Wazuh and Google Chronicle Suite are top contenders in the cybersecurity space. Users show a preference for Google Chronicle Suite due to its advanced features, while Wazuh is preferred for cost-effectiveness and support.
Features: Users value Wazuh for its integration capabilities, real-time monitoring, and cost-effectiveness. Google Chronicle Suite is praised for its scalable cloud-native infrastructure, comprehensive threat intelligence, and advanced features.
Room for Improvement: Wazuh users highlight the need for more comprehensive documentation, smoother upgrade processes, and better user interface. Google Chronicle Suite users seek enhanced customization options, quicker response times to support requests, and better user flexibility.
Ease of Deployment and Customer Service: Wazuh is favored for its straightforward deployment and responsive support team. Google Chronicle Suite offers seamless deployment at scale but has mixed feedback on customer service efficiency.
Pricing and ROI: Wazuh is noted for its affordability and quick ROI. Google Chronicle Suite, though costly, is considered a worthwhile investment for its advanced capabilities.
We are a critical project for them at this moment, and they provide excellent service.
They are slow, and the initial responses often require more information rather than providing helpful solutions.
The technical support I’ve received is rated an eight out of ten.
The documentation is good and provides clear instructions, though it's targeted at those with technical backgrounds.
There is no dedicated technical support for Wazuh as it is open source.
We use the open-source version of Wazuh, which does not provide paid support.
Google Chronicle Suite is very scalable, being a cloud-based solution.
I rate the scalability of Google Chronicle Suite as ten out of ten.
Chronicle Suite is fully scalable with a rating of seven or eight out of ten in scalability.
It can accommodate thousands of endpoints on one instance, and multiple instances can run for different clients.
Scalability depends on the configuration and the infrastructure resources like compute and memory we allocate.
I rate the stability of Google Chronicle Suite as a nine, as I have not encountered any stability issues.
The stability of Wazuh is strong, with no issues stemming from the solution itself.
The stability of Wazuh is largely dependent on maintenance.
The graphical user interface could be improved to enhance user experience.
The UI is the primary challenge in need of improvement.
The functionalities for parsing and including feeds need improvement.
The integration modules are insufficiently developed, necessitating the creation of custom integration solutions using tools like Logstash and PubSub.
An issue I noticed is with tag values in certain rules not functioning properly.
There is room for improvement by integrating more AI into Wazuh.
It's neither expensive nor cheap, and I believe it is a justified price for the features offered.
I experience Chronicle as less expensive and less complicated than Azure.
Our license is based on the size of the company with an all-you-can-eat model, considering storage capabilities per day.
Totaling around two lakh Indian rupees per month.
Since Wazuh is open source, the pricing for support could be applicable to medium-sized companies without much issue.
The threat intelligence, especially continuous IOC feeds, is a standout feature.
They also combine their source solution into one product, allowing for out-of-the-box playbook creation and incident response.
The automated response feature allows for immediate actions like isolating infected machines or blocking malicious IP addresses.
The fact that it is open source means it is always being expanded, which is beneficial for customizing solutions for individual client requests.
We found the MITRE framework mapping and the agent enrollment service to be the most valuable features of Wazuh.
Wazuh's most valuable features include file monitoring and compliance reporting, which do not require excessive costs.
Organizations primarily leverage Google Chronicle Suite for centralized log management, threat intelligence, and endpoint security, addressing MDR requirements with continuous monitoring.
Google Chronicle Suite supports storage, security, and alert checking. Utilizing log information to generate alerts and integration with search engines, it monitors network and login issues. It is a choice for consultants on client projects, and partners handle its global resale and implementation.
What are the key features of Google Chronicle Suite?Industries employ Google Chronicle Suite for its robust security measures and log management. It is especially vital for IT, finance, healthcare, and any sector needing stringent security and compliance. Consultants find it essential for tailoring security protocols in client projects, while partners ensure seamless implementation across regions.
Wazuh is an enterprise-ready platform used for security monitoring. It is a free and open-source platform that is used for threat detection, incident response and compliance, and integrity monitoring. Wazuh is capable of protecting workloads across virtualized, on-premises, containerized, and cloud-based environments.
It consists of an endpoint security agent and a management server. Additionally, Wazuh is fully integrated with the Elastic Stack, allowing users the ability to navigate through security alerts via a data visualization tool.
Wazuh Capabilities
Some of Wazuh’s most notable capabilities include:
Wazuh Benefits
Some of the most valued benefits of Wazuh include:
Wazuh Offers
Reviews From Real Users
"It's very easy to integrate Wazuh with other environments, cloud applications, and on-prem applications. So, the advantage is that it's easy to implement and integrate with other solutions." - Robert C., IT Security Consultant at Microlan Kenya Limited
“The MITRE ATT&CK correlation is most valuable.” - Chief Information Security Officer at a financial services firm
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
