Product Reviews

Illusive Networks

Bitdefender GravityZone Ultra

Verdict: Bitdefender is a modern endpoint security solution with all of the latest security technologies to compete at the top in this space. With the flexible options and wide array of supported endpoint operating systems, if you do not need an endpoint security solution to include mobile support, give this product ...

Carbon Black Cb Defense, Cb ThreatSight

Verdict: Great intuitive cloud platform with an armament of modern security technologies with a quick implementation into your business environment.

SC Magazine Best Buy

CrowdStrike Falcon

Verdict: With the addition of real-time response to the EDR module, this product becomes even more attractive. If you aren’t using CrowdStrike, you really need to take a good hard look at Falcon.

SC Magazine Recommended

Cybereason Deep Hunting Platform

Verdict: Solid implementation for this next-gen solution with top-tier EDR functionality. If you are looking for a new solution, this should be one to consider.

Endgame

Verdict: At a low price point and unique security AI assistant, this product is worth checking out if you don’t need a cloud management solution.

ESET Endpoint Security

Verdict: If you are looking for an on-premises solution that uses low resources and is robust with non-security features such as asset management and remote troubleshooting, you should demo this product.

Kaspersky Lab Endpoint Security for Business

Verdict: Kaspersky continues to be a strong contender in this field.

McAfee Endpoint Security

Verdict: There are good reasons why this solution has been a leader for so many years.

SentinelOne Endpoint Protection Platform

Verdict: Good solution with some unique features. If Linux is in your environment, this tool deserves a serious look.

BeyondTrust Retina CS Enterprise

Verdict: With the wide range of features that scales well with any size environment and the number of report templates, this product is worth testing out.

SC Magazine Best Buy

Rapid7 InsightVM

Verdict: A rich feature set for a great price. This product is this month's “Best Buy”.

SC Magazine Recommended

SAINT Security Suite

Verdict: We have seen this solution implemented in multiple tools and we can see why. This is our Recommended Product this month.

Skybox Security Suite

Verdict: Good tool for experienced users, may take a bit for newcomers to get into the swing of it.

Tenable.io Vulnerability Management

Verdict: Tenable has been one of the big names in this space and continues to deliver an amazing solution at a great price.

Tripwire IP360

Verdict: While the interface is a bit dated, it’s still a great tool at a great price.

AlienVault USM Anywhere

Verdict: AlienVault continues to be an amazing UTM solution for businesses of all sizes.

CorreLog SIEM Correlation Server

Verdict: CorreLog’s SIEM Correlation Server software is a full-feature solution at an amazing price point. We feel that this solution will compliment any security team big or small.

SC Magazine Lab Approved

EventTracker 9.0

Verdict: If your organization has 20 or 2,000 assets, EventTracker 9.0 can help improve your information gathering and decision-making process and shorten incident response times. If you haven’t looked at EventTracker 9.0, you should.

FortiGate 501E

Verdict: FortiGate products have come a long way and the FortiGate 501E shines above the competition. If you are looking for a mid to large enterprise level Firewall that packs a punch with competitive pricing, check this out.

SC Magazine Best Buy

LogRhythm Platform

Verdict: LogRhythm has always been one of the top names in this space, and the new version continues to showcase why it needs to be considered part of your SOC.

McAfee Enterprise Security Manager

Verdict: This solution is very customizable and requires very little knowledge to get up and running.

XG Firewall

Verdict: Sophos continues to make improvements in their products and the XG135w is no exception. If you are running other Sophos software, this is a must have.

SC Magazine Recommended

Splunk Enterprise Security

Verdict: While Splunk isn’t typically thought of as a security tool, this is worth taking a look at if you already implement Splunk inside your environment – and even if you don’t.

Firebox M470 w/Total Security Suite

Verdict: Whether you are adding an appliance to your already outfitted WatchGuard environment, or you are in the market for your first midsized UTM the Firebox M470 should be on your list to consider.

Barkly Endpoint Protection Platform

Verdict: Catering to no-frills, quick implementation expectations, this solution also delivers a modern approach with their instant-chat support available with one click.

Crowdstrike Falcon

Verdict: CrowdStrike Falcon continues to be a sophisticated toolset that focuses on all three phases of a malware attack. The cloud-based management dashboard provides very detailed information to help identify threats and remove them from your assets. If your organization puts a high value on information, this product should be near ...

enSilo Endpoint Protection platform

Verdict: A very complete product that delivers on all levels. enSilo offers a strong Next-Gen AV paired with Application Communication Control and Endpoint Detection and Response solutions.

