# ExtraHop Reviews **Vendor:** ExtraHop Networks **Category:** [Network Detection and Response (NDR) Software](https://www.g2.com/categories/network-detection-and-response-ndr) **Average Rating:** 4.6/5.0 **Total Reviews:** 68 ## About ExtraHop ExtraHop is the cybersecurity partner enterprises trust to reveal cyber risk and build business resilience. The ExtraHop RevealX platform for network detection and response and network performance management uniquely delivers the instant visibility and unparalleled decryption capabilities organizations need to expose the cyber risks and performance issues that other tools can’t see. When organizations have full network transparency with ExtraHop, they can investigate smarter, stop threats faster, and keep operations running. RevealX deploys on premises or in the cloud. It addresses the following use cases: - Ransomware - Zero trust - Software supply chain attacks - Lateral movement and C2 communication - Security hygiene - Network and Application Performance Management - IDS - Forensics and more A few of our differentiators: Continuous and on-demand PCAP: Full packet processing is superior to NetFlow and yields higher quality detections. Strategic decryption across a variety of protocols, including SSL/TLS, MS-RPC, WinRM, and SMBv3, gives you better visibility into early-stage threats hiding in encrypted traffic as they attempt to move laterally across your network. Protocol coverage: RevealX decodes more than 70 network protocols. Cloud-scale machine learning: Rather than relying on limited "on-box" compute power for analysis and detections, RevealX uses sophisticated cloud-hosted and cloud-scale machine learning workloads to identify suspicious behavior in real time and create high-fidelity alerts. ExtraHop was named a Leader in The Forrester Wave™: Network Analysis and Visibility, Q2 2023. Key Technology Integration and Go-to-Market Partners: CrowdStrike: RevealX integrates with CrowdStrike Falcon® LogScale, Falcon Insight XDR, Falcon Threat Graph, and Falcon Intelligence. Splunk SOAR AWS Google Cloud Security Founded in 2007, ExtraHop is privately held and headquartered in Seattle, Wash. To learn more, visit www.extrahop.com. ## ExtraHop Pros & Cons **What users like:** - Users value the **all-in-one solution** of ExtraHop, providing unmatched network visibility and excellent customer support. (1 reviews) - Users value ExtraHop's **comprehensive monitoring** , offering complete visibility into network traffic and enhancing security operations. (1 reviews) - Users find ExtraHop's product benefits enhanced by its **easy deployment** via physical or virtual appliances, supported by knowledgeable teams. (1 reviews) - Users value the **responsive support** from ExtraHop, highlighting the knowledgeable Customer Success teams that enhance their experience. (1 reviews) ## ExtraHop Reviews ### 1. Complete visibility on network activity **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Insurance | Mid-Market (51-1000 emp.) **Reviewed Date:** July 31, 2025 **What do you like best about ExtraHop?** What I like most about ExtraHop is the ability to monitor and analyze all traffic passing through the network. Generally, companies have strong endpoint controls through tools like EDR; however, network is often limited to firewalls with intrusion detection and intrusion prevention rules. Where I find ExtraHop excels is through complete network visibility by mapping assets, learning network traffic and spotting anomalies, and giving Security Operations teams visibility into what is occurring on their network. ExtraHop is easy to deploy through either and appliance on physical networks our through a virtual appliance in the cloud. The Customer Success teams are deeply knowledgable and provide great support to customers. **What do you dislike about ExtraHop?** Not a dislike but a feature I would like to see is ExtraHop move towards prevention. Currently, the product is good at identifying and detecting suspicious or malicious activity. Prevention can be achieved through integration with tools but it would be nice to have these native to ExtraHop. **What problems is ExtraHop solving and how is that benefiting you?** Whenever we perform penetration tests, ExtraHop is always the first tool to detect the activity. Often times, the penetration testers will start their campaigns performing reconnaissance and trying to remain stealthy. Because they are not attempting to exploit vulnerabilities at this stage and may be using legitimate system tools, these actions would usually go unnoticed. By inspecting all network traffic, ExtraHop is quick to determine unusual activity on the network host even if it is not a managed device. The network traffic can be inspected by SOC teams and actions can be taken to contain the suspicious device. ### 2. One stop shop for network detections and notifications Easy to use and easy to understand. **Rating:** 5.0/5.0 stars **Reviewed by:** Jeff H. | Small-Business (50 or fewer emp.) **Reviewed Date:** February 05, 2024 **What do you like best about ExtraHop?** I like that ExtraHop identifies the alert in a mannert that is easy to follow. It gives the risk level of the alert, shows the metrics, breaks down the records for the incident, shows the packets involved, and even includes a pcap of the packets that can be used in WireShark to analyze further. It also gives the Mitre techniques as well as mitigation options to mitigate the attack. **What do you dislike about ExtraHop?** I haven't found to many things I dislike about ExtraHop. It is not an automated system that will block an attack as it is happening, but it does e-mail out alerts so that I have the ability to begin investigating the incident as soon as possible leading to a faster mitigation scenario. **What problems is ExtraHop solving and how is that benefiting you?** As an ISP our network security is very important. ExtraHop is a tool to help ensure we are seeing any attack in realtime, giving us the ability to troubleshoot and mitigate the issue in a speedy manner. We have the abilty to isolate traffic quickly when an issue arises. ### 3. RevealX from a daily user perspective **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Telecommunications | Enterprise (> 1000 emp.) **Reviewed Date:** February 28, 2024 **What do you like best about ExtraHop?** Overall, RevealX is easy to use and provides great visibility into the network. ExtraHop has very thorough documentation and if you can't find what you're looking for the support and training teams are always willing to help. I've experienced a quick turnaround for questions around the product. The training team is excellent at maintain user engagement in a virtual setting. The product is also super customizable which is great for unique use and abuse cases. I use RevealX almost daily, my top three pros from a technical perspective are the increased visibility of the network, customizing doesn't mean learning a new language, and low barrier to entry for analysts who are new to networking and security. **What do you dislike about ExtraHop?** My top three cons for the product are that when adjusting baseline metrics, the baseline completely resets and there is a 3-4 week period before the baseline is calculated. Going off the above, it does not perform "lookback" searches for detections, meaning I can't craft a detection today and then see if the logic matches any stored data in the tool. Some of the customization areas need a bit of work so that they tie into the other features of the product. **What problems is ExtraHop solving and how is that benefiting you?