Listing Thumbnail

    RevealX 360: SaaS-Based Cloud Threat Defense for AWS

     Info
    Sold by: ExtraHop  
    Quickly identify, investigate, and respond confidently to cyber risk with SaaS-based RevealX, an agentless network detection and response (NDR) solution for AWS, hybrid, and multicloud environments.
    Listing Thumbnail

    RevealX 360: SaaS-Based Cloud Threat Defense for AWS

     Info
    Sold by: ExtraHop  

    Overview

    Reclaim the advantage over cyber attackers with network visibility, monitoring, and analysis that fills coverage gaps left by logs and agent-based tools. ExtraHop RevealX 360 is a SaaS-based network detection and response (NDR) platform that enables security teams to investigate smarter, stop threats faster, and move at the speed of risk.

    With RevealX 360, you can combine the deep visibility of network packets with the broad coverage of VPC Flow Logs in a single, cloud-native platform. It also offers 90 days of records lookback and an extensible PCAP repository for forensics.

    RevealX 360 identifies risk in east-west and north-south traffic with advanced analytics and integrations with leading threat intelligence feeds and response automation tools.

    VISIBILITY: Automatically identify, classify, and monitor assets without the need for agents. Reduce blind spots with line-rate decryption and enterprise protocol decoding.

    CLOUD-SCALE MACHINE LEARNING: Analyze behavior, detect threats, and automate investigation steps for faster response with no impact to performance.

    REAL-TIME THREAT DETECTION: identify threats other tools miss and detect post-compromise tactics like lateral movement to stop attacks before they become breaches.

    STREAMLINED INVESTIGATION: Intuitive workflows enhanced by AI enable 3-click investigation from detection to root cause.

    INTELLIGENT RESPONSE: Stop threats quickly and with confidence via turnkey integration for automated response or analyst-led action.

    Please contact us for custom pricing.

    Highlights

    • Investigate Smarter: Accelerate mean time to investigate threats with cloud-scale machine learning and robust retrospective forensics to produce high-fidelity detections. Quickly expose risk with streamlined investigation workflows.
    • Stop Threats Faster: Get visibility into encrypted network traffic and devices and workloads without endpoint agents. Identify living off the land and other signs of early stage attacks with full packet capture and line-rate decryption.
    • Move at the Speed of Risk: Reveal hidden risk and implement compensating controls with real-time insight into vulnerabilities and security hygiene across your attack surface to improve decision making, regulatory reporting, and compliance.

    Details

    Delivery method

    Features and programs

    Financing for AWS Marketplace purchases

    AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
    Financing for AWS Marketplace purchases

    Pricing

    RevealX 360: SaaS-Based Cloud Threat Defense for AWS

     Info
    Pricing is based on contract duration. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. Usage-based pricing is in effect for any usage exceeds the entitle amount or not covered in the contract. These charges will be applied on top of the contract price. If you choose not to renew or replace your contract before it ends, access to your entitlements will expire.

    12-month contract (3)

     Info
    Dimension
    Description
    Cost/12 months
    Pay-as-you-go
    $0 up front
    $0.00
    Flow Log Subscription
    Real-time analytics of VPC Flow Logs to identify advanced attacks.
    $15,000.00
    Reveal(x) 360 for AWS
    Real-time analytics of network packets to identify advanced attacks.
    $50,000.00

    Additional usage costs (2)

     Info

    The following dimensions are not included in the contract terms, which will be charged based on your usage.

    Dimension
    Cost/unit
    On-demand record capacity (per GB)
    $1.69
    Usage-based pricing for device overages (per device)
    $10.00

    Vendor refund policy

    All payment obligations are non-cancelable and all amounts paid are non-refundable.

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    Software as a Service (SaaS)

    SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.

    Support

    Vendor support

    Reveal(x) 360: SaaS-Based Cloud Threat Defense for AWS We designed support services to meet you at every stage of your hybrid security journey.

