Name: Darktrace / Forensic Acquisition & Investigation
Rating: 4.8 (5 reviews)

Overview

Product Information on Darktrace / Forensic Acquisition & Investigation

Updated 13th October 2025

What is Darktrace / Forensic Acquisition & Investigation?

Cado Security is a software designed for cloud forensics and incident response, enabling organizations to investigate security incidents across cloud, container, and hybrid environments. The software automates evidence collection, processing, and analysis from various infrastructure sources, including cloud platforms and virtualized environments. It provides capabilities for timeline reconstruction, artifact analysis, and data visualization to support security teams in identifying and understanding potential threats. By centralizing and accelerating forensic workflows, the software addresses challenges related to the complexity and scale of modern cloud environments, helping organizations improve their response to security events and reduce time to resolution.

Overall experience with Darktrace / Forensic Acquisition & Investigation

It Security & Risk Management Associate

<50M USD, IT Services

FAVORABLE

“Comprehensive Network Visibility and Investigation Tools Ease Incident Response Challenges”

5.0

Apr 3, 2026

From a SOC analyst's point of view, Daktrace's Forensic Acquisition & Investigation feels like one of those tools that really shows its value once you've spent some time with it, even if it doesn't feel completely intuitive right from the start. What jumps out immediately is how much visibility it gives you. It pulls together network activity, device behavior, and historical context in a way that saves a lot of time compared to switching between several different tools. When you're in the middle of an investigation, having the timeline style view of events, and being able to quickly pivot between connections, devices, and protocols, is genuinely helpful. Overall, once you get past the initial learning curve, the platform really helps streamline investigations and gives you the clarity you need when responding to incidents.

There are no reviews in this category.

CRITICAL

About Company

Company Description

Darktrace is a Cambridge, UK-based firm concentrating on the mitigation of cyber disruptions globally. The company employs a unique AI technology used by thousands of businesses globally to counteract, identify, react to, and recover from cyber-attacks. With a team of over 2200 people spread over 30 global offices, Darktrace is dedicated to containing the global impacts of cyber threats.

Company Details

Year Founded

2013

Head office location

Cambridge, United Kingdom

Number of employees

1001 - 5000

Annual Revenue

500M-1B USD

Website

https://darktrace.com/

Do You Manage Peer Insights at Darktrace?

Access Vendor Portal to update and manage your profile.

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

Reviewer Insights for: Darktrace / Forensic Acquisition & Investigation

Darktrace / Forensic Acquisition & Investigation Likes & Dislikes

Strong visibility across network activity Really useful timeline and pivoting features Remote forensic data collection

Detailed investigation capabilities and useful for incident analysis

real time threat detection - value the ability to quickly identify and respond to threats in the cloud environment comprehensive forensics - in depth forensics capabilities allow the teams to conduct thorough investigations ease of integration - many users appreciate the ease of integrating with existing applications/framework

Hard to learn for new analysts Searches and filtering are slow sometimes Limited guidance

Learning time period and also when having large data sets it can be complex to navigate

set up complexity - initial set up and deployment can be complex, especially for some teams UI - some users have reported the UI is not intuitive enough Reporting capabilities - would like for extra customisation with reports

Top Darktrace / Forensic Acquisition & Investigation Alternatives

Peer Discussions

Darktrace / Forensic Acquisition & Investigation Reviews and Ratings

Recommended Gartner Insights

<50M USD

IT Services

Review Source

Comprehensive Network Visibility and Investigation Tools Ease Incident Response Challenges

Cyber Security Analyst

Platform Assists in Analyzing Large Volumes of Network Security Data

Mar 26, 2026

Overall good experience, it provides capabilities for captuing/analyzing network data which can help on the investigation process and better understand security events. Also helping when working with large volumes of network data because it can require some familiarity with the platform.

Solutions Engineer

50M-1B USD

Enhancing Threat Detection and Response in Cloud Environments

4.0

Oct 24, 2024

Significant improvements in our threat detection and incident response capabilities. Being able to identify potential security incidents in cloud environments.

Manager, IT Security and Risk Management

Media

Great product for cloud and on-prem forensics analysis

Dec 1, 2023

no additional comments on the implementation of Cado. It was easy to build terraform for the deployment which met our standards

Cybersecurity Analyst

1B-10B USD

Overall positive experience with Cado Response

Aug 7, 2023

I have had an overall positive experience working both with the Cado Response tool and Cado the company. They are still growing, but the improvements that have been made over the last couple of years to Cado Response have been great, and the constant innovation from their side means that they often anticipate our needs before we do. The newness of the tool means that there are some features that are not fully fleshed out or things they haven't gotten to yet, but their support is quick to respond to requests for help and to prioritize the things that we ask about.

Darktrace / Forensic Acquisition & Investigation

Overview

Product Information on Darktrace / Forensic Acquisition & Investigation

What is Darktrace / Forensic Acquisition & Investigation?

Darktrace / Forensic Acquisition & Investigation Pricing

Overall experience with Darktrace / Forensic Acquisition & Investigation

“Comprehensive Network Visibility and Investigation Tools Ease Incident Response Challenges”

About Company

Company Description

Company Details

Key Insights

A Snapshot of What Matters - Based on Validated User Reviews

Reviewer Insights for: Darktrace / Forensic Acquisition & Investigation

Darktrace / Forensic Acquisition & Investigation Likes & Dislikes

Top Darktrace / Forensic Acquisition & Investigation Alternatives

Peer Discussions

Darktrace / Forensic Acquisition & Investigation Reviews and Ratings

Recommended Gartner Insights

Darktrace / Forensic Acquisition & Investigation

About Company

Company Description

Company Details

Darktrace / Forensic Acquisition & Investigation Likes & Dislikes

Top Darktrace / Forensic Acquisition & Investigation Alternatives

Darktrace / Forensic Acquisition & Investigation Reviews and Ratings

Comprehensive Network Visibility and Investigation Tools Ease Incident Response Challenges

Platform Assists in Analyzing Large Volumes of Network Security Data

Enhancing Threat Detection and Response in Cloud Environments

Great product for cloud and on-prem forensics analysis

Overall positive experience with Cado Response

4.8

(5 Ratings)

Rating Distribution

Customer Experience

Product Capabilities

1. Binalyze AIR

2. Cortex XDR

3. OpenText EnCase Forensic

Reviewer Insights for: Darktrace / Forensic Acquisition & Investigation