• Home
  • Elastic Security vs. Security Onion

Elastic Security vs Security Onion comparison

Cancel
You must select at least 2 products to compare!
Elastic Logo
Elastic Security
Read 59 Elastic Security reviews
15,437 views|12,779 comparisons
86% willing to recommend
Security Onion Solutions, LLC Logo
Security Onion
Read 3 Security Onion reviews
3,263 views|2,753 comparisons
66% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Elastic Security vs. Security Onion
April 2024
Executive Summary

We performed a comparison between Elastic Security and Security Onion based on real PeerSpot user reviews.

Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Elastic Security vs. Security Onion Report (Updated: April 2024).
Download the complete report
772,649 professionals have used our research since 2012.
Featured Review
Haroon Khand
Enables users to know about the downtime and the errors in the code
There are many benefits. It provides log monitoring, synthetic monitoring, real user monitoring, and application performance monitoring. These are... Read more →
Jörg Kippe
A mature and affordable solution that is easy to install and easy to update
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Its flexibility is most valuable. We can have a number of scenarios, and we can get logs from anything. If we know how to use Logstash, we can tweak it in many ways. This makes the logging search on Elastic very easy.""The solution has a good community surrounding it for lots of helpful documentation for troubleshooting purposes.""The most valuable feature is the search function, which allows me to go directly to the target to see the specific line a customer is searching for.""It is an extremely stable solution. Stability-wise, I rate the solution a ten out of ten.""ELK Logstash is easy and fast, at least for the initial setup with the out of box uses.""Elastic Security is a highly flexible platform that can be implemented anywhere.""The visualization is very good.""The most valuable thing is that this solution is widely used for work management and research. It's easy to jump into the security use case with the same technology."

More Elastic Security Pros →

"We use Security Onion for internal vulnerability assessment.""The most valuable feature of Security Onion for security monitoring is its ability to find infected ports.""Security Onion is the most mature solution in the market."

More Security Onion Pros →

Cons
"Elastic Security can be a bit difficult to use if a person only has experience in SMBs with tools like Zoho. The product can also be difficult for those who have never dealt with query language.""Elastic Security has a steep learning curve, so it takes some time to tune it and set it up for your environment. There are some costs associated with logging things that don't have value. So you need to be cautious to only log things that make sense and keep them around for as long as you need. You shouldn't hold onto things just because you think you might need them.""If the documentation were improved and made more clear for beginners, or even professionals, then we would be more attracted to this solution.""The solution's query building is not that intuitive compared to other solutions.""Elastic has one problem. In the past, Elastic Security was free. Now, they currently only offer the basic license or a certain period of time.""If you compare this with CrowdStrike or Carbon Black, they can improve.""Improvements in Elastic Security could include refining and normalizing queries to make them more user-friendly, enhancing the user experience with better documentation, and addressing any latency issues.""We're using the open-source edition, for now, I think maybe they can allow their OLED plugin to be open source, as at the moment it is commercialised."

More Elastic Security Cons →

"Security Onion's user interface could be improved.""The initial setup of the solution is a little bit difficult.""The product is not easy to learn."

More Security Onion Cons →

Pricing and Cost Advice
  • "We use the open-source version, so there is no charge for this solution."
  • "We are using the free, open-source version of this solution."
  • "Elastic Stack is an open-source tool. You don't have to pay anything for the components."
  • "There is no charge for using the open-source version."
  • "This is an open-source product, so there are no costs."
  • "It's a monthly cost with Elastic SIEM, but I am not sure of the exact cost."
  • "It is easy to deploy, easy to use, and you get everything you need to become operational with it, and have nothing further to pay unless you want the OLED plugin."
  • "Compared to other products such as Dynatrace, this is one of the cheaper options."

    • More Elastic Security Pricing and Cost Advice →

  • "Security Onion is a free solution."
  • "It is an open-source solution."
  • "Security Onion is an open-source solution."