Mimecast Secure Email Gateway with Targeted Threat Protection

Verdict: Recommended solution to fit into your layered security approach to solve phase 1 of the ransomware stack. This specialized solution would be a great addition to any organization taking steps to protect the email threat vector.

Sophos Intercept X

Verdict: This reliable name has the depth and scope to address the needs of any-sized organization. With a variety of support options, this platform is ready for simple or complex deployments.

Trend Micro Smart Protection Complete

Verdict: If you don’t want to limit yourself to a single toolset, this solution provides a wide variety of technologies from which to choose.

SC Magazine Recommended

Illumio Adaptive Security Platform

Verdict: This is a strong product and, complicated as it might appear on the surface, there is a lot of help to get you going and to get the tool functional and producing useful output. This is one of our Recommended products for the month.

SC Magazine Recommended

CloudPassage Halo

Verdict: While we liked this product, there are peripheral aspects that need some cleanup. Pricing seems reasonable but if you have a lot of packages it could get expensive. In any event, it certainly is well worth your time to give it a closer look. We make this one of our ...

SC Magazine Best Buy

GuardiCore Centra

Verdict: This is the 800-pound gorilla in this space. It has just about everything – and what it doesn’t have it certainly soon will. We make this our Best Buy this month.

SC Magazine Recommended

Cavirin Hybrid Workload Security

Verdict: This one really demands your attention if you are working in a hybrid environment. We have seen nothing that quite compares and the technology used is both unique and innovative. For its hybrid focus, this is one of our Recommended products this month.

RiskVision Platform

Verdict: While this is not a true next-generation tool, neither is it a traditional one. This is one of those unique products that have, truly, carved its own niche and it has done that quite well.

Tufin Orchestration Suite

Verdict: Tufin is a progressive and capable vendor in this space. We have watched their product evolve over the years and it is very good example of the next generation risk and policy management genre.

Acuity STREAM Integrated Risk Manager

Verdict: This is a capable tool and meets its objectives well.

MetricStream IT GRC Solution

Verdict: For a pure-play GRC this is about the most solid product we’ve seen. If GRC is what you want, and you need next generation, look at this one. We predict you’ll like what you see.

SC Magazine Recommended

SAI Global Digital Manager 360

Verdict: This always has been one of our top picks over the years. This year it did not disappoint us, even though it has moved to a new home. We make this our Recommended traditional products this month.

SC Magazine Recommended

Tripwire Enterprise

Verdict: When it comes to change management it is hard to beat this tool. But along with that, it is a very competent cyber risk management platform. Well worth your time, even if you have other GRC tools that it can work alongside. This is our next generation Recommended tool this ...

AlgoSec Security Management Solution

Verdict: This one is worth a close look. It has all the tools you need to manage the security on your enterprise and it is very straightforward to use.

Allgress Insight Risk manager

Verdict: As a traditional GRC, this one demands your attention for its price vs. performance and flexibility. As you add modules the price will climb, of course, but the basic starting point is very reasonable.

SC Magazine Best Buy

FireMon Security Manager and Risk Analyzer

Verdict: For a next generation tool this one cannot be beat for the price. It is solid, comprehensive and the user interface and drill-downs are clean and well thought-out. For its price and performance we make this one our Best Buy this month.

SC Magazine Lab Approved

AccessData Forensic Tool Kit FTK

Verdict: FTK will continue to be our computer forensic workhorse and we make it SC Lab Approved for another year.

SC Magazine Best Buy

Paraben E3 DS

Verdict: This belongs in every lab doing mobile device forensics. Not only is it a solid tool, it is perfect for triage. We make this our Best Buy this month.

EnCase Endpoint Investigator

Verdict: We wish that we could afford this tool for our lab but, as powerful as it is, it is far out of the range of any but large organizations with significant investment in forensics and DFIR.

SC Magazine Lab Approved

Lima Forensic Case Management

Verdict: This has become a mainstay in the lab for tracking research projects, all of which behave a lot like digital forensic investigations. Over the past year we have not retained our research records because there was no need to. This year, need or not, we will. We make this ...

