Try our new research platform with insights from 80,000+ expert users

Azure DDoS Protection vs Microsoft Sentinel comparison

Azure DDoS Protection and Microsoft Sentinel are both solutions in the Microsoft Security Suite category. Azure DDoS Protection is ranked #19 with an average rating of 8.4, while Microsoft Sentinel is ranked #5 with an average rating of 8.4. Azure DDoS Protection holds a 2.1% mindshare in Microsoft Security Suite, compared to Microsoft Sentinel’s 5.6% mindshare. Additionally, 100% of Azure DDoS Protection users are willing to recommend the solution, compared to 93% of Microsoft Sentinel users who would recommend it.
Azure DDoS Protection
Read 7 Azure DDoS Protection reviews
  • 1,406 Views
  • 1,177 Comparison Views
100% willing to recommend
Microsoft Sentinel
Read 89 Microsoft Sentinel reviews
  • 6,039 Views
  • 3,506 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Azure DDoS Protection and Microsoft Sentinel based on real PeerSpot user reviews.

Find out in this report how the two Microsoft Security Suite solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Azure DDoS Protection vs. Microsoft Sentinel Report (Updated: October 2024).
Buyer's Guide
Azure DDoS Protection vs. Microsoft Sentinel
October 2024
Download the complete report
Helped 814,649 peers since 2012
 

Categories and Ranking

Azure DDoS Protection
Ranking in Microsoft Security Suite
19th
Average Rating
8.2
Number of Reviews
7
Ranking in other categories
Distributed Denial of Service (DDOS) Protection (7th)
Microsoft Sentinel
Ranking in Microsoft Security Suite
5th
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
89
Ranking in other categories
Security Information and Event Management (SIEM) (2nd), Security Orchestration Automation and Response (SOAR) (1st)
 

Mindshare comparison

As of November 2024, in the Microsoft Security Suite category, the mindshare of Azure DDoS Protection is 2.1%, up from 2.0% compared to the previous year. The mindshare of Microsoft Sentinel is 5.6%, down from 6.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Microsoft Security Suite
 

Featured Reviews

Venkat Raju Mallipudi - PeerSpot reviewer
Aug 20, 2024
Acts as an additional layer of protection, provides endpoint security but not very easy to configure
It's not very easy to configure, in my view. We have to do some work behind the scenes. It's not very simple. We have to do it very carefully, and we need to monitor this enablement as well. But apart from that, I didn't see any kind of challenges. So, in my opinion, configuration is the main trouble for them. It is something that can be done to be better. Not just configuration. You need an expert who knows the ins and outs of these security solutions. In my experience, people struggle with configuration. While configuring, we get this error, we get that error, and then we try to fix those issues. I have seen those. It's not straightforward.
Read full review
Nitin Arora - PeerSpot reviewer
Nov 2, 2022
Gives us one place to investigate and respond to threats, and automation eliminates manual work
They can work on the EDR side of things. It is already really superb, because of the kinds of features we get with the EDR solution. It's not a standard EDR and they have recently enhanced things. But the problem is with onboarding devices. I have different OS flavors, including a large number of Linux, Windows, macOS, and some on-prem machines as well. Every time we need to onboard these kinds of machines into the EDR, we need to do it with the help of Intune, to sync up the devices, and do the configuration. I'm looking for something on the EDR side that will reduce this kind of work. They can eliminate having to do manual configuration for the machines, and check the different types of configurations for each OS. In some cases, it does not support some OSs. If they could reduce this type of work, that would be really amazing.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Azure DDoS Protection offers superior protection against denial-of-service attacks."
"The most important feature is that the solution continuously monitors traffic by inbuilt rules to identify preconfigured attacks."
"I like the user interface, documentation, and support. Azure DDoS Protection is one of the most valuable solutions for any endpoint that is publicly reachable through the internet. It will automatically secure all your endpoints from third-party attacks, cyber attacks, or phishing attacks."
"This solution is the best option for us because we use a lot of Microsoft products. So, it is easy for us to deploy or integrate any features or products."
"AI capabilities are very good. I would rate them an eight out of ten."
"DDoS Protection is simple to deploy and integrates seamlessly with the Azure environment. Ease of deployment is a crucial feature for us."
"The most valuable feature of Azure DDoS Protection is that it performs well."
"Sentinel improved how we investigate incidents. We can create watchlists and update them to align with the latest threat intelligence. The information Microsoft provides enables us to understand thoroughly and improve as we go along. It allows us to provide monthly reports to our clients on their security posture."
"Sentinel's most important feature is the ability to centralize all the logs in one place. There's no need to search multiple systems for information."
"Having your logs put all in one place with machine learning working on those logs is a good feature. I don't need to start thinking, "Where are my logs?" My logs are in a centralized repository, like Log Analytics, which is why you can't use Sentinel without Log Analytics. Having all those logs in one place is an advantage."
"It's easy to use. It's a very good product. It can easily ingest data from anywhere. It has an easily understandable language to perform actions."
"Sentinel uses Azure Logic Apps for automation, which is really powerful. This allows us to easily automate responses to incidents."
"The log query feature has been the most valuable because it's very good. You can put your data on the cloud and run queues from Sentinel. It will do it all very fast. I love that I don't have to upload it to an Excel file and then manually look for a piece of information. Sentinel is much faster and is good for big databases."
"The UI of Sentinel is very good and easy to use, even for beginners."
"There are a lot of things you can explore as a user. You can even go and actively hunt for threats. You can go on the offensive rather than on the defensive."
More Microsoft Sentinel pros
 

