Try our new research platform with insights from 80,000+ expert users

Elastic Security vs Graylog comparison

Elastic and Graylog are both solutions in the Log Management category. Elastic is ranked #5 with an average rating of 7.7, while Graylog is ranked #18 with an average rating of 6.5. Elastic holds a 4.8% mindshare in LM, compared to Graylog’s 6.5% mindshare. Additionally, 85% of Elastic users are willing to recommend the solution, compared to 94% of Graylog users who would recommend it.
Elastic Security
Read 62 Elastic Security reviews
  • 10,239 Views
  • 8,567 Comparison Views
85% willing to recommend
Graylog
Read 18 Graylog reviews
  • 9,501 Views
  • 8,322 Comparison Views
94% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 8, 2024

Graylog and Elastic Security are popular solutions in log management and security analytics. Graylog offers a competitive edge in cost and customer support, while Elastic Security stands out with its comprehensive feature set, justifying its higher price.

Features: Graylog is known for straightforward log processing, simplicity in alert configuration, and ease of integration. Elastic Security is recognized for robust analytics, extensive integrations, and advanced threat detection capabilities.

Room for Improvement: Graylog users desire enhancements in scalability and handling large logs. Elastic Security users point to configuration complexity and a steep learning curve.

Ease of Deployment and Customer Service: Deploying Graylog is considered straightforward, with responsive customer support. Elastic Security deployment is more involved but supported well by its team.

Pricing and ROI: Graylog's cost-effective pricing appeals for affordability and quick ROI. Elastic Security has higher initial costs but offers substantial ROI through its comprehensive features.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Elastic Security vs. Graylog Report (Updated: December 2024).
Buyer's Guide
Elastic Security vs. Graylog
December 2024
Download the complete report
Helped 824,053 peers since 2012
 

Categories and Ranking

Elastic Security
Ranking in Log Management
5th
Average Rating
7.6
Reviews Sentiment
6.7
Number of Reviews
62
Ranking in other categories
Security Information and Event Management (SIEM) (5th), Endpoint Detection and Response (EDR) (16th), Security Orchestration Automation and Response (SOAR) (6th), Extended Detection and Response (XDR) (8th)
Graylog
Ranking in Log Management
18th
Average Rating
8.0
Reviews Sentiment
7.0
Number of Reviews
18
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of December 2024, in the Log Management category, the mindshare of Elastic Security is 4.8%, down from 7.7% compared to the previous year. The mindshare of Graylog is 6.5%, up from 5.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

Gajewski Marek - PeerSpot reviewer
Provides good anomaly detection and connectivity reporting
We previously used Splunk but switched to Elastic Security because Splunk was more expensive. Feature-wise, both tools are pretty much the same. They have almost the same functions. Elastic Security has a much better AI assistant that allows you to ask questions like a normal person. With Elastic Security, I can also predict the price and how much it will cost. Splunks's pricing depends on how much data we use and the different add-ons I have to add. The pricing is much better with Elastic Security.
Read full review
Nicolae CIornii - PeerSpot reviewer
Stable solution with room for improvement in interactivity and user-friendliness
We have tested IBM QRadar and now use it. First of all, the key factor is the pricing. I saw that IBM QRadar has an interactive dashboard, providing valuable insights to people. Additionally, I've seen that IBM QRadar has an agent that simplifies installations across various platforms without requiring intricate configurations. Also, IBM QRadar has automatic reporting.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It's open-source and free to use."
"The feature that we have found the most valuable is scalability."
"It's simple and easy to use."
"Elastic Security makes data communication easier."
"Elastic Security is cost-effective compared to Defender and CrowdStrike."
"The solution is quite stable. The performance has been good."
"Elastic Security is a highly flexible platform that can be implemented anywhere."
"The most valuable feature is the speed, as it responds in a very short time."
More Elastic Security pros
"We run a containerized microservices environment. Being able to set up streams and search for errors and anomalies across hundreds of containers is why a log aggregation platform like Graylog is valuable to us."
"Storing logs in Elasticsearch means log retrieval is extremely fast, and full text search is available by default."
"The build is stable and requires little maintenance, even compared to some extremely expensive products."
"Message forwarding through the in-built module."
"Allowing us to set up alerts and integrate with platforms we already use, such as Slack and OpsGenie to alert users of these errors proactively, is also a very useful feature."
"UDP is a fast and lightweight protocol, perfect for sending large volumes of logs with minimal overhead."
"Graylog's search functionality, alerting functionality, user management, and dashboards are useful."
"We have scaled from a single machine installation (a VM with a Graylog + ES + MongoDB) to (2 Graylog + 2 ES + 3 MongoDB). This was done smoothly with a minimal impact on logging."
More Graylog pros
 

Cons

"The solution should generate an automatic product that integrates with ELK Stack to use artificial intelligence."
"There should be a simulation environment to check whether my Elastic implementation is functioning perfectly fine. Other solutions have their own Android and iOS applications that I can install on my mobile so that I am continuously connected to the SIEM."
"The solution's basic setup takes time, and a lot of effort is required from the beginning to make it actually work."
"We had issues with scalability. Logstash was not scaling and aggregation was getting delayed. We moved to Fluentd making our stack from ELK to EFK."
"Upgrades currently released as stacks when it should be a plugin or an extension to save removal and reinstallation."
"It would be better if Elastic Security had less storage for data. My customers do not like this. Other vendors have local support in different countries, but Elastic Security doesn't. I would like to have Operational Technology (OT) security in the next release."
"There is room for improvement in the Kibana dashboard and in the asset management for the program."
"The tool needs to integrate with legacy servers. Big companies can have legacy servers that may not always be updated."
More Elastic Security cons
"Graylog can improve the index rotation as it's quite a complex solution."
"I would like to see a default dashboard widget that shows the topology of the clusters defined for the graylog install."
"It would be great if Graylog could provide a better Python package in order to make it easier to use for the Python community."
"I would like to see a date and time in the Graylog Grok patterns so that I can save time when searching for a log. I like how the streams and the search query work, but adding a date and time will allow me to pull out a log in a milli-second."
"The infrastructure cost is the main issue. I like the rest. If the infrastructure costs could be lower, it would be fantastic."
"Lacks sufficient documentation."
"Its scalability gets complicated when we have to update or edit multiple nodes."
"More customization is always useful."
More Graylog cons
 

