We performed a comparison between Splunk Cloud Platform and Wazuh based on real PeerSpot user reviews.
Find out in this report how the two Data Visualization solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Its monitoring is completely automated."
"Everything is maintained by the Splunk support team. Users do not have to maintain any physical servers. They do not have to maintain indexes and searches. It reduces a lot of work on the user side."
"We haven't had any limitations or problems connecting to our network devices."
"It has end-to-end visibility into our cloud-native environment, which is pretty important for us. About 80% of our infrastructure is on AWS."
"I can trace an event back to its root cause. I can find the root cause instead of just looking at the symptoms across different things."
"This is a complete log reporting tool."
"Splunk Cloud Platform's most valuable features are enterprise security and ticketing integration."
"The ability to correlate data and then present it in a meaningful and valuable way is crucial."
"Its cost-effectiveness is the most valuable aspect."
"The log monitoring and analysis tools are great in addition to SIEM file activity monitoring."
"Wazuh's best features are syscheck, its ability to immediately resolve vulnerabilities, and that it's open source."
"It has efficient SCA capabilities."
"We use it to find any aberration in our endpoint devices. For example, if someone installs a game on their company laptop, Wazuh will detect it and inform us of the unauthorized software or unintended use of the devices provided by the company."
"Some of the strengths of Wazuh that stand out for us include its scalability when deployed on Azure, its open-source nature, which allows for customization based on our needs, and its compatibility with various security solutions like threat intelligence platforms."
"Wazuh's most beneficial features for our security needs are flexibility, built-in rules, integration capabilities, and documentation."
"Wazuh offers an enhanced HDR version that outperforms its competitors."
"From an enterprise standpoint, we are more limited in terms of what data we can export and how we can present it."
"The on-premises version of Splunk includes all the integrations, while the Cloud platform lacks certain integrations and is limited in terms of the number of supported apps."
"Although there is documentation available, it is really hard for me to find relevant topics on what it is that I'm searching for."
"The only thing I would say is an issue is the cost. It matches other products. The costs can be justified for the value that we gain. The entire threat analysis stack should come in a bundle. If the cost was matchable with other products I think Splunk would pick up in the market."
"They can streamline the process of creating custom apps."
"Its stability and performance can be better. Very rarely does a day go by when we do not see an error in the console, such as a health check error. Because it is cloud-hosted, we do not have access to the backend to figure it out ourselves. We are reliant on their support to figure it out, and a couple of days later, the error comes back or it is a different error. It is a never-ending cycle of support tickets. Their support is also not great."
"In the case of knowledge objects, even a Splunk admin does not have access to delete them. If we want to remove a knowledge object, we need to contact Splunk support and raise a case. After that, they delete it. They should give us access to delete knowledge objects."
"The only thing that is missing from Splunk Cloud is the command-line interface."
"Wazuh has a drawback with regard to Unix systems. The solution does not allow us to do real-time monitoring for Unix systems. If usage increases, it would be a heavy fall on the other SIEM solutions or event monitoring solutions."
"The support team could be more responsive and provide quicker replies during our working hours in Indonesia, which would be a significant improvement."
"Wazuh could improve the detection, it is not detecting all of the attacks. Additionally, it is lacking features compared to other solutions."
"I think that the next release should be more suitable for large enterprises, because currently they are not because large companies do not rely on open source solutions."
"The implementation is very complex."
"Its user interface for sure can be improved. It is not so comfortable to use if you're looking for specific logs."
"A lack of certain features creates limitations."
"Log data analysis could be improved. My IT team has been looking for an alternative because they want better log data for malware detection. We are also doing more container implementation also, so we need better container security, log data analysis, auditing and compliance, malware detection, etc."
Splunk Cloud Platform is ranked 3rd in Data Visualization with 36 reviews while Wazuh is ranked 2nd in Log Management with 38 reviews. Splunk Cloud Platform is rated 8.0, while Wazuh is rated 7.4. The top reviewer of Splunk Cloud Platform writes "Does not require backend maintenance, is easily integrated and utilized". On the other hand, the top reviewer of Wazuh writes "It integrates seamlessly with AWS cloud-native services". Splunk Cloud Platform is most compared with Splunk Enterprise Security, Fortinet FortiAnalyzer, AppInsights, Check Point Security Management and Panther, whereas Wazuh is most compared with Elastic Security, Security Onion, AlienVault OSSIM, Splunk Enterprise Security and Graylog. See our Splunk Cloud Platform vs. Wazuh report.
We monitor all Data Visualization reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.