** ExtraHop enables us to have better visibility. This has resulted in us making configuration changes on hardware and network devices to decrease our attack surface. ### 4. ExtraHOP provides visibility to quickly resolve performance and security issues **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Higher Education | Mid-Market (51-1000 emp.) **Reviewed Date:** February 21, 2024 **What do you like best about ExtraHop?** ExtraHOP provides great visibility for performance and security issues in our environment. Many of the detections, dashboards, and device groups provide easy starting points for learning to use extraHOP. Then, building custom dashboards and detections is very simple. We use extraHOP every day to assist us resolving problemes. The customer support and partnership we have with extraHOP has been key to our success. **What do you dislike about ExtraHop?** You need to really understand your environment from the network layer to the application layers. extraHOP provides many options, but you need to determine what works best for your environment. It does take some time for planning the implementation properly but the planning and design time is worth it. **What problems is ExtraHop solving and how is that benefiting you?** extraHOP has helped us solve authentication issues, storage issues, server issues, network performance issues, security problems and other application problems. We had many blind spots and extraHOP has helped us gain visibility to many of our services. ### 5. you get what you pay for **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Internet | Small-Business (50 or fewer emp.) **Reviewed Date:** February 14, 2024 **What do you like best about ExtraHop?** We've tested the product using reputable 3rd party pentesters manual and automated. And we've compared it with other products. The difference between seeing that you are being compromised and not seeing it is huge. How do you choose a competitive product that is cheaper if it doesn't see that you are being compromised? Or how do you rest at night knowing that you've done everything you can to safeguard your network? Extrahop's visibility is far above the rest. **What do you dislike about ExtraHop?** It is pricey. So if you are Misinformed and think that backups, firewalls, and anti-virus solutions are going to save you then you aren't going to understand the price of this product. **What problems is ExtraHop solving and how is that benefiting you?** Mainly keeping our company from experiencing a ransomware event. We have staff dedicated to keeping their eye on the product and chasing down alerts 24/7/365. ### 6. ExtraHop - Executive Network monitoring tool **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** January 03, 2024 **What do you like best about ExtraHop?** With ExtraHop deployed in our network we now have real-time visibiltity and insights into network traffice and performance. Helps us troubleshoot, optimize and secure the network. ExtraHop platform is very easy to use, and has an intuitive easy to follow layout helping us review detections quickly. ExtraHop delivered on promises and provided excelent customer service. This is a tool that I use everyday to keep on eye on the network security. Deploying the devices in the infrastructure can be as simple as connecting to the network and mirroing all traffic to the device. This allows quick visability on the overall network performance and health. **What do you dislike about ExtraHop?** It can be expensive to deploy, can generate many false positives and has limited integrations into other tools and platforms. **What problems is ExtraHop solving and how is that benefiting you?** ExtraHop is helping us monitor network security, identify bottlenecks and improve overal performance and security related to overall network hygine. ### 7. Overall good product but needs more flexibility. **Rating:** 3.5/5.0 stars **Reviewed by:** Khaja Ahmed M. | Enterprise (> 1000 emp.) **Reviewed Date:** January 30, 2024 **What do you like best about ExtraHop?** 1. Seamless monitoring. 2. Simple and straightforward rule tuning. 3. Dashboard capabilities **What do you dislike about ExtraHop?** 1. Lot of false positives. 2. Machine learning model is not flexible to the requirements. 3. Sometimes performance issues. **What problems is ExtraHop solving and how is that benefiting you?** Its providing detections that are required to ensure all the permiters are covered. ### 8. Network security monitoring **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Enterprise (> 1000 emp.) **Reviewed Date:** November 09, 2022 **What do you like best about ExtraHop?** ExtraHop provides valuable insight into network activities and alerts on anomalies that you can't get from just monitoring logs. **What do you dislike about ExtraHop?** Number one issue with ExtraHop is SIEM integration if there is no native connector available. building it through a java script trigger is not user friendly. Number two issue is threat feeds. We have a high-fidelity threat feed we'd like to add, but we have to make a cludgey system where we download the feed, gzip it, then upload it back to ExtraHop. Please build in native STIX/TAXII feeds to the product. I'd say trigger complexity is also a downside to ExtraHop. Not many security analysts will be able to understand and write the java code necessary for triggers. It would be nice to have a building block method for triggers where novices could build out most of it with pre-defined blocks fo code, something like a visual workflow. **What problems is ExtraHop solving and how is that benefiting you?** There are activities that only occur on the network and will not show up in logs. ExtraHop is able to perform threat and anomaly detection on endopint and application communications that you won't get from your other security applications. Packet capture is not an easy system to setup. If you purchase the ETA, you have access to valuable packet information that can make a difference in a incident investigation. ### 9. Single Pane Visibility into the unknown parts of the network **Rating:** 4.5/5.0 stars **Reviewed by:** Rajiv T. | Senior IT Security Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** November 17, 2022 **What do you like best about ExtraHop?** Extrahop looks at both on-prem and cloud traffic. It analyzes packets for security anomalies at a scale that I have not seen happen before. It also does application performance at a level that gives a very detailed visibility **What do you dislike about ExtraHop?** I do hope they would come up with their proprietary agents for the cloud nodes instead of using rpcapd, which I find can be a bit unstable especially in high-traffic scenarios **What problems is ExtraHop solving and how is that benefiting you?** Extrahop was able to show us some east -west traffic that should not have been happening. We also had a constant stream of complaints about the datawarehouse being slow and always having the network blamed. But once we had Extrahop we were able to pin-point and prove that the delay was happening at the database level not at the network layer. We could never have seen this without Extrahop ### 10. Extrahop Reveal(x) 360- An absolute must for Network Visibility **Rating:** 5.0/5.0 stars **Reviewed by:** Dev S. | Security Lead, Enterprise (> 1000 emp.) **Reviewed Date:** November 16, 2022 **What do you like best about ExtraHop?** Extrahop provides East-West network visibility and can customize rules, providing deep packet inspection capability to our security team. Extrahop Packet capturing feature plays a vital role in network forensics. **What do you dislike about ExtraHop?