Pricing and Cost Advice

"Elastic Security is free to use."
"Affordable but with additional costs"
"The pricing is in the middle. I think it is not an expensive experience if we compare it with big names, for example, QRadar, and also Oxide. I think Elastic Security is quite cheap. I would rate the pricing of this solution a five out of ten."
"This is an open-source product, so there are no costs."
"Its price is fine. Its licensing works on a yearly basis. We have to renew the license every year. I also have a good experience with Darktrace. When we buy Darktrace, we get training free of cost, which is not there in Elastic. We have to pay extra for training. There is certainly room for improvement."
"We use the open-source version, so there is no charge for this solution."
"The tool's pricing is flexible and comes at unit cost. You don't have to pay for everything."
"The solution is free."
More Elastic Security pricing and cost advice
"We are using the free version of the product. However, the paid version is expensive."
"It's open source and free. They have a paid version, but we never looked into that because we never needed the features of the paid version."
"If you want something that works and do not have the money for Splunk or QRadar, take Graylog.​​"
"Having paid official support is wise for projects."
"I use the free version of Graylog."
"Graylog is a free open-source solution. The free version has a capacity limitation of 2 GB daily, if you want to go above this you have to purchase a license."
"It's an open-source solution that can be used free of charge."
"We're using the Community edition."
More Graylog pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
See recommendations
824,053 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
10%
Government
10%
University
7%
Computer Software Company
17%
Comms Service Provider
9%
Government
8%
Educational Organization
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Datadog vs ELK: which one is good in terms of performance, cost and efficiency?
With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...
See all answers
What do you like most about Elastic Security?
Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...
See all answers
What is your experience regarding pricing and costs for Elastic Security?
Elastic Security is cost-effective compared to Defender and CrowdStrike. The pricing is reasonable, especially for Small Medium Enterprises (SMEs), making it a viable option for businesses building...
See all answers
What do you like most about Graylog?
The product is scalable. The solution is stable.
See all answers
What is your experience regarding pricing and costs for Graylog?
We are using the free version of the product. However, the paid version is expensive.
See all answers
What needs improvement with Graylog?
Since it's a free tool, I don't have much to say. Troubleshooting is important to me. The initial setup is complex. I hope to see improvements in Graylog for more interactivity, user-friendliness, ...
See all answers
 

Comparisons

Wazuh vs Elastic Security Logo
Wazuh vs Elastic Security
Compared 31% of the time
CrowdStrike Falcon vs Elastic Security Logo
CrowdStrike Falcon vs Elastic Security
Compared 8% of the time
IBM Security QRadar vs Elastic Security Logo
IBM Security QRadar vs Elastic Security
Compared 7% of the time
Microsoft Sentinel vs Elastic Security Logo
Microsoft Sentinel vs Elastic Security
Compared 6% of the time
Security Onion vs Elastic Security Logo
Security Onion vs Elastic Security
Compared 1% of the time
More Elastic Security Competitors
Grafana Loki vs Graylog Logo
Grafana Loki vs Graylog
Compared 44% of the time
Wazuh vs Graylog Logo
Wazuh vs Graylog
Compared 21% of the time
syslog-ng vs Graylog Logo
syslog-ng vs Graylog
Compared 10% of the time
Security Onion vs Graylog Logo
Security Onion vs Graylog
Compared 4% of the time
VMware Aria Operations for Logs vs Graylog Logo
VMware Aria Operations for Logs vs Graylog
Compared 1% of the time
More Graylog Competitors
 

Product Reports

Buyer's Guide
Elastic Security
December 2024
Elastic Security reportDownload Elastic Security product report
Buyer's Guide
Graylog
December 2024
Graylog reportDownload Graylog product report
 

Also Known As

Elastic SIEM, ELK Logstash
Graylog2
 

Learn More

Elastic
Graylog
 

Overview

Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.


Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

Additional offerings and benefits:

  • The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
  • It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
  • With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

Graylog is purpose-built to deliver the best log collection, storage, enrichment, and analysis. Graylog is:

  • Considerably faster analysis speeds.
  • More robust and easier-to-use analysis platform.
  • Simpler administration and infrastructure management.
  • Lower cost than alternatives.
  • Full-scale customer service.
  • No expensive training or tool experts required.
 

Sample Customers

Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care
Blue Cross Blue Shield, eBay, Cisco, LinkedIn, SAP, King.com, Twilio, Deutsche Presse-Agentur
Buyer's Guide
Elastic Security vs. Graylog
December 2024
Free Report: Elastic Security vs. Graylog
Find out what your peers are saying about Elastic Security vs. Graylog and other solutions. Updated: December 2024.
DOWNLOAD NOW
824,053 professionals have used our research since 2012.
See our Elastic Security vs. Graylog report.
See our list of best Log Management vendors.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.