ExtraHop Reviews & Product Details

ExtraHop Overview

What is ExtraHop?

ExtraHop, the leader in cloud-native network detection and response, arms security teams to confront active threats and stop breaches. Built on cloud-based AI, the Reveal(x) 360 platform decrypts and analyzes all network and cloud traffic in real-time to expose the full spectrum of risks. From internal threats to sophisticated external attacks, nothing can hide on the network, making Reveal(x) 360 impossible to evade or disable. Reveal(x) 360 combines the power of cloud intelligence with the simplicity of SaaS to help security teams eliminate blind spots, detect threats that other tools miss, and stop breaches 84% faster.

ExtraHop Details
Website
Product Description

ExtraHop Reveal(x) provides cloud-native visibility, detection, and response for the hybrid enterprise.


Seller Details
Seller
ExtraHop Networks
Company Website
Year Founded
2007
HQ Location
Seattle, Washington
Twitter
@ExtraHop
9,849 Twitter followers
LinkedIn® Page
www.linkedin.com
502 employees on LinkedIn®

Overview Provided by:
Show More

ExtraHop Videos

ExtraHop Screenshots

Answer a few questions to help the ExtraHop community
Have you used ExtraHop before?
Yes

ExtraHop Reviews

Write a Review
Filter reviews
LinkedIn®
Connections
Popular Mentions
Showing 12 ExtraHop reviews
Popular Mentions
Showing 12 reviews
Filter Reviews
Filter Reviews
Sort by
Ratings
Company Size
User Role
For Category
All Industries
Location
Region
Already have ExtraHop?
Write a Review
Lead Network Engineer
Mid-Market(51-1000 emp.)
Validated Reviewer
Verified Current User
Review source: Invitation from G2 on behalf of the seller
What do you like best?

- Network insight and threat intelligence analysis. With all the threats that can and will occur in your datacenter, ExtraHop give you extra auditing and insight into traffic within your datacenter (or cloud) walls.

- The GUI and it's interfacing is fairly intuitive. I am constantly impressed with the search functions and capabilities. Beyond just searching IPs, you can drill down by AD accounts, ports/protocols, or even services. That is all out of the box and does not include the customizable nature of your data sets to allow for more granular insight into your high priority apps.

- In addressing my second dislike below: ExtraHop has done a great job of addressing this by providing a ton of hands on training, on-line training, personal email responses, and a growing youtube channel to help users understand and grow the tool. Review collected by and hosted on G2.com.

What do you dislike?

Set up the initial ExtraHop installation early in 2020. It was not a simple task to get up and running, but well worth it once everything is collecting data and providing insight.

There is also a learning curve in using ExtraHop. It is not like your typical tools that see traffic on the wire. Review collected by and hosted on G2.com.

Recommendations to others considering the product:

I was a bit skeptical in my initial POC for ExtraHop as I was familiar with and comfortable using some of their near competitors tools and capabilities. The support that I received during the POC and their ability to help me start to put a clearer picture of our network and its performance I become more comfortable with the tool. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

I use ExtraHop in my day-to-day business. From finding the break down in new installation to identifying choke-points in your compute stack to threat hunting and analysis, this is a multi-discipline tool that can be used for anything you need insight on. Review collected by and hosted on G2.com.

Show More
Show Less
Chief Information Officer
Mid-Market(51-1000 emp.)
Validated Reviewer
Review source: Invitation from the seller
What do you like best?

Probably the most revealing aspect of ExtraHop's ability is the confidence they display by putting a proof of concept in without any fanfare, heavy lift or over selling. It goes in and starts working. The results are almost immediate as the network gets mapped and you can start seeing your whole environment on a single pane of glass. We were quickly able to discover things about our networks that heretofore had been lost between personnel turnover. It has readily become a centerpiece to our security and troubleshooting tool kit. This is my second time purchasing ExtraHop, first being as the CTO for a large hospital system and now as the CIO for a regional radiology group. Review collected by and hosted on G2.com.

What do you dislike?