Cons

"It's not very easy to configure, in my view."
"The implementation of Azure DDoS Protection results in a decrease in our bandwidth capacity and should be optimized to reduce resource consumption."
"The UI needs to be improved."
"The reporting aspect and dashboard management monitoring need improvement."
"Sometimes, it is hard for our staff to keep track of changes (in the GUI) between different projects, because there are constant changes. As a result, it is hard to manage, recall, and see all the features because they have been moved from one place to another."
"Azure DDoS Protection could improve on the reporting."
"The visibility could be better. We would like to have better metrics, so we could see all the information in a central place."
"Sentinel provides decent visibility, but it's sometimes a little cumbersome to get to the information I want because there is so much information. I would also like to see more seamless integration between Sentinel and third-party security products."
"If Sentinel had a graphical user interface, it would be easier to use. I would also like it to be more customizable."
"It could have a better API to be able to automate many things more extensively and get more extensive data and more expensive deployment possibilities. It can gain some points on the automation part and the integration part. The API is very limited, and I would like to see it extended a bit more."
"They should just add more and more out-of-the-box connectors. It is quite a new product, and it has a lot of connectors, and even more would be good."
"Microsoft should improve Sentinel, considering that from the legacy systems, it cannot collect logs."
"The following would be a challenge for any product in the market, but we have some in-house apps in our environment... our apps were built with different parameters and the APIs for them are not present in Sentinel. We are working with Microsoft to build those custom APIs that we require. That is currently in progress."
"They need to work with other security vendors. For example, we replaced our email gateway with Symantec, but we couldn't collect these logs with Azure Sentinel. Instead of collecting these logs with Azure Sentinel, we are collecting them on Qradar. We couldn't do it with Sentinel, which is a problem for us."
"When it comes to ingesting Azure native log sources, some of the log sources are specific to the subscription, and it is not always very clear."
More Microsoft Sentinel cons
 

