AWS CloudTrail vs. Mandiant Advantage Attack Surface Management

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
AWS CloudTrail
Score 8.6 out of 10
N/A
AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history of AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource change tracking,…N/A
Mandiant Advantage Attack Surface Management
Score 9.1 out of 10
Enterprise companies (1,001+ employees)
Since 2004, Mandiant has been a partner to security-conscious organizations. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.N/A
Pricing
AWS CloudTrailMandiant Advantage Attack Surface Management
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
AWS CloudTrailMandiant Advantage Attack Surface Management
Free Trial
YesYes
Free/Freemium Version
YesYes
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeRequired
Additional DetailsYou can view, filter, and download the most recent 90 days of your account activity for all management events in supported AWS services free of charge. You can set up a trail that delivers a single copy of management events in each region free of charge. Once a CloudTrail trail is set up, Amazon S3 charges apply based on your usage. You will be charged for any data events or additional copies of management events recorded in that region. In addition, you can choose CloudTrail Insights by enabling Insights events in your trails. CloudTrail Insights analyzes write management events, and you are charged based on the number of events that are analyzed in that region.
More Pricing Information
Community Pulse
AWS CloudTrailMandiant Advantage Attack Surface Management
Features
AWS CloudTrailMandiant Advantage Attack Surface Management
Threat Intelligence
Comparison of Threat Intelligence features of Product A and Product B
AWS CloudTrail
-
Ratings
Mandiant Advantage Attack Surface Management
7.7
Ratings
3% below category average
Network Analytics00 Ratings8.20 Ratings
Threat Recognition00 Ratings7.30 Ratings
Vulnerability Classification00 Ratings7.30 Ratings
Automated Alerts and Reporting00 Ratings8.20 Ratings
Threat Analysis00 Ratings8.20 Ratings
Threat Intelligence Reporting00 Ratings6.40 Ratings
Automated Threat Identification00 Ratings8.20 Ratings
Vulnerability Management Tools
Comparison of Vulnerability Management Tools features of Product A and Product B
AWS CloudTrail
-
Ratings
Mandiant Advantage Attack Surface Management
7.6
Ratings
6% below category average
IT Asset Realization00 Ratings8.20 Ratings
Authentication00 Ratings7.30 Ratings
Configuration Monitoring00 Ratings8.20 Ratings
Web Scanning00 Ratings6.40 Ratings
Vulnerability Intelligence00 Ratings8.20 Ratings
Best Alternatives
AWS CloudTrailMandiant Advantage Attack Surface Management
Small Businesses
Armor
Armor
Score 6.0 out of 10
Action1
Action1
Score 9.5 out of 10
Medium-sized Companies
Druva Security Cloud
Druva Security Cloud
Score 9.7 out of 10
Action1
Action1
Score 9.5 out of 10
Enterprises
Druva Security Cloud
Druva Security Cloud
Score 9.7 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
AWS CloudTrailMandiant Advantage Attack Surface Management
Likelihood to Recommend
8.0
(0 ratings)
8.2
(0 ratings)
User Testimonials
AWS CloudTrailMandiant Advantage Attack Surface Management
Likelihood to Recommend
Most probably it would be suitable for Finance industries, where security is at the head of the table. However, in our case for E-commerce, it's also quite suitable, since we have quite a significant amount of data and usage of AWS services. Especially with usage of AWS services, AWS CloudTrail comes into play as a heavy plus. For instance, troubleshooting any issues in AWS services is really nice. Therefore, it would be less appropriate with a small amount of AWS service usage and some basic web hosting.
Read full review
Many companies that have an presence can benefit from using Mandiant ASM to identify and manage their internet facing assets, like web servers, email servers and DNS servers. This helps reduce the risk of cyberattacks targeting these assets.However smaller organizations with exposure might not always need the extensive attack surface monitoring provided by Mandiant ASM. For example a small company with one website may not require much monitoring, as a larger corporation.
Read full review
Pros
  • Logs details
  • Easy implementation
  • Great support
Read full review
  • Mandiant ASM combines sources of information such, as assets through the internet cloud resources and suppliers from third parties. This comprehensive approach provides organizations with an understanding of their external attack surface.
  • With scanning Mandiant ASM identifies threats and vulnerabilities present on the external attack surface and promptly notifies users. Whenever a new threat or vulnerability is detected an alert is generated to empower enterprises to take action in mitigating the risks.
  • Mandiant ASM assesses risks based on their likelihood of exploitation impact on organizations and severity. This prioritization enables organizations to focus their efforts, on addressing the risks effectively.
Read full review
Cons
  • Delay
  • User interface, must send logs elsewhere to view them
Read full review
  • To enhance user experience it would be beneficial to make the interface more user friendly and easier to navigate. This can be achieved by simplifying the layout offering help when needed and utilizing terminology that's easily understandable.
  • Additionally incorporating reporting features that are customizable will empower users to generate reports tailored to their individual requirements.
  • In order to enhance the solutions efficiency optimizing the code and implementing data structures would prove valuable.
Read full review
Alternatives Considered
For this specific functionality, I am not aware of any other product that can do what [AWS] Cloudtrail does. We did not evaluate any other products.
Read full review
I decided to go with Mandiant Advantage Attack Surface Management because it offers a range of features performs excellently and is easy to use. What I really appreciate about Mandiant is their commitment, to innovation and their proven track record, in ensuring security.
Read full review
Return on Investment
  • Saved us from purchasing and managing 3rd party solutions
  • Satisfies Security/Governance requirements
  • No upkeep/maintenance
Read full review
  • .
  • Automation plays a role in saving time by streamlining operations related to attack surface management. These include automated asset discovery, vulnerability scanning and continuous monitoring of threat intelligence. As a result security teams can allocate their efforts towards projects such as security planning and incident response.
  • ASM provides a view of the external attack surface, for businesses encompassing internet facing assets, cloud resources and third party vendors. This enhances the understanding of assets enabling organizations to identify and prioritize risks effectively and make decisions on security investments
  • One notable advantage is cost savings. By eliminating the need to purchase and maintain security tools ASM becomes a solution for enterprises. It can replace products, like asset discovery tools, vulnerability management tools and threat intelligence feeds with its capabilities.
Read full review
ScreenShots

AWS CloudTrail Screenshots

Screenshot of CloudTrail Insights: Identify and respond to unusual operational activity
•Unexpected spikes in resource provisioning
•Bursts of IAM management actions
•Gaps in periodic maintenance activity
•Automatic analysis of API calls and usage patterns
•Alerts when unusual activity is detected