** Extrahop should extend its partnership with threat researchers and vendors to enrich its intel feeds and database for actionable intel on detections. Also, extend its partnership for API integration with tools like Tanium/SCCM, PAN firewalls etc **What problems is ExtraHop solving and how is that benefiting you?** Extrahop provides visibility for network traffic that helps with East-West network segmentation. Extrahop Reveal(x) 360 helps during investigations and One-Click containment during an Incident reducing the response time to a greater extent. ### 11. Very easy to use and lots of good information **Rating:** 5.0/5.0 stars **Reviewed by:** Matthew R. | Server Admin, Mid-Market (51-1000 emp.) **Reviewed Date:** October 21, 2022 **What do you like best about ExtraHop?** I like being able to drill down into the options and get the data I want. I can easily change my mind and go back or what I am looking for. **What do you dislike about ExtraHop?** After taking some technical training for the product, I found that you need to invest the time to make a good dashboard for your needs. Having everything at your finger tips is valuable and makes it quick to figure out issues. **What problems is ExtraHop solving and how is that benefiting you?** Big issue this has solved is user password lock outs, Where it's coming from and who it is. Also it has helped with being able to see traffic from server to server. ### 12. Directory Cyber Security **Rating:** 5.0/5.0 stars **Reviewed by:** Zachary P. | Directory Cyber Security, Enterprise (> 1000 emp.) **Reviewed Date:** November 09, 2022 **What do you like best about ExtraHop?** ExtraHop provides detailed visibility of internal network traffic and gives insight into what is expected. This telemetry our other tools do not have and allows for fast isolation of issues. **What do you dislike about ExtraHop?** Triggers that drive alerts can sometimes be complex. ExtraHop customer success can step in and aide in their development which addresses this issue. It would be interesting to share solution patterns with other customers. **What problems is ExtraHop solving and how is that benefiting you?** ExtraHop helps us visualize what is occurring at a granular level on the network. Specifically down to the application level between hosts improving the time to conclude investigations. ### 13. Incomparable NDR in the Market **Rating:** 5.0/5.0 stars **Reviewed by:** Emmanuel D. | IT Security Solution Support , Enterprise (> 1000 emp.) **Reviewed Date:** December 08, 2022 **What do you like best about ExtraHop?** Using extrahop help us monitor our network to anything malicious or suspicious from the network level. **What do you dislike about ExtraHop?** So far i dont see any downside with regards to this Solution since it helps us monitor anything suspicious when it comes to our network (e.g file transfer bandwidth etc) **What problems is ExtraHop solving and how is that benefiting you?** Using this NDR solution help us cover anything that into networks. This solution resolve our issue that our EDR cannot detect. ### 14. Amazing product! **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Insurance | Mid-Market (51-1000 emp.) **Reviewed Date:** May 18, 2021 **What do you like best about ExtraHop?** The amount of data captured, analyzed and presented. **What do you dislike about ExtraHop?** Overall, there is not much to dislike. My only feedback would be to ensure you do training as this is a tool where you get out of it what effort you put in. **What problems is ExtraHop solving and how is that benefiting you?** Full visibility into network traffic allowing us to identify endpoints which might not be in inventory. ### 15. Powerful capabilities - Proactively monitor your network with ease! **Rating:** 5.0/5.0 stars **Reviewed by:** Jeffrey G. | Information System Analyst, Enterprise (> 1000 emp.) **Reviewed Date:** May 24, 2022 **What do you like best about ExtraHop?** ExtraHop provides an easy to use interface and powerful capabilities that can scale to any size network. Customer support is amazing. My NOC is expanding this service to our other business areas and we look forward to new features. **What do you dislike about ExtraHop?** Honestly so far this is a great product for proactive notifications of network issues. It's only drawback is it is only as smart as you tell it to be so be prepared to update the databases appropriately. **What problems is ExtraHop solving and how is that benefiting you?** We are seeing issues in our networks that are not visible in other applications we have been using. This is valuble to our end operations for diagnosis. We can proactively alert teams to take care of incidents better with ExtraHop. ### 16. Incredible analytics with an attractive, easy to use interface **Rating:** 4.5/5.0 stars **Reviewed by:** Shaun G. | Technical Services Supervisor, Mid-Market (51-1000 emp.) **Reviewed Date:** June 20, 2022 **What do you like best about ExtraHop?** We really like how detailed you can get with the reporting, the interface isn't overwhelming but you can really dig into the complexities as needed or required. **What do you dislike about ExtraHop?** Can be a bit challenging to integrate with your network equipment depending on what type you are using, and the device number limitations can force you to prioritize your most important/critical assets and disregard some others. **What problems is ExtraHop solving and how is that benefiting you?** It's a huge help to see insecure traffic within our network, analyzing patterns of behavior that don't match expectations (ie: data exfiltration). Really helps when we don't have enough staff to analyze all the traffic we already have. ### 17. ExtraHop Reveal(x) gives us so much good information! **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Insurance | Enterprise (> 1000 emp.) **Reviewed Date:** June 06, 2022 **What do you like best about ExtraHop?** With full packet capture and storage, we are able to check the security of network traffic to find where it violates our standards and processes. We can then make accurate recommendations to administrators on how to improve their security. **What do you dislike about ExtraHop?** It's not a bad thing, but sometimes there is so much information that you can get from a simple query that finding what you actually need at the time falls by the wayside when you end up going on tangents of other concerning traffic. **Recommendations to others considering ExtraHop:** Verify cloud tapping capabilities if needed. **What problems is ExtraHop solving and how is that benefiting you?** Several team within our enterprise use ExtraHop Reveal(x). It was originally purchased mainly for our Cybersecurity team, to inspect certain kinds of traffic for issues. However, the more we use it, the more uses we find within Cybersecurity, let alone the Network team, the AD team, various app teams, and especially our Incident Response team. ### 18. A tool that quickly becomes indispensible **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Enterprise (> 1000 emp.) **Reviewed Date:** May 13, 2022 **What do you like best about ExtraHop?** ExtraHop gives us insights that we simply did not have prior to its installation. We are able to determine dependencies among servers, services, devices, databases, etc. that should be well documented but sometimes aren't. We can build topographical representations of our network segments. Some of the recent unexpected benefits include identifying (and thus being able to block) log4j attacks, and determining which of our clients are attempting to access applications and services using out-of-date SSL protocols. We can easily identify performance issues due to resource overloads or depletion on our web and application servers. In addition, ExtraHop has become a critical part of our security infrastructure for detection of and protection against the plethora of threats all companies face these days. **What do you dislike about ExtraHop?