Sold by: Vectra AIÂ
Deployed on AWS
For security leaders, builders, and operators, who are tasked with protecting a complex, ever-changing environment from attack, Vectra AI protects modern networks from modern attacks. When modern attackers beat customers' existing controls - and they will, Vectra AI sees their every move, connects the dots, prioritizes and stops the attack in real-time. Our customers say we are the cybersecurity AI that stops attacks others can't.
4.1
Overview
Vectra AI Platform capabilities:
- Coverage: AI Detections that expose attackers' every move across network, identity, cloud - reducing attack exposure by 52%. The Vectra AI Platform covers data centers, campuses, remote work, IoT/OT, AWS, Microsoft Active Directory, Microsoft Entra ID, Microsoft Azure, Microsoft 365, and Microsoft Copilot for 365.
- Clarity: AI Agents that automatically triage, stitch, and prioritize attacks in real time - removing 99% of alert noise, and up to 50% of time spent on manual tasks.
- Control: Respond UX to discover, hunt, detect, investigate, stop and report improving security team efficiency and effectiveness by 40%.
o Discover where attackers can attack across network, identity and cloud to stop attacks before they start.
o Hunt down attackers by seeing malicious threat activity across network, identity and cloud in one view.
o Investigate instantly with an aggregated, contextualized view of attack progression in one window.
o Respond confidently in minutes with automated and manual lockdown of infected hosts and devices.
o Report on attack exposure, posture, operational efficiency and effectiveness.
Vectra AI Platform modules:
- Vectra AI for Network - NDR
- Vectra AI for Cloud - AWS
- Vectra AI for Cloud - Azure
- Vectra AI for Cloud - M365
- Vectra AI for Identity - Microsoft Active Directory
- Vectra AI for Identity - Microsoft Entra ID
- Vectra AI Investigations - Metadata retention 14-day
- Vectra AI Investigations - Metadata retention 30-day
- Vectra Fusion - Metadata retention 45-day
- Vectra Fusion - Metadata retention 90-day
- Vectra Managed Detection and Response (MDR)
- Vectra Managed Extended Detection and Response (MXDR) - includes endpoint management
Vectra AI Platform packages:
- Vectra AI Platform Standard: Network, Identity, Cloud
- Vectra AI Platform Complete: Network, Identity, Cloud, Premium Support, MDR
Learn more about each Vectra AI Platform module at https://www.vectra.ai/platformÂ
For custom pricing, EULA, or a private contract, please contact your Vectra AI sales representative, channel partner, or aws-marketplace@vectra.ai for a private offer.
Highlights
- Attack Coverage: We got you covered with AI Detections that expose modern attackers' every move across network, identity, cloud - reducing attack exposure by 52%.
- Signal Clarity: We give you clarity with AI Assistants that automatically triage, correlate, and prioritize real attacks in real time - removing up to 50% of time spent on manual tasks.
- Intelligent Control: We put you in control to discover, hunt, detect, investigate, and stop attacks early - improving security team efficiency and effectiveness by 40%.
Details
Sold by
Categories
Delivery method
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Trust Center
Access real-time vendor security and compliance information through their Trust Center powered by Drata. Review certifications and security standards before purchase.
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor, and additional usage. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. Usage-based pricing is in effect for overages or additional usage not covered in the contract. These charges are applied on top of the contract price. If you choose not to renew or replace your contract before the contract end date, access to your entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/month |
|---|---|---|
Vectra AI Standard | Vectra AI Platform Standard: Network, Identity, Cloud | $499.00 |
Vectra AI Complete | Vectra AI Platform Complete: Network, Identity, Cloud, Premium Support, MDR | $1,299.00 |
AWS Brain ( Deprecated ) | Detect for Network - AWS Brain (custom configuration) | $5,000.00 |
Protect for M365 ( Deprecated ) | Vectra Protect for M365 | $2,900.00 |
Protect for Azure AD ( Deprecated ) | Vectra Protect for Azure Activity Directory | $1,160.00 |
Dimension | Cost/unit |
|---|---|
Vectra Threat Detection Contract Overages - One Time Fee | $1.00 |
Vendor refund policy
All Orders are non-cancellable and all fees and other amounts you pay under this Agreement are non-refundable.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
support@vectra.ai Contact Vectra Support: https://www.vectra.ai/support or call us at (408) 326-2022 (US)
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Vectra Sensors are deployed in VPCs to monitor AWS deployments to detect hidden threats without requiring any endpoint agents.
