Try our new research platform with insights from 80,000+ expert users

Elastic Security vs Wazuh comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jun 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
5.5
Elastic Security often delivers positive ROI within two years, though user satisfaction and views on cost-effectiveness vary.
Sentiment score
3.5
Wazuh offers rapid detection and response, reducing costs and ensuring high ROI for small to medium businesses without security compromises.
 

Customer Service

Sentiment score
6.3
Elastic Security feedback is mixed; users praise community support, yet criticize inconsistent technical support and seek faster solutions.
Sentiment score
4.3
Wazuh's support is praised, but response times vary; satisfaction ranges from 7 to 9 out of 10.
Providing necessary assistance efficiently.
There is no dedicated technical support for Wazuh as it is open source.
The documentation is good and provides clear instructions, though it's targeted at those with technical backgrounds.
We use the open-source version of Wazuh, which does not provide paid support.
 

Scalability Issues

Sentiment score
7.3
Elastic Security is scalable and adaptable, suitable for diverse business needs, though skilled personnel are important for effective management.
Sentiment score
7.4
Wazuh is scalable and adaptable but requires technical expertise for setup and may struggle with massive data handling.
It can accommodate thousands of endpoints on one instance, and multiple instances can run for different clients.
Scalability depends on the configuration and the infrastructure resources like compute and memory we allocate.
 

Stability Issues

Sentiment score
7.6
Elastic Security is stable and reliable, though challenges arise with big data and real-time usage without proper configuration.
Sentiment score
7.0
Wazuh is generally stable and reliable for small to mid-level businesses, though updates and configuration errors can cause issues.
In terms of stability, I would rate Elastic a solid eight out of ten.
The stability of Wazuh is largely dependent on maintenance.
The stability of Wazuh is strong, with no issues stemming from the solution itself.
 

Room For Improvement

Elastic Security faces challenges in setup, AI integration, permissions management, user support, and requires improved dashboards and cost-efficiency.
Wazuh needs scalability, user interface improvements, better AI, cloud integration, Unix support, and efficient threat detection features.
CrowdStrike and Defender have more established threat intelligence integration due to having a larger client base.
Elastic Security consumes a lot of resources, requiring a substantial deployment setup.
The integration modules are insufficiently developed, necessitating the creation of custom integration solutions using tools like Logstash and PubSub.
There is room for improvement by integrating more AI into Wazuh.
An issue I noticed is with tag values in certain rules not functioning properly.
 

Setup Cost

Elastic Security offers a free open-source option with enterprise features based on usage, making it cost-effective for enterprises.
Wazuh provides cost-effective, open-source security with free software but may incur costs for support, storage, and Wazuh Cloud enhancements.
The pricing is reasonable, especially for Small Medium Enterprises (SMEs), making it a viable option for businesses building their security infrastructure.
Elastic Security is considered cost-effective, especially at lower EPS levels.
Totaling around two lakh Indian rupees per month.
Since Wazuh is open source, the pricing for support could be applicable to medium-sized companies without much issue.
 

Valuable Features

Elastic Security is praised for fast search, scalability, machine learning, customization, integration, and user-friendly, cost-effective features.
Wazuh provides comprehensive security features, scalability, and cost-effectiveness, supporting diverse environments and regulatory compliance with strong community support.
Elastic Security is as flexible and configurable as Microsoft Sentinel.
Elastic Security offers advanced features such as machine learning and integration with ChatGPT.
Wazuh is a SIEM tool that is highly customizable and versatile.
Wazuh's most valuable features include file monitoring and compliance reporting, which do not require excessive costs.
We found the MITRE framework mapping and the agent enrollment service to be the most valuable features of Wazuh.
 

Categories and Ranking

Elastic Security
Ranking in Log Management
7th
Ranking in Security Information and Event Management (SIEM)
5th
Ranking in Extended Detection and Response (XDR)
8th
Average Rating
7.6
Reviews Sentiment
6.7
Number of Reviews
63
Ranking in other categories
Endpoint Detection and Response (EDR) (16th), Security Orchestration Automation and Response (SOAR) (6th)
Wazuh
Ranking in Log Management
1st
Ranking in Security Information and Event Management (SIEM)
2nd
Ranking in Extended Detection and Response (XDR)
3rd
Average Rating
7.4
Reviews Sentiment
6.3
Number of Reviews
46
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of March 2025, in the Log Management category, the mindshare of Elastic Security is 3.7%, down from 6.9% compared to the previous year. The mindshare of Wazuh is 15.0%, up from 14.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

Nikhil-Kumar - PeerSpot reviewer
Customizable with great dashboards but the premium support is poor
The initial setup can be complex if you don't have technical knowledge. However, once it is deployed, it works well. I'm not sure how long it took to deploy. I wasn't there when it was set up and configured. We have an internal team that handles deployment and maintenance. It doesn't require too many people to deploy. Five or six people would be enough. However, for 24/7 monitoring, you need to have someone always on it.
Sandip_Patel - PeerSpot reviewer
Evaluating robust file monitoring with insights for community support improvements
Wazuh's most valuable features include file monitoring and compliance reporting, which do not require excessive costs. These aspects are vital as they provide alerts for changes and facilitate the monitoring of compliance. The platform is also relatively easy to set up and operate. Reports are straightforward to extract and prove useful for compliance requirements.
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
842,194 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Government
10%
Financial Services Firm
10%
Comms Service Provider
7%
Computer Software Company
16%
Comms Service Provider
8%
University
7%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Datadog vs ELK: which one is good in terms of performance, cost and efficiency?
With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...
What do you like most about Elastic Security?
Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...
What is your experience regarding pricing and costs for Elastic Security?
Elastic Security is considered cost-effective, especially at lower EPS levels. However, a direct comparison was not made due to different pricing structures.
What do you like most about Wazuh?
Integrates with various open-source and paid products, allowing for flexibility in customization based on use cases.
What needs improvement with Wazuh?
There is room for improvement by integrating more AI into Wazuh. It requires constant nurturing, as I have to provide it with code and specific requirements. This maintenance can be quite labor-int...
What is your primary use case for Wazuh?
We use Wazuh as a SIEM solution because it is open source, highly customizable, and continually expanding. Our clients can request various solutions for their issues, which Wazuh is able to address.
 

Also Known As

Elastic SIEM, ELK Logstash
No data available
 

Overview

 

Sample Customers

Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care
Information Not Available
Find out what your peers are saying about Elastic Security vs. Wazuh and other solutions. Updated: February 2025.
842,194 professionals have used our research since 2012.