** When the tool was hosted entirely on-prem (including data), the short retention period for detailed records was an issue. I don't know if that was our policy or defined to some extent by the platform. Since moving to a cloud-based platform, this is no longer a concern. Outside of that one issue, we have found little to nothing to dislike, at least from a user perspective. I don't know what challenges the platform administrators may face - I've never heard any grumbling from the admins. **Recommendations to others considering ExtraHop:** ExtraHop provides insights we simply could not get from any other monitoring and diagnostic tool available in our environment. Within two weeks of installation, it was allowed us to determine the root cause of a severity 1 problem within two hours; without ExtraHop, it would have taken significantly longer, and we may have ended up only being able to mitigate the symptoms without fully understanding the core issue. Using this tool for over three years now has left us wondering how we ever survived without it. I cannot recommend it enough. **What problems is ExtraHop solving and how is that benefiting you?** Performance and connectivity issues; SSL protocols used; intrusion attacks. ### 19. RevealX NDR upgrade from existing NDR solution **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Banking | Enterprise (> 1000 emp.) **Reviewed Date:** June 28, 2022 **What do you like best about ExtraHop?** Performing the eval and purchasing directly from Extrahop was a mostly smooth experience. They made it easy and cost effective to upgrade to the RevealX platform. They had a systematic method and documentation to perform the evaluation and provided a report at the end of the eval. Deployment with PS was also well structured and straightforward along with integration. We were able to install and start to operationalize soon after deployment of the platform. **What do you dislike about ExtraHop?** The cost was definitely more expensive than our incumbent solution. Dubious support for sites in mainland China. Integrations with third parties could be more comprehensive. **What problems is ExtraHop solving and how is that benefiting you?** Consolidation of existing NDR platform into a single solution and therefore cost savings. Better security detections and alerting to be able to reduce false positives. ### 20. Extrahop is great tool for getting visibility and proactive protection **Rating:** 4.5/5.0 stars **Reviewed by:** Devang S. | Sr. Security Engineer. Security Operations, Enterprise (> 1000 emp.) **Reviewed Date:** August 26, 2022 **What do you like best about ExtraHop?** Extrahop is earier to deploy from engineering standpoint but from security side, it is great tool for visibility for the east west traffic as well. **What do you dislike about ExtraHop?** Extrahop Limitation on the automating the response with integration with the security vendors. This needs scoped for customers. **What problems is ExtraHop solving and how is that benefiting you?** It is getting me the visibility for east west segmentation ### 21. One of the Best Tools in the Network Visibility Space **Rating:** 4.0/5.0 stars **Reviewed by:** Travis S. | Expert IT Security Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** August 04, 2021 **What do you like best about ExtraHop?** Extrahop does exactly what it says it will do - analyze traffic live on the wire and present that traffic in easily digested formats, broken down by various metrics. The addition of Reveal(X) to capture potentially risky traffic helps our security incident teams correlate and track down quicker. **What do you dislike about ExtraHop?** Extrahop has an avenue it needs to deep dive into immediately, and that's inspecting, categorizing, risk scoring, and using external database data for a deep dive into IIoT/IoT devices. Currently, it can see the traffic on the wire, but the behaviors and risks behind IoT devices will overtake the standard known IT hardware in a few years. Given that these devices are already presenting significant risks to enterprises, they could become indispensable by becoming the masters of IoT devices. Not necessarily Extrahop's fault as it is a problem with any of these solutions, but aggregating traffic in a large enterprise is not only challenging but an expensive endeavor. There are plenty of networks we want to see but cannot afford to increase the number of EDAs. As a work-around, we use packet brokers to decrease the traffic flows to those we care about to ensure we don't massively oversubscribe the devices. **What problems is ExtraHop solving and how is that benefiting you?** We are using ExtraHop for both performance and security purposes. The developers and networking teams use ExtraHop to detect and remediate performance issues. Security teams use ExtraHop as both a correlation/evidence source and for detecting odd, insecure behaviors before they become problems. Using ExtraHop as the primary source, we have detected devices behaving badly that would never have been seen before. ### 22. Extrahop has given us insight into our network that nothing else has **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Enterprise (> 1000 emp.) **Reviewed Date:** July 18, 2022 **What do you like best about ExtraHop?** Beyond what comes "out of the box" with Extrahop, triggers can be written from scratch using JavaScript to collect custom metrics, actions, and notifications. **What do you dislike about ExtraHop?** Dashboard creation/editing could be more fluid. And region slideshows would be a great feature addition. **What problems is ExtraHop solving and how is that benefiting you?** Previously we were blind to much of the network traffic. With Extrahop we were able to find and correct many DNS issues, Active Directory issues, identify certicicates about to expire, visualize file share latency and traffic, even track accidentally moved directories with user and new location. Network Security can see & alert on active exploits, begin packet captures, and monitor external and international traffic. ### 23. ExtraHop Reveal(x) makes NDR deployment quick and easy **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Food & Beverages | Enterprise (> 1000 emp.) **Reviewed Date:** July 14, 2022 **What do you like best about ExtraHop?** Having the cloud dashboard removes the need to deploy appliances or install software and all of the resulting maintenance. The sensor hardware itself is quite easy to deploy in most any environment. **What do you dislike about ExtraHop?** The pricing can be a bit prohibitive for many IT budgets. **What problems is ExtraHop solving and how is that benefiting you?** Having visibility into how applications are communicating internally and externally is invaluable. Teams often think they understand what is talking to what, but there are often many things missing or forgotten that only get exposed when there is an outage. Having the security visibility into things that may or may not have other security tools installed also provides great value. ### 24. Cannot imagine doing security without Extrahop Reveal(X) **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Higher Education | Enterprise (> 1000 emp.) **Reviewed Date:** August 11, 2022 **What do you like best about ExtraHop?** Know what's out there and what is going on in our environment! **What do you dislike about ExtraHop?** We have limited interaction with their support which is disappointing because they are top-notch. With that said, it is a great product that has not required much in the way of support. **What problems is ExtraHop solving and how is that benefiting you?