![Vectra AI [Private Offer Only]](https://d7umqicpi7263.cloudfront.net/img/product/496ff9fb-985e-4692-8ebc-3438fc9faed1.com/37bdd9ea3ae0a77c8cf10ef8e1af1d16)
Vectra enables enterprises to immediately detect and respond to cyberattacks across cloud, data center, enterprise and IoT networks.
Vectra Threat Detection and Response for Partner Provided Consulting Engagements
The Vectra Stream connector outputs Bro/Zeek formatted metadata from the Vectra Network Detection and Response Platform to any data-lake.
Customer reviews
reviewer2783214
AI‑driven threat detection has transformed alert fatigue and now enables faster response and leaner soc operations
Reviewed on Nov 28, 2025
Review from a verified AWS customer
What is our primary use case?
Vectra AIÂ is being used as an NDR solution to sell to customers as a managed service. The product has been productized to sell to customers as an NDR solution. The network is scanned for any anomalies or threats that are detected and fed to the customer's SIEMs and SOARs.
In one financial sector scenario, a customer was complaining about reduced alert fatigue and detecting an attack missed by traditional tools. They wanted an AI solution that could detect anomalies with the best MTTD and MTTR response times to reduce overhead over the SOC teams.
Vectra AIÂ has been used for identity management, which was integrated with Microsoft Entra IDÂ and Active Directory to monitor account activity. A customer wanted in-depth analysis on their identity management solution. Another scenario involved integrating with the customer's cloud solutions, where they wanted a solution that provided cloud detection and response through AWSÂ and Microsoft 365 environments.
What is most valuable?
The best features of Vectra AI are related to AI. For the NDR part, Attack Signal Intelligence features were mainly responsible for behavior AI, high-fidelity signaling, and prioritization. These features were great for anomaly detection and behavioral-based detection, able to catch zero-day attacks and living-off-the-land attacks. For high-fidelity signaling, it automatically triaged, filtered, and correlated signals, which dramatically reduced alert fatigue noise on the customer side by approximately 80% and eliminated alert fatigue on the SOC teams. Regarding the identity detection and response IDR solution, it monitored Active Directory and Entra ID for any attacks, allowing the SOC to detect any compromised credentials.
Alert noise was dramatically reduced by nearly 80%, allowing SOC analysts to focus more on true threats, which made them more productive and resulted in higher operational efficiency. Attack Signal Intelligence helped reduce irrelevant alerts by 80% to 90%, with metrics showing a 100-plus reduction in investigation workloads and roughly saving about 55,000 hours of investigation time. Investigation time has decreased significantly, empowering analysts with detection and advanced unknown threats that Vectra AI provided. Its knowledge base and database are very up to date, allowing for spotting zero-day attacks with full visibility and helping to stop attacks in minutes.
Vectra AI has reduced the MTTD and MTTR, increasing operational and process efficiency, and has helped reduce the number of SOC analysts that needed to be hired. Thanks to the AI features, the number of employees and SOC analysts hired has been reduced.
What needs improvement?
Pricing could be improved, as many customers have complained about the pricing model and pricing complexity.
Regarding the product itself, extending direct control and simplifying workflows would be beneficial. More granular built-in responses and cloud remediations could be improved. A native CMDB-like feature and risk scoring would be a big advantage. Improved compatibility with the SASEÂ ecosystem expansion would also be valuable.