    • More Security Onion Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Log Management solutions are best for your needs.
    See Recommendations
    772,649 professionals have used our research since 2012.
    Questions from the Community
    Datadog vs ELK: which one is good in terms of performance, cost and effic...
    Top Answer:With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good core… more »
    Read all 7 answers   →
    What do you like most about Elastic Security?
    Top Answer:Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because of… more »
    Read all 27 answers   →
    What is your experience regarding pricing and costs for Elastic Security?
    Top Answer:Elastic Security is open-source. Unlike many older solutions where you must pay for data ingestion, Elastic allows you to ingest data freely. Being open source, you can set up a Kafka front door layer… more »
    Read all 19 answers   →
    What do you like most about Security Onion?
    Top Answer:The most valuable feature of Security Onion for security monitoring is its ability to find infected ports.
    Read all 3 answers   →
    What is your experience regarding pricing and costs for Security Onion?
    Top Answer:Security Onion is an open-source solution. On a scale from one to ten, where ten is expensive and one is cheap, I rate the solution's pricing a six out of ten.
    Read all 3 answers   →
    What needs improvement with Security Onion?
    Top Answer:The initial setup of the solution is a little bit difficult.
    Read all 3 answers   →
    Ranking
    5th
    out of 95 in Log Management
    Views
    15,437
    Comparisons
    12,779
    Reviews
    25
    Average Words per Review
    488
    Rating
    7.7
    33rd
    out of 95 in Log Management
    Views
    3,263
    Comparisons
    2,753
    Reviews
    3
    Average Words per Review
    330
    Rating
    7.7
    Comparisons
    Also Known As
    Elastic SIEM, ELK Logstash
    Learn More
    Elastic
    Security Onion Solutions, LLC
    Overview
    Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.


    Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

    Additional offerings and benefits:

    • The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
    • It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
    • With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

    Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

    Security Onion is a free and open Linux distribution for threat hunting, enterprise security monitoring, and log management. The easy-to-use Setup wizard allows you to build an army of distributed sensors for your enterprise in minutes!
    Security Onion includes a native web interface with built-in tools analysts use to respond to alerts, hunt for evil, catalog evidence into cases, monitor grid performance, and much more. Additionally, third-party tools, such as Elasticsearch, Logstash, Kibana, Suricata, Zeek (formerly known as Bro), Wazuh, Stenographer, CyberChef, NetworkMiner, and many more are included.

    Sample Customers
    Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care
    Information Not Available
    Top Industries
    REVIEWERS
    Financial Services Firm29%
    Computer Software Company25%
    Healthcare Company13%
    Comms Service Provider8%
    VISITORS READING REVIEWS
    Computer Software Company17%
    Financial Services Firm10%
    Government9%
    Comms Service Provider7%
    VISITORS READING REVIEWS
    Computer Software Company12%
    Government11%
    University10%
    Comms Service Provider10%
    Company Size
    REVIEWERS
    Small Business59%
    Midsize Enterprise19%
    Large Enterprise22%
    VISITORS READING REVIEWS
    Small Business26%
    Midsize Enterprise18%
    Large Enterprise56%
    VISITORS READING REVIEWS
    Small Business28%
    Midsize Enterprise19%
    Large Enterprise53%
    Buyer's Guide
    Elastic Security vs. Security Onion
    April 2024
    Free Report: Elastic Security vs. Security Onion
    Find out what your peers are saying about Elastic Security vs. Security Onion and other solutions. Updated: April 2024.
    DOWNLOAD NOW
    772,649 professionals have used our research since 2012.

    Elastic Security is ranked 5th in Log Management with 59 reviews while Security Onion is ranked 33rd in Log Management with 3 reviews. Elastic Security is rated 7.6, while Security Onion is rated 7.6. The top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". On the other hand, the top reviewer of Security Onion writes "A mature and affordable solution that is easy to install and easy to update". Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, IBM Security QRadar and Microsoft Defender for Endpoint, whereas Security Onion is most compared with Wazuh, Elastic Stack, TheHive, Splunk Enterprise Security and Grafana Loki. See our Elastic Security vs. Security Onion report.

    See our list of best Log Management vendors.

    We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.