ExtraHop Performance Platform

Score8.4 out of 10

28 Reviews and Ratings

What is ExtraHop Performance Platform?

ExtraHop in Seattle, Washington offers an IT operations analytics platform via the ExtraHop Performance Platform, providing a dynamic, real-time view of all transactions in the IT environment, every team from NetOps to SecOps can spot and solve problems fast.

Categories & Use Cases

IT Operations Analytics

Verified User

Engineer in Information Technology (10,001+ employees employees)

Use Cases and Deployment Scope

ExtraHop helps fill in the network security gap we have to comply with NIST security framework. Each day our security team receives thousands of alarms which are hard to filter through but with the aid of AI through this network detection and response they are able to filter through the false alarms.

Pros

AI Security
Packet storage
Friendly UI

Cons

Customer Support
Incident response
Threat mitigation

Return on Investment

Uses AI to detect network anomalies
Stores packet captures for further analysis
Utilizes ticketing system to track incidents.

Usability

Alternatives Considered

Cisco SecureX, Splunk AppDynamics and IBM Security QRadar SIEM

Other Software Used

Cisco 900 Series Integrated Services Routers (ISR), Palo Alto Networks Advanced Threat Prevention, Cloudflare

Verified User

Team Lead in Information Technology (5001-10,000 employees employees)

Use Cases and Deployment Scope

We use ExtraHop Performance Platform to analyze all the traffic within our datacenter. As well as watching traffic that leaving the datacenter to our coworkers out in the wild. We have so many people developing and deploying apps and servers. It can be difficult to get a big picture of where our data is going. This tool allows us to see everything and possibly avoid a data breach.

Pros

Sniffing packets
Detecting services
Analyzing trends

Cons

Detect even more apps/services
Improve UI navigation

Return on Investment

Helps create patching schedule with app owners
Management can see how much traffic apps are using

Other Software Used

Auvik, Cisco Meraki SD-WAN, ServiceNow Now Platform

Paul Fan

Technical Specialist in Engineering at Telstra (10,001+ employees employees)

Pros

Extrahop can perform health monitoring end to end if you have multiple probes deployed in your network, the intelligence engine can easily help you to compare and data collected from different hops and help you to narrow down the issue to a specific part of your end to end network.
Extrahop is not just analyzing and monitoring the health of the network, actually, its deep-dive analysis engine can perform an analysis from the network layer up to the application layer. It's easy to identify the root cause whether it's a network issue or something wrong in the application, save the time to have the issue go around again and again between network team and application team to blame each other.
Extrahop provides good programming functionalities allowing the user to do their specific programing to meet the requirement of how they design to better operate the service.

Cons

Some person like me who want to see Extrahop can integrate better with other network analysis tools like Wireshark or TCPdump. The desired functionality I've been looking for is to program a kind of specific criteria to trigger the probe starts to run Wireshark or TCPdump to save the trace of a specific problematic session. Sometimes I want to see the evidence in a packet trace layer rather than just have the warning or error only presented in the dashboard.

Return on Investment

After implementing Extrahop and started to use it as the main monitoring solution in my business organization, we improved a lot of work efficiency on operating complex IT solutions, reduced the incident record number, reduce the response time and speed up the root cause infestations, hence helped to save the cost for the business.

Alternatives Considered

Dynatrace

Other Software Used

Anaconda, Cisco Webex Teams (formerly Cisco Spark), Microsoft 365 Business

Verified User

Manager in Information Technology (10,001+ employees employees)

Pros

SQL query analysis
Packet analysis
Look for unusual network activity

Cons

A lot of information, not that its a bad thing
User interface could be a little more user friendly

Most Important Features

Packet Analysis
Network detection
Network response

Return on Investment

SQL Analysis/bad querying
Network Routing Issues
Network Response/Alerting

Alternatives Considered

Splunk Application Performance Monitoring, SolarWinds NetFlow Traffic Analyzer (NTA) and NETSCOUT TruView (formerly Visual TruView)

Other Software Used

NETSCOUT TruView (formerly Visual TruView), SolarWinds Database Performance Analyzer, Splunk Application Performance Monitoring

Esther Go View profile

President in Information Technology at Medilink Network, Inc. (201-500 employees employees)

Pros

Agentless deployment
Real time alerts (e.g. performance degradation, ransomware, etc.)
Pre-configured objective dashboards that establish "the truth" about what's going on at many levels - network, application, comm.

Cons

From the trigger automail, it would help if there were a shortcut (one-click) access to the drill down screen
AI features are not available outside of North America

Return on Investment

Accelerated root cause analysis
Cut out time passing the hot potato, focused time on resolution
It's a good tool for change management, helping to transform a reactive culture to one that is more proactive
Enables early warning and visibility, prompts action before a system goes down

Other Software Used

ManageEngine OpManager

ExtraHop Performance Platform

What is ExtraHop Performance Platform?

Categories & Use Cases

Reviews

ExtraHop

Use Cases and Deployment Scope

Pros

Cons

Return on Investment

Usability

Alternatives Considered

Other Software Used