Tuning and filtering out the noise requires networking expertise and time. It is easy to get lost in drill down to drill down as the discovery can go much deeper than we might really need. I expect that it will take time to hone the pathways to the most relevant information. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

Key one right now is discovery. What do we have, how is it configured, is it optimal, is it secure, what is the user experience, are our applications operating as they should and many more questions that deep visibility into the network and attached devices can offer. Review collected by and hosted on G2.com.

Show More
Show Less
Cyber Security Consultant
Enterprise(> 1000 emp.)
Validated Reviewer
Review source: Invitation from the seller
What do you like best?

Good use of network data to provide info on a given IP. Is it a AD server or endpoint, what protocols is it using.

A strong set of "out of the box" Security alerts with little to no configuration. Machine learning or deviation from normal alerts + threat specific alerts like "cobalt-strike"

Realtime analysis of network data such as DNS requests without storing all the DNS data Review collected by and hosted on G2.com.

What do you dislike?

RevealX security detections are usually correct but still point to some legitimate network traffic. There high threat detections like "DNS C2 channel" are effective but there is still work to be done. Especially at the lower end of there threat score modeling.

These low threat alerts are more like "notable behavior" and they provide great info when investigating an end point but there not worth the analyst time to investigate each one individually. I would like to see more intelligence in there detection algorithms, whereby and endpoint with 4 or 5 suspicious behaviors would score higher then an endpoint with 2. Extrahop needs to work on presenting there alert data in a more meaningful way and reduce the signal to noise ratio. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

Visibility is always a good thing of course but from a security point of view RevealX fills in the gaps that our EDR cannot. If our EDR is bypassed or compromised which is often the case in dev environments we still catch threats like "connection's to an internet DB" or "inbound RDP connections from the internet" Review collected by and hosted on G2.com.

Show More
Show Less
EH
Enterprise(> 1000 emp.)
Validated Reviewer
Verified Current User
Review source: Invitation from the seller
What do you like best?

I most like the granularity with which we can see and identify traffic patterns. It allows us visibility into the types of traffic on our network and where the traffic is going. Review collected by and hosted on G2.com.

What do you dislike?

There is a bit of a learning curve when trying to do some more complex filtering, using scripting to aid in that. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

We recently replaced our previous network traffic analysis vendor for ExtraHop because of the additional insight into East-West traffic, helping to understand the "soft underbelly" a bit better. Review collected by and hosted on G2.com.

Show More
Show Less
UT
Small-Business(50 or fewer emp.)
Validated Reviewer
Verified Current User
Review source: Invitation from G2 on behalf of the seller
What do you like best?

- Well designed/Intuitive/responsive GUI

- Can be used right out of the box

- Auto discover features

-Security detections Review collected by and hosted on G2.com.

What do you dislike?

In general, I think it is an amazing tool, but the pricing is high Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

-The tool speeds up troubleshooting process, which is very useful in our daily operations

-Also the security detections allow us to improve our security posture Review collected by and hosted on G2.com.

Show More
Show Less
AT
Enterprise(> 1000 emp.)
Validated Reviewer
Verified Current User
Review source: Invitation from the seller
What do you like best?

EAsy to use, intuitive platform, drill downs Review collected by and hosted on G2.com.

What do you dislike?

Need more possibilities for the price models Review collected by and hosted on G2.com.

Recommendations to others considering the product:

Easy out of the box platform, learning curve is smooth. Drill downs makes troubleshooting very easy. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

Baseline our network,analyse our traffic, alerting Review collected by and hosted on G2.com.

Show More
Show Less
Enterprise(> 1000 emp.)
Validated Reviewer
Review source: Organic
Describe the project or task the product helped with:

We have been monitoring each location with Extrahop. We have found several remediation that needed to be addressed. the product has performed better than i expected Review collected by and hosted on G2.com.

What do you like best?

the easy interface & the support from the team Review collected by and hosted on G2.com.

What do you dislike?

Nothing that I can think, everything has been great Review collected by and hosted on G2.com.

Recommendations to others considering the product:

I highly recommend extrahop, now they are shifting to a more security model Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

The accuracy of the reports & the way the report was created for our local team Review collected by and hosted on G2.com.

Show More
Show Less
Technical Analyst III
Information Technology and Services
Enterprise(> 1000 emp.)
Validated Reviewer
Verified Current User
Review source: Invitation from G2
What do you like best?