For how long have I used the solution?
Vectra AI has been in use since 2018.
What do I think about the stability of the solution?
Vectra AI is considered a stable solution.
What do I think about the scalability of the solution?
Vectra AI is scalable because it can work through different kinds of solutions and is compatible with all kinds of cloud solutions. The appliance capacity is very good, whether virtual or physical, providing significant scalability.
How are customer service and support?
Customer support receives a rating of nine out of ten due to being very supportive and responding quite efficiently.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
A different solution was not previously used.
What was our ROI?
A good return on investment has been seen. For cost savings over a period of three years, it could be about 350%. The payback period is roughly six months. Productivity savings could be about 800,000, with SOC efficiency increasing nearly 40%. Workload reduction on the SOC side is now 100% lighter than previously.
Which other solutions did I evaluate?
Other options were not evaluated, as at that time, Vectra AI was the only NDR solution that had AI features. They began with the AI concept that was being sought.
What other advice do I have?
Vectra AI should be considered if looking for an NDR solution and not just an EDR solution only. It provides great value and quality, provided that customers can pay for the licenses, which are quite expensive. Vectra AI is represented as a partner and reseller in business with this vendor. This review has been given a rating of eight out of ten.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
RahulReddy
Threat detection has improved and malicious emails are now identified quickly
Reviewed on Nov 15, 2025
Review provided by PeerSpot
What is our primary use case?
Vectra AIÂ is my main cybersecurity tool, and we use the AI data in our company. For example, when we discovered a malicious email, Vectra AIÂ helped us identify that it was not a legitimate email, and we successfully stopped the threats.
What is most valuable?
Vectra AI offers artificial intelligence capabilities with visibility that can be integrated into our day-to-day operations and other tools, including malware detection tools and cyber threat tools.
Vectra AI has positively impacted my organization. Last year while using it, we received many malicious email threats and virus incidents, including a trojan virus that had reportedly been deployed by someone. Our company used Vectra AI to detect the malicious threats and viruses before they could cause more damage, and we successfully stopped the threats.
Using Vectra AI, I notice that server downtime has decreased significantly. We now experience only two to three hours of downtime, whereas without Vectra AI and other tools, our downtime would exceed 48 to 72 hours.
What needs improvement?
Vectra AI could be improved by focusing on all threat types, not only malicious threats or virus threats. All threats, including hacking attempts, should be comprehensively addressed.
The user interface of Vectra AI is good, so there are no improvements needed in that area. However, reporting and integration with other tools should be enhanced.
For how long have I used the solution?
I have been using Vectra AI for two years.
What other advice do I have?
I give Vectra AI a rating of 8 out of 10.
Nawaf Fawaz
Automation benefits increase as users create automations with ease
Reviewed on Apr 24, 2025
Review provided by PeerSpot
What is our primary use case?
Vectra AIÂ is a tool that I use for detecting and remediating threats through use cases that are default within its system.
What is most valuable?
The main feature of Vectra AIÂ that I find valuable is its focus on the user interface and its approximately two hundred algorithms based on artificial intelligence and machine learning. It allows me to create automations easily. Using this tool for automation has provided more benefits to our processes.
What needs improvement?
There are several features found in ExtraHop that are not present in Vectra AI. These include the ability to view graphs of endpoints contacting other endpoints and the bandwidth utilization in the environment. Additionally, ExtraHop's ability to decrypt encrypted data is a feature that Vectra AI lacks. Multiple appliances are required for Vectra AI, making it less convenient compared to competitors.
For how long have I used the solution?
I have been using Vectra AI for two years.
How are customer service and support?
When I create tickets, the response is fast, and issues are solved promptly. However, more technical queries may take two or three days, or up to a week.
How would you rate customer service and support?
Negative
How was the initial setup?
Setting up Vectra AI is more complicated compared to other tools like ExtraHop. It requires multiple appliances for different functions, whereas ExtraHop requires only one sensor.