Pricing and Cost Advice

"It is an expensive solution."
"The pricing is quite high. It is a monthly subscription that costs about $2,000 per month, depending on the user sizes."
"You can test it for a certain period of time free of charge. You can have a free account. You can test it to compare its pros and cons with other products that you are testing."
"The pricing is good but is not the best. It could be improved so that middle-sized organizations, such as startups, can benefit from it."
"It varies on a case-by-case basis. It is about $2,000 per month. The cost is very low in comparison to other SIEMs if you are already a Microsoft customer. If you are using the complete Microsoft stack, the cost reduces by almost 42% to 50%. Its cost depends on the number of logs and the type of subscription you have. You need to have an Azure subscription, and there are charges for log ingestion, and there are charges for the connectors."
"Sentinel is a pay-as-you-go solution. To use it, you need a Log Analytics workspace. This is where the logs are stored and the cost of Log Analytics is based on gigabytes... On top of that, there is the cost of Sentinel, which is about €2 per gigabyte. If a customer has an M365 E5 license, the logs that come from Microsoft Defender are free."
"There are no additional costs other than the initial costs of Sentinel."
"From a cost perspective, Microsoft Sentinel is quite costly."
"I have worked with a lot of SIEMs. We are using Sentinel three to four times more than other SIEMs that we have used. Azure Sentinel's only limitation is its price point. Sentinel costs a lot if your ingestion goes up to a certain point."
"I am not involved on the financial side, but from an enterprise-wide use perspective, I think the price is good enough."
"Some of the licensing models can be a little bit difficult to understand and confusing at times, but overall it's a reasonable licensing model compared to some other SIEMs that charge you a lot per data."
"It's costly to maintain and renew."
More Microsoft Sentinel pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Microsoft Security Suite solutions are best for your needs.
See recommendations
814,649 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
12%
Government
8%
Insurance Company
7%
Computer Software Company
16%
Financial Services Firm
10%
Government
8%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Azure DDoS Protection?
Azure DDoS Protection offers superior protection against denial-of-service attacks.
See all answers
What is your experience regarding pricing and costs for Azure DDoS Protection?
It is an expensive solution. I would rate the pricing a seven out of ten, where one is a cheap solution and ten is an expensive one.
See all answers
What needs improvement with Azure DDoS Protection?
It's not very easy to configure, in my view. We have to do some work behind the scenes. It's not very simple. We have to do it very carefully, and we need to monitor this enablement as well. But ap...
See all answers
Is there a common threat intelligence tool that aggregates multiple threat intelligence sources?
Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel and its Threat Hunting functionality with AI available as templates or customized ...
See all answers
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
See all answers
Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
 

Comparisons

AWS Shield vs Azure DDoS Protection Logo
AWS Shield vs Azure DDoS Protection
Compared 23% of the time
Cloudflare vs Azure DDoS Protection Logo
Cloudflare vs Azure DDoS Protection
Compared 13% of the time
Azure Firewall vs Azure DDoS Protection Logo
Azure Firewall vs Azure DDoS Protection
Compared 13% of the time
Azure Front Door vs Azure DDoS Protection Logo
Azure Front Door vs Azure DDoS Protection
Compared 12% of the time
Microsoft Defender for Cloud vs Azure DDoS Protection Logo
Microsoft Defender for Cloud vs Azure DDoS Protection
Compared 8% of the time
More Azure DDoS Protection Competitors
AWS Security Hub vs Microsoft Sentinel Logo
AWS Security Hub vs Microsoft Sentinel
Compared 20% of the time
IBM Security QRadar vs Microsoft Sentinel Logo
IBM Security QRadar vs Microsoft Sentinel
Compared 10% of the time
Cortex XSIAM vs Microsoft Sentinel Logo
Cortex XSIAM vs Microsoft Sentinel
Compared 7% of the time
Wazuh vs Microsoft Sentinel Logo
Wazuh vs Microsoft Sentinel
Compared 6% of the time
Google Chronicle Suite vs Microsoft Sentinel Logo
Google Chronicle Suite vs Microsoft Sentinel
Compared 5% of the time
More Microsoft Sentinel Competitors
 

Product Reports

Buyer's Guide
Azure DDoS Protection
November 2024
Azure DDoS Protection reportDownload Azure DDoS Protection product report
Buyer's Guide
Microsoft Sentinel
October 2024
Microsoft Sentinel reportDownload Microsoft Sentinel product report
 

Also Known As

No data available
Azure Sentinel
 

Learn More

Microsoft
Microsoft
 

Overview

Azure DDoS Protection, combined with application design best practices, provides defense against DDoS attacks.

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

- Respond to incidents rapidly with built-in orchestration and automation of common tasks

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

 

Sample Customers

Information Not Available
Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.
Buyer's Guide
Azure DDoS Protection vs. Microsoft Sentinel
October 2024
Free Report: Azure DDoS Protection vs. Microsoft Sentinel
Find out what your peers are saying about Azure DDoS Protection vs. Microsoft Sentinel and other solutions. Updated: October 2024.
DOWNLOAD NOW
814,649 professionals have used our research since 2012.
See our Azure DDoS Protection vs. Microsoft Sentinel report.
See our list of best Microsoft Security Suite vendors.

We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.