My favorite feature is the packet capture and storage. I can go back within a day and look at any packet that ExtraHop saw based on time and IP address searches. This has allowed me to lower my troubleshooting time by not having to wait for something to happen again and hope that I catch it. Review collected by and hosted on G2.com.

What do you dislike?

The pricing of the infrastructure required in terms of taps to get all of the packets to the system. Review collected by and hosted on G2.com.

Recommendations to others considering the product:

The tool is good, but sometimes sales oversell capabilities. Make sure that you understand the technical of what is possible. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

Our teams have used ExtraHop to solve a multitude of problems. The network team uses it to analyze packets and troubleshooting. The HL7 team is using it to analyze the records that are already flowing across the network for healthcare related fields. Review collected by and hosted on G2.com.

Show More
Show Less
UF
Mid-Market(51-1000 emp.)
Validated Reviewer
Verified Current User
Review source: Invitation from the seller
What do you like best?

Very easy to use, there is near zero learning curve as long as the user have some very basic network knowledge for basic functions.

Easy filter based on domain, IP, and different network protocols and connection types.

Graphical representation. Review collected by and hosted on G2.com.

What do you dislike?

Not much at this moment but I am not an advanced user of the system. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

Realtime check and verification about connections.

Traffic pattern alert.

Application/network load monitoring. Review collected by and hosted on G2.com.

Show More
Show Less
AH
Enterprise(> 1000 emp.)
Validated Reviewer
Verified Current User
Review source: Invitation from G2
What do you like best?

Capture the real time network packets and split into metrics, and records. No agent installation is required.

Extra hop Team's sets an example for great coordination and team work. We are really impressed with the way support, service, sales and training stays in sync, and provides great focus to its clients. Review collected by and hosted on G2.com.

What do you dislike?

The tools needs to lots of configuration and console presented too much details. One have to have in depth knowledge of environment and network protocols. But they does provides great documentations. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

We are monitoring tier 1 applications. Extrahop has provided live diagnosis and troubleshooting for existing issues. Review collected by and hosted on G2.com.

Show More
Show Less
UT
Enterprise(> 1000 emp.)
Validated Reviewer
Verified Current User
Review source: Invitation from G2
What do you like best?

The capability of deep dive into any OSI Layer's protocol to match your pre-configured triggers for abnormal network pattern and potential issue and generate alarms and report for you to quick action. Review collected by and hosted on G2.com.

What do you dislike?

Basically from technical perspective I don't see any weakness however not sure if the cost is high or not as I'm just a user and not the business owner in my organization. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

I've been using extrahop for a couple of years to monitor the network and application performance of our offshore call center's VPN and Citrix/VDI solutions, giving me the best solution to quick respond to any network and application performance degrade and trouble shoot the issue in protocol/transaction layer. Review collected by and hosted on G2.com.

Show More
Show Less
Logistics
Transportation/Trucking/Railroad
Small-Business(50 or fewer emp.)
Validated Reviewer
Review source: Invitation from G2
What do you like best?

Due to every transaction happening and being able to be seen as wire data, analyzing this information can provide insight into every single event that happens on a network. You are able to see performance by tier and troubleshoot precisely by what the issue is. Wire data analytics allows a holistic view of every transaction that happens on a network and be able to see that information in a structured way. Review collected by and hosted on G2.com.

What do you dislike?

Although there is a slew of reputable and fantastic clients for extrahop, I myself think its running a bit expensive for over 7k for a 1 yr subscription. Review collected by and hosted on G2.com.

Recommendations to others considering the product:

This is not a bad route to go, so I'd consider using it on a trial basis like myself. I think with some time and effort into implementing it and taking it seriously you may have a winner here. Review collected by and hosted on G2.com.

What problems are you solving with the product? What benefits have you realized?

We receive network traffic, and then performs real-time full-stream reassembly to extract application-level protocol metrics and other custom-specified information contained in the transaction payload. IT operations teams use this data to monitor the performance of the applications running on the network and detect anomalous behavior that could indicate a data breach, for example. Review collected by and hosted on G2.com.

Show More
Show Less
Response from Tyson Supasatit of ExtraHop

Thanks for your honest feedback, Charles!

ExtraHop