    Contact ExtraHop Support: https://www.extrahop.com/support/  or call us at 877-333-9872 (US)

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Similar products

    Customer reviews

    Ratings and reviews

     Info
    0 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    0%
    0%
    0%
    0%
    0%
    0 AWS reviews
    |
    67 external reviews
    External reviews are sourced from G2  and are not included in the star rating for this product.
    Telecommunications

    RevealX from a daily user perspective

    Reviewed on Feb 28, 2024
    Review provided by G2
    What do you like best about the product?
    Overall, RevealX is easy to use and provides great visibility into the network. ExtraHop has very thorough documentation and if you can't find what you're looking for the support and training teams are always willing to help. I've experienced a quick turnaround for questions around the product. The training team is excellent at maintain user engagement in a virtual setting. The product is also super customizable which is great for unique use and abuse cases.
    I use RevealX almost daily, my top three pros from a technical perspective are the increased visibility of the network, customizing doesn't mean learning a new language, and low barrier to entry for analysts who are new to networking and security.
    What do you dislike about the product?
    My top three cons for the product are that when adjusting baseline metrics, the baseline completely resets and there is a 3-4 week period before the baseline is calculated. Going off the above, it does not perform "lookback" searches for detections, meaning I can't craft a detection today and then see if the logic matches any stored data in the tool. Some of the customization areas need a bit of work so that they tie into the other features of the product.
    What problems is the product solving and how is that benefiting you?
    ExtraHop enables us to have better visibility. This has resulted in us making configuration changes on hardware and network devices to decrease our attack surface.
    Higher Education

    ExtraHOP provides visibility to quickly resolve performance and security issues

    Reviewed on Feb 21, 2024
    Review provided by G2
    What do you like best about the product?
    ExtraHOP provides great visibility for performance and security issues in our environment. Many of the detections, dashboards, and device groups provide easy starting points for learning to use extraHOP. Then, building custom dashboards and detections is very simple. We use extraHOP every day to assist us resolving problemes. The customer support and partnership we have with extraHOP has been key to our success.
    What do you dislike about the product?
    You need to really understand your environment from the network layer to the application layers. extraHOP provides many options, but you need to determine what works best for your environment. It does take some time for planning the implementation properly but the planning and design time is worth it.
    What problems is the product solving and how is that benefiting you?
    extraHOP has helped us solve authentication issues, storage issues, server issues, network performance issues, security problems and other application problems. We had many blind spots and extraHOP has helped us gain visibility to many of our services.
    Internet

    you get what you pay for

    Reviewed on Feb 14, 2024
    Review provided by G2
    What do you like best about the product?
    We've tested the product using reputable 3rd party pentesters manual and automated. And we've compared it with other products. The difference between seeing that you are being compromised and not seeing it is huge. How do you choose a competitive product that is cheaper if it doesn't see that you are being compromised? Or how do you rest at night knowing that you've done everything you can to safeguard your network? Extrahop's visibility is far above the rest.
    What do you dislike about the product?
    It is pricey. So if you are Misinformed and think that backups, firewalls, and anti-virus solutions are going to save you then you aren't going to understand the price of this product.
    What problems is the product solving and how is that benefiting you?
    Mainly keeping our company from experiencing a ransomware event. We have staff dedicated to keeping their eye on the product and chasing down alerts 24/7/365.
    Jeff H.

    One stop shop for network detections and notifications Easy to use and easy to understand.

    Reviewed on Feb 05, 2024
    Review provided by G2
    What do you like best about the product?
    I like that ExtraHop identifies the alert in a mannert that is easy to follow. It gives the risk level of the alert, shows the metrics, breaks down the records for the incident, shows the packets involved, and even includes a pcap of the packets that can be used in WireShark to analyze further. It also gives the Mitre techniques as well as mitigation options to mitigate the attack.
    What do you dislike about the product?
    I haven't found to many things I dislike about ExtraHop. It is not an automated system that will block an attack as it is happening, but it does e-mail out alerts so that I have the ability to begin investigating the incident as soon as possible leading to a faster mitigation scenario.
    What problems is the product solving and how is that benefiting you?
    As an ISP our network security is very important. ExtraHop is a tool to help ensure we are seeing any attack in realtime, giving us the ability to troubleshoot and mitigate the issue in a speedy manner. We have the abilty to isolate traffic quickly when an issue arises.
    Khaja Ahmed M.

    Overall good product but needs more flexibility.

    Reviewed on Jan 30, 2024
    Review provided by G2
    What do you like best about the product?
    1. Seamless monitoring.
    2. Simple and straightforward rule tuning.
    3. Dashboard capabilities
    What do you dislike about the product?
    1. Lot of false positives.
    2. Machine learning model is not flexible to the requirements.
    3. Sometimes performance issues.
    What problems is the product solving and how is that benefiting you?
    Its providing detections that are required to ensure all the permiters are covered.
    View all reviews