We compared Fortinet FortiAnalyzer vs Wazuh based on our users’ reviews in four categories. After reading the collected data, you can find our conclusion below.
Comparison of Results: Based on the parameters we compared, Wazuh seems to be the superior solution. Our reviewers feel that because Fortinet FortiAnalyzer’s integration capabilities are limited, its price is expensive, and there is a question about how effective its technical support is, Wazuh is a better investment.
"One of the greatest advantages of Fortinet FortiAnalyzer is its ability to integrate with a variety of software and solutions, providing comprehensive visibility into the network. The solution's strength lies in its capability to work with Fortinet's own products, such as the FortiAP access point, which allows for deep monitoring, automation, correlation, and incident management. However, this functionality is not present when utilizing other products, such as those from Cisco, limiting the visibility and benefits that can be gained."
"Our use case for Fortinet FortiAnalyzer is analyzing traffic. We use it to investigate complaints about account access, check if something is blocked or working, and understand what's happening inside them."
"The most valuable features of Fortinet FortiAnalyzer are the GUI and there is automation that can be done with playbooks and mini-books."
"Overall we are satisfied with all the features the solution provides."
"The most valuable feature of Fortinet FortiAnalyzer is its performance."
"The program is stable and it gives me great visibility."
"Log View is the most valuable part for us, as we can view logs from different Fortigates on a single GUI."
"It is very stable and reliable."
"Wazuh automatically scans the host for CIS benchmarks for the latest updates and vulnerabilities and gives a host score. It provides a percentage of perceived risk due to of non patches or any missing patches on that work."
"The tool is stable."
"Wazuh offers numerous features, such as the ability to define custom rules for detecting malicious activities and remembering behaviors."
"The log monitoring and analysis tools are great in addition to SIEM file activity monitoring."
"The product’s interface is intuitive."
"It is excellent in terms of visualization and indexing services, making it a powerful tool for malware detection."
"Wazuh's most beneficial features for our security needs are flexibility, built-in rules, integration capabilities, and documentation."
"My company implemented Wazuh because it was relatively inexpensive. They could quickly get their hands on it to check a box for some audit and compliance."
"When it comes to pushing logs to a SIEM, most of the time we have some issues when it comes to filtering."
"The solution does not function well with third-party tools"
"It would be good if the product could provide data about the websites users visit."
"The solution is expensive."
"It is very important that FAZ can support FortiController as the architecture designed for the network. FortiController should be registered in FAZ at least for event logs."
"It will be better if behavior or indicators of compromise were on the same licensing schema. Currently, it is an advanced feature that you have to purchase as an add-on. This is the reason we're trying to do the ELK so that we can integrate them and create those rules by using open-source software. It will also be better if it has some more integration with IT service management tools so that we can do endpoint protection and response based on those indicators of compromise or those behavior analysis rules that create events that can automatically flow. We can inject that data into a service incident ticket on our IT service management tool, and that way we can assign the ticket to the proper teams and respond right away. Currently, we only have integration with ServiceNow."
"The solution could improve by allowing the ability to search logs in integrated solutions."
"If Fortinet could introduce some firewalling or maybe FortiAnalyzer on the cloud, that would be interesting because I've never seen it on a cloud."
"One area where Wazuh could use some improvement is in its reporting mechanism, especially for high-level management like CSOs and CEOs."
"I think that the next release should be more suitable for large enterprises, because currently they are not because large companies do not rely on open source solutions."
"Wazuh has a drawback with regard to Unix systems. The solution does not allow us to do real-time monitoring for Unix systems. If usage increases, it would be a heavy fall on the other SIEM solutions or event monitoring solutions."
"I have yet to find the same capability in Wazuh to get logs from different sources into the system"
"Wazuh could improve the detection, it is not detecting all of the attacks. Additionally, it is lacking features compared to other solutions."
"We would like to see more improvements on the cloud."
"The computing resources are consuming and do not make sense."
"They need to go towards integrating with more cloud applications and not just OS like Windows and Linux."
Fortinet FortiAnalyzer is ranked 7th in Log Management with 87 reviews while Wazuh is ranked 2nd in Log Management with 38 reviews. Fortinet FortiAnalyzer is rated 8.0, while Wazuh is rated 7.4. The top reviewer of Fortinet FortiAnalyzer writes "We can automate event-based handling solutions, is stable, and is great for heavy traffic". On the other hand, the top reviewer of Wazuh writes "It integrates seamlessly with AWS cloud-native services". Fortinet FortiAnalyzer is most compared with Splunk Enterprise Security, Grafana Loki, Graylog, Datadog and ManageEngine EventLog Analyzer, whereas Wazuh is most compared with Elastic Security, Security Onion, AlienVault OSSIM, Splunk Enterprise Security and Microsoft Defender for Cloud. See our Fortinet FortiAnalyzer vs. Wazuh report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.