Which other solutions did I evaluate?
ExtraHop is another solution that I have evaluated.
What other advice do I have?
I would rate Vectra AI eight out of ten. Despite its complexities, I still find it valuable, though ExtraHop seems to be catching up.
Mohammad Alkurdi
Innovative detection features enhance monitoring
Reviewed on Jan 03, 2025
Review provided by PeerSpot
What is our primary use case?
We are using it for our SOC services. We are also using it for our clients. We have our monitoring setup for our SOC staff.
What is most valuable?
There are many detection features available. There are extensive out-of-box detection capabilities. I cannot mention just one or two at the moment. There are multiple detection rules, and its integration with ADR and Office 365 AI is very nice, to be honest with you. It is scalable, and they have their own appliance that can handle multiple locations. You can deploy it for enterprises with multiple sites.
What needs improvement?
The advantages of the integration are not entirely out-of-the-box. You have to do it manually. When I'm doing tier response, an out-of-the-box solution is not available. You need to have a Linux server, and from the Linux server, you must perform AI tasks, and there is a lot to be handled in the back end. This is a major consideration about them. The recall feature, if it can be placed in some areas instead of the cloud, and charged for, would be better. Recall the storage where you watch all the traffic, and you can recall it and try to analyze it in the back end. It’s cloud-based. If they offer it on-prem, it would be better. I think they have a solution, but I have never tested it, to be honest with you.
For how long have I used the solution?
I have been using the solution for years.
What do I think about the scalability of the solution?
It is scalable, and they have their own appliance to handle multiple locations. You can deploy it for enterprises with multiple sites.
How are customer service and support?
They are supportive. From a support perspective, they are supportive, to be honest with you.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
I am using something else. I am using Vivo, Vixstrap, Vextra AI, Vectra, and Security Onion as open-source. It depends on the clients.
What's my experience with pricing, setup cost, and licensing?
It is very acceptable when you compare it with Darktrace, for example.
What other advice do I have?
At the end of the day, it's written rules in such a way. The trend in the market is something I did not consider much. The detection rules are written in the back end. There is something happening in such a way to do it again. AI is mentioned too much, and for me, it is only marketing talk. At the end of the day, there is no one hundred percent AI in security. Detection requires manual writing at times. They already handle back-end processes but vendors won't show this. AI is not targeting a specific vendor. AI, for me, is just a trend. It depends on the client. I tailor solutions to client requirements. For visibility and monitoring, I choose the best products. Every application, every NDR solution has its capabilities. It varies by client because I must advise clients on solutions they can use and benefit from. I sometimes advise clients about Vectra as it still serves my clients well. It's fair enough for now. The overall product rating is seven out of ten.
reviewer2238027
Efficient management with minimal manpower and reliable support
Reviewed on Nov 11, 2024
Review provided by PeerSpot
What is our primary use case?
As an end user, I do not have to commit manpower to manage Vectra since most of their use cases are managed by them. It's a hands-off kind of deployment.
How has it helped my organization?
The deployment is hands-off, which means it saves us manpower resources since Vectra manages the use cases.
What is most valuable?
Most of their use cases, including deployment, are managed by the tool itself, requiring less manual input from our team.
What needs improvement?
Neither Vectra nor Darktrace have a function like a status health check on my log sources and traffic sources.
For how long have I used the solution?
I have been working with Vectra for one or two years.
What do I think about the stability of the solution?
It's pretty good with no major issues.
How are customer service and support?
The support is quite reliable depending on the service engineer assigned. I would rate them between eight and nine.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We are also working with Darktrace .
How was the initial setup?
The setup is generally straightforward.
What's my experience with pricing, setup cost, and licensing?
Vectra is cheaper in terms of pricing and features compared to Darktrace.
Which other solutions did I evaluate?
Vectra was compared alongside Darktrace.
What other advice do I have?
Vectra serves its purpose well and does not require much manpower for updates.
I'd rate the solution eight out of ten.