** Extrahop gives us visibility into all the interactivity of our systems internally and with external systems. It enriches this data by associating threat information with known bad actors and malicious activity and providing actionable guidance and integrating response through our ticketing system, AD, and Firewalls. ### 25. ExtraHop-Tool **Rating:** 4.5/5.0 stars **Reviewed by:** Jomy J. | Network Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** May 13, 2022 **What do you like best about ExtraHop?** ExtraHop tool is a game changer in isolating application issues from network perfomance. Before it was an infinite debate who is wrong, is it application or is it network **What do you dislike about ExtraHop?** There is still room to improve false positives when it comes to NDR functionality. we still need to manually isolate the genuine security systems we use here to report falsely **What problems is ExtraHop solving and how is that benefiting you?** We resolved a lot of application issues which was either rooted most of the times in subcomponents like DNS, RTOs or the response time itself from the system hosting ### 26. Great network insights. **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Insurance | Enterprise (> 1000 emp.) **Reviewed Date:** November 17, 2022 **What do you like best about ExtraHop?** Discovery, performance information, and threat intelligence. **What do you dislike about ExtraHop?** Defining custom devices and searching through the myriad of options to find the attribute needed. **What problems is ExtraHop solving and how is that benefiting you?** Ability to diagnose and identify network performance issues and security threats. ### 27. ExtraHop Exceeds my Expectations! **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Insurance | Mid-Market (51-1000 emp.) **Reviewed Date:** June 16, 2022 **What do you like best about ExtraHop?** We were looking to replace TruView [now Fluke] and found that ExtraHop had all of the features we required and added an NDR Security Detection Platform as well as Assset Discovery! **What do you dislike about ExtraHop?** Cost is fairly high but the value is there. We have only been using the product for 3 months so nothing has stood out as a "CON" yet. **Recommendations to others considering ExtraHop:** Look at what the competitors offer vs ExtraHop, we were able to merge three products into one by choosing EH thus eliminating multiple products and alleviating administration of several systems. **What problems is ExtraHop solving and how is that benefiting you?** Network Performance Monitoring, Application Performance Monitoring, Network Detection and Response, Security Threat Detection and Response ad Asset Discovery. ### 28. Make Extrahop your last stop for monitoring. **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Retail | Enterprise (> 1000 emp.) **Reviewed Date:** June 17, 2022 **What do you like best about ExtraHop?** The customization of dashboards and the granularity with which you can drill into protocols, network segments, and application traffic. **What do you dislike about ExtraHop?** Sometimes the menus can get you lost as you descend a rabbit hole of drilling down into reports. **What problems is ExtraHop solving and how is that benefiting you?** It's allowed us a more historical view into the day to day operations of our applications and network and finding issues that we have not been made aware of by employees. It's allowed us to solve problems before they turn into middle of the night emergencies. ### 29. Easy to use interface - even decrypts tls 1.3! **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Telecommunications | Enterprise (> 1000 emp.) **Reviewed Date:** July 31, 2022 **What do you like best about ExtraHop?** I was really impressed by the packet capture feature - surprisingly it was able to decrypt traffic, including tls1.3 which is a pain point for the work we do. This is the leader in NDR. **What do you dislike about ExtraHop?** Had some issues integrating with fortinet devices, not sure if this is an issue on extrahop or fortinet side. But considering most of the vendors integrated really well, the product is still good. **What problems is ExtraHop solving and how is that benefiting you?** NDR is helping us discover the vulnerabilities and insight to what is happening on our network with a single pane of glass view for our security analysts to use. ### 30. Great product! **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** August 12, 2022 **What do you like best about ExtraHop?** How accesible the application is. I really enjoy navigating through everything with little to no complications. **What do you dislike about ExtraHop?** I do not dislike anything, everything is going well so far for me. **What problems is ExtraHop solving and how is that benefiting you?** Whenever i am having trouble with a server i use ExtraHop and it helps me everytime. ### 31. One Customer's Opinion **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Enterprise (> 1000 emp.) **Reviewed Date:** November 16, 2022 **What do you like best about ExtraHop?** I like that it does detection very well. I can customize the detections and tune them as well **What do you dislike about ExtraHop?** Kludgy process to ingest threat intelligence **What problems is ExtraHop solving and how is that benefiting you?** Increased network traffic and incident visibilty ### 32. Great Product! **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Transportation/Trucking/Railroad | Mid-Market (51-1000 emp.) **Reviewed Date:** June 17, 2022 **What do you like best about ExtraHop?** One of the great things about ExtraHop is how it works like an IDS for us. Where our existing EDR failed to detect anomalous activity, ExtraHop immediately notified us. **What do you dislike about ExtraHop?** I really cannot think of anything negative to say about the product. **What problems is ExtraHop solving and how is that benefiting you?** Identifying anomalous activity. Even the "false" positives are super useful because they typically identify an area where we need to educate an end-user on a procedure. ### 33. detect and respond to advanced threats **Rating:** 1.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** November 08, 2022 **What do you like best about ExtraHop?** it makes me easy to search and gave good discount code **What do you dislike about ExtraHop?** hopefully gives more discounted code next time **What problems is ExtraHop solving and how is that benefiting you?** With ExtraHop, do we really need another IT security guy? ### 34. Network performance product with IT SEC features **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Semiconductors | Enterprise (> 1000 emp.) **Reviewed Date:** June 20, 2022 **What do you like best about ExtraHop?** The product offers great visibility of the network, including different segments, subnets. Customization of dashboards can be an upselling point. Security related findings are placed on MITRE chart. **What do you dislike about ExtraHop?** Even the opportunity to drill down to the triggering action is enabled, the recorded last logline itself could be more informative (could contain more related attributes). **What problems is ExtraHop solving and how is that benefiting you?** The product can be used for network traffic analysis tasks, pervormence measurment / control and typical IT SEC network traffic behaviour analysis. Some dashboards can fit to videowalls of operation centers. ### 35. ExtraHop Use Cases **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** October 05, 2021 **What do you like best about ExtraHop?