jan 30, 2025
Mandiant Advantage is excellent at providing the full context and all the information, where the information was found, and the full data, including the raw data that was uploaded onto the Internet.
Read full review
LF
Lior Fisherman
Head Of Cyber Threat Intelligence at Discount Bank
Feb 13, 2026
Mandiant Advantage has helped me enhance operational efficiency overall because it enriched our SIEM, which is Splunk, and the YARA rules I wrote within the platform help me understand better what my threat landscape is.
Read full review
 

Mandiant Advantage Cons review quotes

MB
Marty_Barron
Regional Cyber Security Manager
Feb 22, 2023
They could have better support. Now that they've merged, they are moving towards a portal system, which isn't very helpful.
Read full review
Joshua Garnett - PeerSpot reviewer
Joshua Garnett
Director, Information Services at Institute of Peace
Mar 9, 2023
Mandiant's on-prem client is too processor-intensive, so it's putting a strain on the local device's CPU. When a scan is running on the device, the other processing tasks slow to a crawl. We're still trying to figure out the correct settings for the client.
Read full review
PP
Peter Pamuk
Managing Member at a tech vendor with self employed
Mar 12, 2023
I think that the data query that is used for data cloud language should be improved. It's really hard to query actual data from the platform.
Read full review
Buyer's Guide
Mandiant Advantage
March 2026
Free Report: Mandiant Advantage Reviews and More
Learn what your peers think about Mandiant Advantage. Get advice and tips from experienced pros sharing their opinions. Updated: March 2026.
DOWNLOAD NOW
885,264 professionals have used our research since 2012.
SameepAgarwal - PeerSpot reviewer
SameepAgarwal
Associate Consultant (IT Security) at Triune Digital Security
Jan 28, 2025
Collaboration of data in my view becomes a bit clogged, requiring effort to understand visually.
Read full review
reviewer2646066 - PeerSpot reviewer
reviewer2646066
Information Security Officer at a tech vendor with 51-200 employees
Jan 30, 2025
Sometimes Mandiant Advantage becomes noisy when dealing with widely recognized companies due to false positives.
Read full review
LF
Lior Fisherman
Head Of Cyber Threat Intelligence at Discount Bank
Feb 13, 2026
Mandiant Advantage's platform itself is not good yet. They have many bugs because they changed the platform, so from time to time it's simply not working at all.
Read full review

Product Categories

Product Categories
Extended Detection and Response (XDR)
Attack Surface Management (ASM)

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Mandiant Advantage Logo
CrowdStrike Falcon vs Mandiant Advantage
Wazuh vs Mandiant Advantage Logo
Wazuh vs Mandiant Advantage
Cortex XDR by Palo Alto Networks vs Mandiant Advantage Logo
Cortex XDR by Palo Alto Networks vs Mandiant Advantage
Darktrace vs Mandiant Advantage Logo
Darktrace vs Mandiant Advantage
SentinelOne Singularity Complete vs Mandiant Advantage Logo
SentinelOne Singularity Complete vs Mandiant Advantage
IBM Security QRadar vs Mandiant Advantage Logo
IBM Security QRadar vs Mandiant Advantage
Microsoft Defender XDR vs Mandiant Advantage Logo
Microsoft Defender XDR vs Mandiant Advantage
Trellix Endpoint Security Platform vs Mandiant Advantage Logo
Trellix Endpoint Security Platform vs Mandiant Advantage
TrendAI Vision One vs Mandiant Advantage Logo
TrendAI Vision One vs Mandiant Advantage
Rapid7 InsightIDR vs Mandiant Advantage Logo
Rapid7 InsightIDR vs Mandiant Advantage
Anomali vs Mandiant Advantage Logo
Anomali vs Mandiant Advantage
Bugcrowd vs Mandiant Advantage Logo
Bugcrowd vs Mandiant Advantage
Cymulate vs Mandiant Advantage Logo
Cymulate vs Mandiant Advantage
Qualys CyberSecurity Asset Management vs Mandiant Advantage Logo
Qualys CyberSecurity Asset Management vs Mandiant Advantage
NetWitness NDR vs Mandiant Advantage Logo
NetWitness NDR vs Mandiant Advantage
See all alternatives

Product Categories

Product Categories
Extended Detection and Response (XDR)
Attack Surface Management (ASM)

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Mandiant Advantage Logo
CrowdStrike Falcon vs Mandiant Advantage
Wazuh vs Mandiant Advantage Logo
Wazuh vs Mandiant Advantage
Cortex XDR by Palo Alto Networks vs Mandiant Advantage Logo
Cortex XDR by Palo Alto Networks vs Mandiant Advantage
Darktrace vs Mandiant Advantage Logo
Darktrace vs Mandiant Advantage
SentinelOne Singularity Complete vs Mandiant Advantage Logo
SentinelOne Singularity Complete vs Mandiant Advantage
IBM Security QRadar vs Mandiant Advantage Logo
IBM Security QRadar vs Mandiant Advantage
Microsoft Defender XDR vs Mandiant Advantage Logo
Microsoft Defender XDR vs Mandiant Advantage
Trellix Endpoint Security Platform vs Mandiant Advantage Logo
Trellix Endpoint Security Platform vs Mandiant Advantage
TrendAI Vision One vs Mandiant Advantage Logo
TrendAI Vision One vs Mandiant Advantage
Rapid7 InsightIDR vs Mandiant Advantage Logo
Rapid7 InsightIDR vs Mandiant Advantage
Anomali vs Mandiant Advantage Logo
Anomali vs Mandiant Advantage
Bugcrowd vs Mandiant Advantage Logo
Bugcrowd vs Mandiant Advantage
Cymulate vs Mandiant Advantage Logo
Cymulate vs Mandiant Advantage
Qualys CyberSecurity Asset Management vs Mandiant Advantage Logo
Qualys CyberSecurity Asset Management vs Mandiant Advantage
NetWitness NDR vs Mandiant Advantage Logo
NetWitness NDR vs Mandiant Advantage
See all alternatives
Related questions
  • 88
What is the best EDR or XDR product for a company with 9000 employees?
  • 89
When evaluating Extended Detection and Response (XDR), what aspect do you think is the most important to look for?
  • 207
How do you decide about the alert severity in your Security Operations Center (SOC)?
  • 141
Which is better for Endpoint Security: EDR or XDR solutions?
  • 93
What are the main differences between XDR and SIEM?
  • 516
Why is (XDR) Extended Detection and Response important for companies?
  • 110
How do you use the MITRE ATT&CK framework for improving enterprise security?
  • 98
What tools and solutions do you use for automated incident response in an enterprise in 2022?
  • 85
FortiXDR vs Cortex Pro - which is the best?
  • 413
What is Cognitive Cybersecurity and what is it used for?