Verdict: Bitdefender is a modern endpoint security solution with all of the latest security technologies to compete at the top in this space. With the flexible options and wide array of supported endpoint operating systems, if you do not need an endpoint security solution to include mobile support, give this product ...
Verdict: Great intuitive cloud platform with an armament of modern security technologies with a quick implementation into your business environment.
Verdict: With the addition of real-time response to the EDR module, this product becomes even more attractive. If you aren’t using CrowdStrike, you really need to take a good hard look at Falcon.
Verdict: Solid implementation for this next-gen solution with top-tier EDR functionality. If you are looking for a new solution, this should be one to consider.
Verdict: At a low price point and unique security AI assistant, this product is worth checking out if you don’t need a cloud management solution.
Verdict: If you are looking for an on-premises solution that uses low resources and is robust with non-security features such as asset management and remote troubleshooting, you should demo this product.
Verdict: Kaspersky continues to be a strong contender in this field.
Verdict: There are good reasons why this solution has been a leader for so many years.
Verdict: Good solution with some unique features. If Linux is in your environment, this tool deserves a serious look.
Verdict: With the wide range of features that scales well with any size environment and the number of report templates, this product is worth testing out.
Verdict: A rich feature set for a great price. This product is this month's “Best Buy”.
Verdict: We have seen this solution implemented in multiple tools and we can see why. This is our Recommended Product this month.
Verdict: Good tool for experienced users, may take a bit for newcomers to get into the swing of it.
Verdict: Tenable has been one of the big names in this space and continues to deliver an amazing solution at a great price.
Verdict: While the interface is a bit dated, it’s still a great tool at a great price.
Verdict: AlienVault continues to be an amazing UTM solution for businesses of all sizes.
Verdict: CorreLog’s SIEM Correlation Server software is a full-feature solution at an amazing price point. We feel that this solution will compliment any security team big or small.
Verdict: If your organization has 20 or 2,000 assets, EventTracker 9.0 can help improve your information gathering and decision-making process and shorten incident response times. If you haven’t looked at EventTracker 9.0, you should.
Verdict: FortiGate products have come a long way and the FortiGate 501E shines above the competition. If you are looking for a mid to large enterprise level Firewall that packs a punch with competitive pricing, check this out.
Verdict: LogRhythm has always been one of the top names in this space, and the new version continues to showcase why it needs to be considered part of your SOC.
Verdict: This solution is very customizable and requires very little knowledge to get up and running.
Verdict: Sophos continues to make improvements in their products and the XG135w is no exception. If you are running other Sophos software, this is a must have.
Verdict: While Splunk isn’t typically thought of as a security tool, this is worth taking a look at if you already implement Splunk inside your environment – and even if you don’t.
Verdict: Whether you are adding an appliance to your already outfitted WatchGuard environment, or you are in the market for your first midsized UTM the Firebox M470 should be on your list to consider.
Verdict: Catering to no-frills, quick implementation expectations, this solution also delivers a modern approach with their instant-chat support available with one click.
Verdict: CrowdStrike Falcon continues to be a sophisticated toolset that focuses on all three phases of a malware attack. The cloud-based management dashboard provides very detailed information to help identify threats and remove them from your assets. If your organization puts a high value on information, this product should be near ...
Verdict: A very complete product that delivers on all levels. enSilo offers a strong Next-Gen AV paired with Application Communication Control and Endpoint Detection and Response solutions.
Verdict: Recommended solution to fit into your layered security approach to solve phase 1 of the ransomware stack. This specialized solution would be a great addition to any organization taking steps to protect the email threat vector.
Verdict: This reliable name has the depth and scope to address the needs of any-sized organization. With a variety of support options, this platform is ready for simple or complex deployments.
Verdict: If you don’t want to limit yourself to a single toolset, this solution provides a wide variety of technologies from which to choose.
Verdict: This is a strong product and, complicated as it might appear on the surface, there is a lot of help to get you going and to get the tool functional and producing useful output. This is one of our Recommended products for the month.
Verdict: While we liked this product, there are peripheral aspects that need some cleanup. Pricing seems reasonable but if you have a lot of packages it could get expensive. In any event, it certainly is well worth your time to give it a closer look. We make this one of our ...
Verdict: This is the 800-pound gorilla in this space. It has just about everything – and what it doesn’t have it certainly soon will. We make this our Best Buy this month.
Verdict: This one really demands your attention if you are working in a hybrid environment. We have seen nothing that quite compares and the technology used is both unique and innovative. For its hybrid focus, this is one of our Recommended products this month.
Verdict: While this is not a true next-generation tool, neither is it a traditional one. This is one of those unique products that have, truly, carved its own niche and it has done that quite well.
Verdict: Tufin is a progressive and capable vendor in this space. We have watched their product evolve over the years and it is very good example of the next generation risk and policy management genre.
Verdict: This is a capable tool and meets its objectives well.
Verdict: For a pure-play GRC this is about the most solid product we’ve seen. If GRC is what you want, and you need next generation, look at this one. We predict you’ll like what you see.
Verdict: This always has been one of our top picks over the years. This year it did not disappoint us, even though it has moved to a new home. We make this our Recommended traditional products this month.
Verdict: When it comes to change management it is hard to beat this tool. But along with that, it is a very competent cyber risk management platform. Well worth your time, even if you have other GRC tools that it can work alongside. This is our next generation Recommended tool this ...
Verdict: This one is worth a close look. It has all the tools you need to manage the security on your enterprise and it is very straightforward to use.
Verdict: As a traditional GRC, this one demands your attention for its price vs. performance and flexibility. As you add modules the price will climb, of course, but the basic starting point is very reasonable.
Verdict: For a next generation tool this one cannot be beat for the price. It is solid, comprehensive and the user interface and drill-downs are clean and well thought-out. For its price and performance we make this one our Best Buy this month.
Verdict: FTK will continue to be our computer forensic workhorse and we make it SC Lab Approved for another year.
Verdict: This belongs in every lab doing mobile device forensics. Not only is it a solid tool, it is perfect for triage. We make this our Best Buy this month.
Verdict: We wish that we could afford this tool for our lab but, as powerful as it is, it is far out of the range of any but large organizations with significant investment in forensics and DFIR.
Verdict: This has become a mainstay in the lab for tracking research projects, all of which behave a lot like digital forensic investigations. Over the past year we have not retained our research records because there was no need to. This year, need or not, we will. We make this ...
Verdict: While monitoring remote sessions may not be the first thing you consider when you are planning DFIR, if you are accessing servers and critical/sensitive workstations remotely you should consider this product strongly, no matter what the size of your enterprise is. This is our Recommended product for this month.
Verdict: This is probably the best analytics tool we've seen and the notion of feeding with a SIEM is intriguing for its significant possibilities. We certainly will be doing that here in the Labs. NIKSUN has been SC Lab Approved since we started the program and we continue that for another ...
Verdict: Solid malware analysis tool, especially good for engineers just getting started with malware analysis. We make this our Recommended tool for this month.