** The AI and ML view into our networks and cyber risk The use of AI and ML allows the sensor to get a baseline and then determine itself if something new or different coming in could be dangerous, no signature files. The tool is in a nutshell is seeing and understanding all of the environment. Most importantly though the changes are seen and ExtraHops algorithms are calculating the risk and its impact on the company. **What do you dislike about ExtraHop?** We have run a small PoC, and now extending that PoC into other sites and use cases. The building of that enterprise model so it scales and creates appropriate drill downs can be challenging. But we are still early in our adoption and could very easily be on our side as we get more training under our belts and understand the environment better. **What problems is ExtraHop solving and how is that benefiting you?** There are a few areas that might be challenging to have agents on devices deployed, ExtraHop gives us a view into the areas of the network that might be more dark than other areas. ExtraHop is also good with new acquisitions, where before we integrate ExtraHop would allow us to see the real risk associated with the new company. ### 36. Extrahop is an phenomenal solution which brings NDR to a whole new level with real-time visibility. **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Transportation/Trucking/Railroad | Enterprise (> 1000 emp.) **Reviewed Date:** August 03, 2022 **What do you like best about ExtraHop?** Signal metrics and packet capture analysis. **What do you dislike about ExtraHop?** Nothing specific on mind, the platform contains all we need for our analysis **What problems is ExtraHop solving and how is that benefiting you?** Security events visibility along the timeline, metrics and packet analysis. ### 37. ExtraHop is pretty good **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Mid-Market (51-1000 emp.) **Reviewed Date:** May 17, 2022 **What do you like best about ExtraHop?** I like the dashboard the best. Quick glance at what is going on. **What do you dislike about ExtraHop?** Sometimes it can be a little intimidating navigating through the webui. **What problems is ExtraHop solving and how is that benefiting you?** Security holes and network information ### 38. A complete NDR solution for an outstanding network visibility **Rating:** 5.0/5.0 stars **Reviewed by:** François G. | Analyste principal réseautique, Enterprise (> 1000 emp.) **Reviewed Date:** June 22, 2021 **What do you like best about ExtraHop?** Pretty easy to setup once you know the basics of spanning your traffic correctly and even easier since it has dedup engine, It has a user friendly interface which present clearly the security detection and network amalyticsf for the security and network team. In addition of providing a lot of detection as an IDS do, it also monitor host behavior to prevent privilege escalation or larfe data transfer per example. As a network specialist i specially enjoy the monitoring of our network health through advanced tcp analysis and protocol errors. Extrahop 360 have a powerful engine that let us do fast searches and that keeps a large amount of metadataso we can go back in time. **What do you dislike about ExtraHop?** All our detection are sent to our Log Rhythm SIEM to centralize all of our device traps, but since there's no official integration with it, it's not parse correctly sand it seems like it'll need a lot work to integrate it. Depending on how you do your ssl decryption, it could need some custom integration with their dev team to intergrate it. QOS monitoring is a must for most network having an increased demand for voice and videotraffic, but Extrahop has some gaps regarding that compare to some other product like Corvil. I wouldn't go back to Corvil thought... **What problems is ExtraHop solving and how is that benefiting you?** We were able to identify unanutorized access to some servers, rogue acces point and it facilitate user tracking. It also helps us identify unsecured protocol like servers using tls1.1 and smb v1 per exemple. Finally, helping us sanitizing our network traffic just by looking in different dashboard like which workstation and servers are causing errors and what kind it is, there's one of the greatest advantage of the product. ### 39. Hands down the best NDR in the field, period. **Rating:** 4.5/5.0 stars **Reviewed by:** kevin w. | Cybersecurity Manager, Enterprise (> 1000 emp.) **Reviewed Date:** September 27, 2021 **What do you like best about ExtraHop?** Prompt customer service and continued best practice initives **What do you dislike about ExtraHop?** We operate with multiple data centers, we are currently working on a plan to get another data feed into the platform. Id like to see more done in this area to support other companies that are set up like we are. **Recommendations to others considering ExtraHop:** Full stop, this is THE example of what an NDR should be. Look no further. **What problems is ExtraHop solving and how is that benefiting you?** We couldn't see traffic across the wire, only in and out from the firewall. With ExtraHop we can see EXACTLY where our data is going, what its doing and help ensure uptime for critical business apps. ### 40. Extrahop Review **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** May 24, 2022 **What do you like best about ExtraHop?** Extrahop provides a great view of all east-west traffic in an easy to manage and customizable dashboard. **What do you dislike about ExtraHop?** Creating dashboards requires knowledge of the language format and creating new metrics to be measured, although most of the dashboards and metrics are already added. **What problems is ExtraHop solving and how is that benefiting you?** Visibility of traffic inside of our network has enhanced signifcantly from this product. ### 41. Good reporting tool **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Insurance | Enterprise (> 1000 emp.) **Reviewed Date:** May 25, 2022 **What do you like best about ExtraHop?** GUI is pretty easy to navigate around. For basic info not much trianing is needed. Just log in and explore. **What do you dislike about ExtraHop?** Not a dislike but building more complex dashboards is useful and without using every day some training or demo on this would be helpful **Recommendations to others considering ExtraHop:** Just log in and explore **What problems is ExtraHop solving and how is that benefiting you?** Trouble shooting, traffic visibility. ### 42. ExtraHop Review **Rating:** 2.0/5.0 stars **Reviewed by:** Verified User in Higher Education | Enterprise (> 1000 emp.) **Reviewed Date:** June 02, 2022 **What do you like best about ExtraHop?** Easy to use interface. I find that the interface helps to do what i need to do **What do you dislike about ExtraHop?** Not always clear how to accomplish goals **Recommendations to others considering ExtraHop:** it got the job done **What problems is ExtraHop solving and how is that benefiting you?** Handling Ransomware attempts ### 43. Able to see the data now **Rating:** 5.0/5.0 stars **Reviewed by:** Arron S. | Information Security Manager, Enterprise (> 1000 emp.) **Reviewed Date:** May 03, 2021 **What do you like best about ExtraHop?** One of the things that I love about ExtraHop is the ability to go back in time to identify issues. We've all gotten that email where someone asks for help: "There was an issue on server2 last night, but it is working now. What happened?" Usually, there is a very slim chance of answering that question unless the issue happens again. With ExtraHop, I can go back to the exact time and see that the server started taking 2 seconds to return a response when it usually takes 10ms. Oh, and this happens every Tuesday night at the same time, is there a backup scheduled? When brought in to help troubleshoot an issue, I often feel like I understand an application better than the application owners because of all the visibility that I have at my fingers. **What do you dislike about ExtraHop?