Red Canary Reviews & Product Details

Getting started with Red Canary was relatively simple and straightforward. Working with the Red Canary team has been an overall positive experience and the customer service has been outstanding. Though we are still learning product, and refining our internal response processes, we are still gaining valuable insight on the alerts that are published. The information is compiled from the alerting sources is easy to access and helps us from having to traverse multiple consoles and dashboards. The new 'investigations' link, provided in the Threat portal takes us directly to the 'inner workings' of the Red Canary 'magic'. So far, we are pleased with the Red Canary team and their product. It's an improvement from the solution from which we migrated. Review collected by and hosted on G2.com.

Navigation does take some getting used to. We would like to see FreshDesk support, in the future. Review collected by and hosted on G2.com.

I sleep better at night knowing the Red Canary team has our back. Before Red Canary, I would need to interrupt my day to perform investigations on alerts that came into my mailbox, that included after hours alerts that would take me away from my family and friends for hours at a time. With Red Canary, they now take that off my plate and I trust fully in their investigations, analytics, and alert categorization. The configuration of playbooks and integrations into our platforms, allows automation of activity that I would have had to do manually through several different platforms and innumerous clicks. Red Canary has simplified and made more efficient response times in addressing incidents, even in some cases, retroactively analyzing telemetry that was initially not viewed as a threat, but found later to be something to worry about. The platform is easy to navigate, the implementation team was knowledgeable, I'm in the dashboard every day to see what's new on their feed and to see how they've protected our environment. On the rare occasion I need to reach out to support, they are responsive, professional, and knowledgeable to find me a solution. I am whole heartedly thankful that we invested in Red Canary! Review collected by and hosted on G2.com.

It's hard for me to find a dislike about Red Canary, I've used the service for about 12 months and any negatives I've encountered in their service is addressed by my account team or customer support. Review collected by and hosted on G2.com.

Overall, this is a very good MDR solution. Communication about their roadmap, internal processes, and threat intelligence is clear and informative. Their blog is also excellent, providing valuable information. A few points stand out to me: The initial sales and POC process was handled very professionally, they were transparent about any issues or unknowns and never tried to hide anything. The setup and rollout were seamless and straightforward. Integrations are simple to manage. I appreciate being able to view some of the detection logic, which is extremely helpful when troubleshooting or checking if a specific detection exists. Automation is both easy to configure and highly customizable. Although we no longer use it, the Red Canary Linux agent performed very well, with minimal overhead and solid telemetry, though I do wish there had been more visibility into that telemetry. Review collected by and hosted on G2.com.

1. Sometimes the level 1 support has been underwhelming, but it has been rare.

2. Sometimes the time to raise an alert takes longer than expected. Not common, but has occurred more than once.

3. Not able to create custom detections (at least I am not aware of that functionality). Review collected by and hosted on G2.com.

The ease of mind I get from knowing an expert will be available 24/7 to respond to critical alerts, and provide low-level expertise during an incident. Review collected by and hosted on G2.com.

Unable to fully integrate with our suite of tools in CrowdStrike, particularly the CrowdStrike Identity Protection. Review collected by and hosted on G2.com.

The IR team and detection engineers here are truly outstanding, and it's always a pleasure to collaborate with them. The implementation of Red Canary was very easy and their onboarding team was great to work with. Review collected by and hosted on G2.com.

Over the past few years, we've undergone several external penetration tests, and during these assessments, Red Canary was not able to identify the malicious activity while the tests were ongoing.

Also, they do not have any sort of alert ingestion integrations with Splunk or other SIEM platforms, and we needed to rely on custom API scripts to ingest alerts into our SIEM. Review collected by and hosted on G2.com.

Red Canary's support and threat experts are true experts in their field. They work hard and provide a deep technical analysis related to any finding and will even provide input for a non-finding if you ask. Ifs like the team really loves to chat with their customers so they can talk security shop and provide any actionable intel.

The best thing is that they will go outside of their lane and provide guidance if you have security questions related to best practices or technical points on how to work through an event. They will also let you know if they are not able to provide clean guidance but can still provide a direction to help you. Review collected by and hosted on G2.com.

You may get a specific recommendation that you may not be able to perform, or their feedback is they are not able to assist because you are not subscribed to a specific service. Review collected by and hosted on G2.com.

The documentation for this tool is excellent. Whenever I have a question, I can almost always find the answer there. On the rare occasions when the documentation doesn't cover my issue, the support team is fantastic. They respond quickly and are always very helpful. Review collected by and hosted on G2.com.

I wish Red Canary would allow customers to create a playbook for automating the re-activation of decommissioned computers that reappear on the network, rather than having to handle each one individually. The current process is very time-consuming. Review collected by and hosted on G2.com.

Very satisfied with Red Canary's service and dedication to cybersecurity. Their proactive approach and advanced threat detection capabilities have significantly enhanced our organization's security posture. The team's expertise and responsiveness are truly amazing, we feel confident and well-protected. Red Canary's commitment to continuous improvement and customer satisfaction is evident in every interaction. Review collected by and hosted on G2.com.

It's not so much dislike but sometimes there is a high volume of alearts and it can be a little overwhelming since our team is very small, but I also understand they are necessary. Review collected by and hosted on G2.com.

Implementation, ease of use, and customer support are 3 of the main things that Red Canary goes above and beyond with. In the tech industry we've all experienced very unhelpful support, and when it comes to our security posture it's allows us to "set and forget" a lot of the triggers that we see on a daily basis. Their team has been instrumental in steering us towards success, whether it's monthly meetings, actual malicious triggers, or just to chat about upcoming security changes. Review collected by and hosted on G2.com.

We have yet to see many downsides, at all, when it comes to using Red Canary. With any security software, it will be quite overwhelming if you're just getting your feet wet for the first time, but their team of experts makes it very easy for your worries to subside. Review collected by and hosted on G2.com.

Red Canary provides timely alerts with rich contextual information, which significantly accelerates my ability to triage and respond to security incidents. The quality of the alerting is excellent, with very low false positive escalation rates, saving me valuable time and reducing alert fatigue. I also appreciate the platform’s automation capabilities, which allow for streamlined and automated incident response workflows, making it easier to contain and remediate threats efficiently. Review collected by and hosted on G2.com.

I have not encountered any major downsides so far. Review collected by and hosted on G2.com.