SC Magazine Recommended

RecordTS for Terminal Services

Verdict: While monitoring remote sessions may not be the first thing you consider when you are planning DFIR, if you are accessing servers and critical/sensitive workstations remotely you should consider this product strongly, no matter what the size of your enterprise is. This is our Recommended product for this month.

SC Magazine Lab Approved

NIKSUN NetDetector Suite

Verdict: This is probably the best analytics tool we've seen and the notion of feeding with a SIEM is intriguing for its significant possibilities. We certainly will be doing that here in the Labs. NIKSUN has been SC Lab Approved since we started the program and we continue that for another ...

SC Magazine Recommended

VMRay Analyzer

Verdict: Solid malware analysis tool, especially good for engineers just getting started with malware analysis. We make this our Recommended tool for this month.

Joe Sandbox Cloud Ultimate

Verdict: Since this is SC Lab Approved, the obvious verdict is that it is a first-rate tool and merits examination if you are looking at doing in-house malware analysis (and you should be). We continue to rate this one SC Lab Approved for its heavy utility in our lab and superior ...

HexRays IDA Pro

Verdict: We have gushed about this tool enough in the review so we’ll simply offer a verdict of Best Buy for this month.

Carbon Black Cb Defense

Verdict: For a mix of threat analysis and incident response – where the core of the alert is malware-based – this one demands your attention. The Carbon Black experience is obvious.

Comodo Advanced Endpoint Protection

Verdict: This is a strong product under the covers but with a few warts for users. None of those are show-stoppers, though, and you would do well to take a close look at it.

SC Magazine Recommended

CrowdStrike Falcon

Verdict: This is a very sophisticated but rather specialized tool for the endpoint. If you are a large organization or one with high-value information assets, this is well worth your time. For what it does, we know of no better tool available. We make this our cloud-based Recommended product.

SC Magazine Recommended

Cylance CylancePROTECT with CylanceOPTICS

Verdict: If you are using CylancePROTECT this is a no-brainer. If you are not, it’s a good reason to consider it. Because CylancePROTECT is one of our SC Lab Approved products, it already has our highest rating, but we are naming the OPTICS add-on Recommended for the value that it adds ...

SC Magazine Recommended

ESET Endpoint Security

Verdict: If you’re looking for a threat-focused endpoint tool at an attractive price point this is worth your attention. For its ease of use and deployment, we make this our on-premises Recommended tool.

Kaspersky Lab Endpoint Security for Business

Verdict: This is one of the strong players in this field. Although it shows, clearly, a legacy of anti-malware (to the point where it still refers to “anti-virus,” even though it really addresses all malicious software), this tool is a capable contender for endpoint security in general.

SC Magazine Best Buy

McAfee Endpoint Security

Verdict: An exceptional effort on behalf of the McAfee technical support team that provided the SC Lab with the opportunity to dedicate more time to testing the product package. Overall, an excellent product, but you’ll get the most out of it as part of the entire McAfee suite managed, as ours ...

Nyotron PARANOID

Verdict: Don’t pass this one by if you are looking at anti-malware. In our view, it certainly ranks in the top five such products we’ve seen over the past couple of years.

Symantec Endpoint Protection

Verdict: You cannot make an informed endpoint decision without taking a look at this. Of course, if you already are a Symantec shop this will fit right in.

BeyondTrust Retina CS Enterprise Vulnerability Management

Verdict: Solid vulnerability management tool that could become a bit pricey in a large environment.

SC Magazine Best Buy

Digital Defense Frontline Vulnerability Manager

Verdict: This one demands your attention. At a very reasonable price point, we make this our Best Buy this month.

SC Magazine Recommended

SAINT Security Suite

Verdict: This is a tool that you can add to your environment almost regardless of what else you are using. It not only plays well with others, such as risk management tools, it is a powerhouse in its own right. Recommended.

Tenable.io Vulnerability Management

Verdict: Well worth your time. This is a company with solid experience in the technology – and it shows.

SC Magazine Recommended

Skybox Security Suite

Verdict: We weren’t sure about this one until we acclimated to how it really works (as opposed to how we thought that it should work). Given that this truly is a beast of a different color, we are classing it by itself and a vulnerability analytics and workflow management tool and ...

Tripwire IP360

Verdict: This one demands your attention. With its ability to cut through vulnerability noise, using its analytics and configuration options to its massive scalability, this works for just about any size enterprise.