** We had to get professional services to get us started with building out dashboards. Once built, we just copy-paste other applications using the same template. If there were some pre-canned dashboards to help get us started, we could have started using them much sooner. **What problems is ExtraHop solving and how is that benefiting you?** Performance troubleshooting was the driving force behind the purchase, but the Reveal(x) platform has boosted our security team due to the historical lookback capability and real-time alerting of potential security issues. While all security products require tuning, ExtraHop seems to do a better job of filtering out the noise, which allows us to spend our time chasing down actual issues instead of using yet another tool. ### 44. This is the way **Rating:** 5.0/5.0 stars **Reviewed by:** Matthew R. | Cybersecurity Analyst II, Enterprise (> 1000 emp.) **Reviewed Date:** September 22, 2021 **What do you like best about ExtraHop?** The insight provided by the appliance and Trigger capabilities **What do you dislike about ExtraHop?** The Bundles provided by ExtraHop have not been updated with new content recently. **Recommendations to others considering ExtraHop:** Don't take my word for it, give it a test drive. Or better yet, do a bake-off with a competitor and see the difference for yourself. **What problems is ExtraHop solving and how is that benefiting you?** Ransomware awareness/prevention, better grasp on IoT and OT devices in our environment, device isolation based on configured triggers, and developers are using the appliance to troubleshoot, too. ### 45. Great potential that has already shown value **Rating:** 4.0/5.0 stars **Reviewed by:** Clay H. | Information Security Analyst, Enterprise (> 1000 emp.) **Reviewed Date:** April 14, 2021 **What do you like best about ExtraHop?** The machine learning capabilities, baselining, and other automatic detections are the most vital features of Extrahop. The ability to group devices based on functionality automatically and create a baseline to detect anomalies make extra hop an essential tool in network detection. There are quite a few other features that we are not using to our fullest capability at the moment. However, we do plan to use these features once we feel we have mastered the detections within extrahop. **What do you dislike about ExtraHop?** From my experience, it seems as if extra hop is in a learning phase when it comes to its cloud management capabilities. I see improvement, but it still has some growing to accomplish before it is near perfect. There are some features we would like to see improved upon within the cloud environment. For example, the ability to upgrade the sensors though the management cloud console instead of each device would be a great benefit for all customers. Along with simple settings changes through the cloud console such as API integrations, or rebooting. We imagine the cloud console being a true central point of management. Currently we feel it is not quite there. **Recommendations to others considering ExtraHop:** I would still recommend extrahop, even with the minor flaws it has. When the cloud management is fundamentally changed, I would have no issue recommending extrahop to anyone. **What problems is ExtraHop solving and how is that benefiting you?** Extrahop has brought our attention to our immature vulnerability management program. Our vulnerability scanner was missing some areas, and extrahop pinpointed the address spaces the vulnerability scanner was omitting. Other issues such as passwords in plaintext have been detected by extrahop and used to resolve the issue. Extrahop has been a great tool to enrich data in combination with other tools such as SIEM, EDR/XDR, Vulnerability scanner, firewalls, etc. ### 46. ExtraHop gives 360 degree visibility for enterprise network. **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Hospital & Health Care | Enterprise (> 1000 emp.) **Reviewed Date:** January 16, 2022 **What do you like best about ExtraHop?** Real-time threat detection, end to end hops traceability **What do you dislike about ExtraHop?** Complex UI for new users, takes longer time to login every time. **What problems is ExtraHop solving and how is that benefiting you?** We are using extrahop reveal x for network analysis when we encounter any issues in our network , we basically try to trace source to destination reachability and packet level analysis ### 47. Autonomous Threat Detection Realized **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Government Administration | Mid-Market (51-1000 emp.) **Reviewed Date:** November 03, 2021 **What do you like best about ExtraHop?** ExtraHop has given us visibility into the network we previously didn't have. The ability to easily identify anomalous activity has greatly assisted our efforts to protect the Town. **What do you dislike about ExtraHop?** There isn't anything that we dislike. We have found all features to be extremely valuable. **What problems is ExtraHop solving and how is that benefiting you?** ExtraHop has allowed us to solve an issue where we lacked visibility in both the network and security. This tool has allowed us to significantly up our security posture. ### 48. Taking a peak behind the curtain **Rating:** 5.0/5.0 stars **Reviewed by:** Dewayne C. | Lead Network Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** December 16, 2020 **What do you like best about ExtraHop?** - Network insight and threat intelligence analysis. With all the threats that can and will occur in your datacenter, ExtraHop give you extra auditing and insight into traffic within your datacenter (or cloud) walls. - The GUI and it's interfacing is fairly intuitive. I am constantly impressed with the search functions and capabilities. Beyond just searching IPs, you can drill down by AD accounts, ports/protocols, or even services. That is all out of the box and does not include the customizable nature of your data sets to allow for more granular insight into your high priority apps. - In addressing my second dislike below: ExtraHop has done a great job of addressing this by providing a ton of hands on training, on-line training, personal email responses, and a growing youtube channel to help users understand and grow the tool. **What do you dislike about ExtraHop?** Set up the initial ExtraHop installation early in 2020. It was not a simple task to get up and running, but well worth it once everything is collecting data and providing insight. There is also a learning curve in using ExtraHop. It is not like your typical tools that see traffic on the wire. **Recommendations to others considering ExtraHop:** I was a bit skeptical in my initial POC for ExtraHop as I was familiar with and comfortable using some of their near competitors tools and capabilities. The support that I received during the POC and their ability to help me start to put a clearer picture of our network and its performance I become more comfortable with the tool. **What problems is ExtraHop solving and how is that benefiting you?** I use ExtraHop in my day-to-day business. From finding the break down in new installation to identifying choke-points in your compute stack to threat hunting and analysis, this is a multi-discipline tool that can be used for anything you need insight on. ### 49. Our experience with ExtraHop has been very positive **Rating:** 4.5/5.0 stars **Reviewed by:** John C. | Security Analyst II, Enterprise (> 1000 emp.) **Reviewed Date:** March 23, 2021 **What do you like best about ExtraHop?** ExtraHop provides a wealth of information that can be leveraged by not only our security teams, but also other areas of our Organization. Server teams, Database teams, Networking, AD admins and more can all find benefit in the information presented. **What do you dislike about ExtraHop?** We have had a few bug issues and a slow adoption but ExtraHop support has been very receptive and quick to help resolve issues. We are also going to be taking part in EH training which should help speed up the adoption by our SOC **What problems is ExtraHop solving and how is that benefiting you?** The first issue we found once EH was deployed was the holes in our tapping infrastructure. EH can only tell you about things it sees. In our case, we were not feeding all of the traffic from certain enclaves in our networks. This will allow us to increase our visibility throughout the environment. ### 50. Two time customer **Rating:** 5.0/5.0 stars **Reviewed by:** Richard S. | Chief Information Officer, Mid-Market (51-1000 emp.) **Reviewed Date:** February 18, 2021 **What do you like best about ExtraHop?** Probably the most revealing aspect of ExtraHop's ability is the confidence they display by putting a proof of concept in without any fanfare, heavy lift or over selling. It goes in and starts working. The results are almost immediate as the network gets mapped and you can start seeing your whole environment on a single pane of glass. We were quickly able to discover things about our networks that heretofore had been lost between personnel turnover. It has readily become a centerpiece to our security and troubleshooting tool kit. This is my second time purchasing ExtraHop, first being as the CTO for a large hospital system and now as the CIO for a regional radiology group. **What do you dislike about ExtraHop?** Tuning and filtering out the noise requires networking expertise and time. It is easy to get lost in drill down to drill down as the discovery can go much deeper than we might really need. I expect that it will take time to hone the pathways to the most relevant information. **What problems is ExtraHop solving and how is that benefiting you?** Key one right now is discovery. What do we have, how is it configured, is it optimal, is it secure, what is the user experience, are our applications operating as they should and many more questions that deep visibility into the network and attached devices can offer. ## ExtraHop Discussions - [Is ExtraHop a startup?](https://www.g2.com/discussions/is-extrahop-a-startup) - [What is ExtraHop appliance?](https://www.g2.com/discussions/what-is-extrahop-appliance) - [Is ExtraHop a SIEM?](https://www.g2.com/discussions/is-extrahop-a-siem) - [What is ExtraHop?](https://www.g2.com/discussions/what-is-extrahop) - [How well did extrahop help you during log4j?](https://www.g2.com/discussions/how-well-did-extrahop-help-you-during-log4j) - 1 upvote - [View ExtraHop pricing details and edition comparison](https://www.g2.com/products/extrahop/reviews?section=pricing&secure%5Bexpires_at%5D=2026-06-15+14%3A20%3A16+-0500&secure%5Bsession_id%5D=47731c45-8719-42ea-bd5d-8be1a07fc7c0&secure%5Btoken%5D=5b5c5a9d2b53d74dfda070c82fd182cffd916c047d48231dc9cfbbfa631437fd&format=llm_user) ## ExtraHop Integrations - [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) ## ExtraHop Features **Management** - Dashboards and Reports - Workflow Management - Administration Console **Administration** - Risk Scoring - Secrets Management - Security Auditing - Configuration Management **Prevention** - Intrusion Prevention - Firewall - Encryption - Security hardening - Cloud Data Protection **Functionality** - Performance Monitoring - Alerting - Improvement Suggestions - Multi-Network Capability **Automation** - Metadata Management - Artificial Intelligence & Machine Learning - Response Automation - Continuous Analysis **Analysis** - File Analysis - Memory Analysis - Registry Analysis - Email Analysis - Linux Analysis **Analysis** - Incident Reporting - Network Visibility - Metadata Enrichment - Metadata Management **Detection & Response** - Response Automation - Threat Hunting - Rule-Based Detection - Real-Time Detection **Monitoring - Network Monitoring** - 360-Degree Network Visibility - Automated Network Discovery - Real-Time Monitoring **Cloud Visibility** - Data Discovery - Cloud Registry - Cloud Gap Analytics **Operations** - Governance - Logging and Reporting - API / Integrations **Monitoring** - Continuous Image Assurance - Behavior Monitoring - Observability **Detection** - Intrusion Detection - Security Monitoring - Anti-Malware / Malware Detection **Management** - Performance Baseline - Data Visualization - Path Analysis **Functionality** - Multi-Network Capability - Anomaly Detection - Network Visibility - Scalability **Functionality** - Incident Alerts - Anomaly Detection - Continuous Analysis - Decryption **Response** - Incident Alerts - Response Orchestration - Response Automation **Management** - Extensibility - Workflow Automation - Unified Visibility **Analytics - Network Monitoring** - Predictive Performance Analytics - Packet & Flow Analysis **Security** - Data Security - Data loss Prevention - Security Auditing **Security Controls ** - Anomaly Detection - Data Loss Prevention - Security Auditing - Cloud Gap Analytics **Protection** - Dynamic Image Scanning - Runtime Protection - Workload Protection - Network Segmentation **Administration** - Compliance - Administration Console - - API / integrations **Incident Management** - Incident Logs - Incident Alerts - Incident Reporting **Remediation** - Incident Reports - Remediation Suggestions - Response Automation **Detection** - Multi-Network Monitoring - Asset Discovery - Anomaly Detection **Analytics** - Threat Intelligence - Artificial Intelligence & Machine Learning - Data Collection **Security - Network Monitoring** - Encrypted Data Transmission - Zero Trust and Identity Management - Integrated Network Security **Identity** - SSO - Governance - User Analytics **Generative AI** - AI Text Summarization **Generative AI** - AI Text Generation - AI Text Summarization **Network Performance - Network Monitoring** - Dynamic Network Optimization - Automated Tasks Routing **Agentic AI - Extended Detection and Response (XDR) Platforms** - Autonomous Task Execution - Proactive Assistance - Decision Making **Agentic AI - Cloud Detection and Response (CDR)** - Autonomous Task Execution - Proactive Assistance - Decision Making **Services - Network Detection and Response (NDR)** - Managed Services **AI Automation - Network Monitoring** - Machine Learning-Based Anomaly Detection - Self-Healing Networks - Predictive Network Maintenance **Agentic AI - Intrusion Detection and Prevention Systems (IDPS)** - Autonomous Task Execution - Proactive Assistance **Services - Extended Detection and Response (XDR)** - Managed Services **Services - Cloud Detection and Response (CDR) ** - Managed Services **Agentic AI - Network Monitoring** - Autonomous Task Execution - Multi-step Planning - Cross-system Integration - Adaptive Learning - Natural Language Interaction - Proactive Assistance - Decision Making ## Top ExtraHop Alternatives - [Dynatrace](https://www.g2.com/products/dynatrace/reviews) - 4.5/5.0 (1,231 reviews) - [IBM QRadar SIEM](https://www.g2.com/products/ibm-ibm-qradar-siem/reviews) - 4.4/5.0 (280 reviews) - [Trellix Network Detection and Response (NDR)](https://www.g2.com/products/trellix-network-detection-and-response-ndr/reviews) - 4.1/5.0 (64 reviews)