SC Magazine Lab Approved

AlienVault Unified Security Management USM Appliance

Verdict: Not much to say here besides that this product is SC Lab Approved and that is our highest award. This is one of the best UTMs we’ve tested and over long periods of use it has delivered very well. We make it SC Lab Approved for another year.

EventTracker SIEMphonic

Verdict: Especially for organizations with limited expertise in applying all of the things a SIEM can do to protect their enterprises, this product is a must-see. However, any size organization can benefit by considering this as part of its security stack.

Fortinet FortiSIEM

Verdict: There is a lot to getting this one up and running, but once it’s up and you have the things you want to monitor plugged in, this one of the most complete SIEMs we’ve seen.

SC Magazine Best Buy

CorreLog SIEM Correlation Server

Verdict: We like this a lot, especially for SMBs, although larger organizations certainly should not rule it out as too small. It’s not. For its value and feature set, as well as the efforts to improve and keep the product ahead of the curve, we make this our Best Buy.

SC Magazine Lab Approved

McAfee Enterprise Security Manager ESM

Verdict: Since this already is SC Lab Approved, we can’t give it a higher rating. We like this well enough that we are extending its SC Lab Approved designation for another year. It continues to be our key analysis tool.

SC Magazine Recommended

LogRhythm Threat Lifecycle Management Platform

Verdict: This is an important contender for your SOC SIEM. It will take data from just about anything you need to monitor and it includes solid third-party threat feed access. This is our Recommended product.

Sophos XG Firewall

Verdict: This demands your attention no matter what size your organization. There are models to cover most requirements.

Splunk Enterprise Security

Verdict: This is a product with which you pretty much can’t go wrong, especially since it integrates with most products that need the log management and analysis that it does. It is sort of a SIEM’s SIEM.

IRONSCALES IronTraps

Verdict: This is an excellent approach to first phase interdiction for ransomware attacks and shows a solid understanding of the ransomware process and how to manage its delivery through phishing.

SC Magazine Recommended

Sophos Intercept X and Endpoint Protection

Verdict: This is a solid anti-ransomware tool, priced right and well-supported. It certainly deserves your attention. We make this our Recommended product for multi-featured products this month.

SC Magazine Best Buy

Trend Micro Smart Protection Complete

Verdict: This is absolutely a world-class anti-ransomware product in a world-class ecosystem. Using the associated products, you can build out a solid security framework in your enterprise. For its completeness and solid competence, we make this our Best Buy this month.

WatchPoint CryptoStopper

Verdict: A promising product not quite ready for prime time.

Barracuda Advanced Threat Protection BATP

Verdict: This is not for the faint-hearted, but if you opt for this you can be assured that it and Barracuda will serve you very well, indeed.

Mimecast Email Security Gateway with Target Threat Protection

Verdict: Because this is a rather specialized approach to the ransomware problem and, in our experience, one of a very small handful of services that get this right, we make this one our Recommend product for specialized products this month.

SC Magazine Best Buy

Anomali ThreatStream

Verdict: Solid threat intelligence product with a prodigious collection of resources. Fits well into just about threat and intelligence analysis tool set. At a price that is hard to beat, we make this our best Buy.

SurfWatch Threat Analyst

Verdict: In a sensitive environment – such as a financial institution that can afford the resource – this is a very solid contender. There is a whole lot to like about it and it may be one of the most powerful tools on the market.

CounterTack Digital DNA DDNA

Verdict: This is a good tool and certainly has a place in your analysis stack.

Cyjax Intelligence Platform

Verdict: We wish that Cyjax would use humans instead of computers to probe underground forums. Also, this is a bit pricey for what it offers. However, if you need open source intelligence with a bit of closed source thrown in, this is well worth your time to examine.

SC Magazine Recommended

CrowdStrike Falcon Intelligence

Verdict: If you need this level of analysis and if you can afford it, this is a solid choice for your cyber intel arsenal. We make it our Recommended choice.

Catbird Secure

Verdict: This has long been one of our favorite products and it is well worth considering.

CloudPassage Halo

Verdict: Good, well though-out tool and, if you are looking for out-of-the-box compliance capabilities, this one demands your attention.

SC Magazine Recommended

FireMon 40Cloud

Verdict: A powerful tool with a clear and important mission that it fulfills well. We make this our Recommended product this month.

SC Magazine Best Buy

GuardiCore Centra

Verdict: This is one of the best tools of its type that we’ve seen. It is comprehensive, reliable and easy to use. We make it our Best Buy.

eSentire CYMON.io