Logpoint vs Wazuh comparison

Logpoint and Wazuh are both solutions in the Log Management category. Logpoint is ranked #24 with an average rating of 7.2, while Wazuh is ranked #2 with an average rating of 7.6. Logpoint holds a 0.5% mindshare in LM, compared to Wazuh’s 17.0% mindshare. Additionally, 89% of Logpoint users are willing to recommend the solution, compared to 79% of Wazuh users who would recommend it.

Logpoint

Read 21 Logpoint reviews

1,336 Views
609 Comparison Views

89% willing to recommend

Wazuh

Read 45 Wazuh reviews

34,744 Views
20,524 Comparison Views

79% willing to recommend

Logpoint

Wazuh

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

Logpoint and Wazuh are two prominent security information and event management (SIEM) solutions available in the market. Wazuh is considered the superior product due to its features, making it worth the higher price for many users.

Features: Logpoint is noted for its simple and effective integration capabilities, robust alerting features, and straightforward deployment. Wazuh is praised for its comprehensive threat intelligence, extensive logging capabilities, and a broader range of valuable features, making it preferable for detailed security management.

Room for Improvement: Users suggest improvements in Logpoint's real-time monitoring capabilities, customization options, and documentation accuracy. For Wazuh, users highlight the need for better documentation, smoother version upgrades, and improved user interface.

Ease of Deployment and Customer Service: Logpoint users find the deployment process straightforward and praise the responsive customer service. Wazuh users find the deployment manageable but mention a steeper learning curve, although both have commendable customer service.

Pricing and ROI: Logpoint offers competitive pricing and users report satisfactory ROI. Wazuh, though pricier, is perceived as delivering higher value, resulting in favorable ROI assessments. Wazuh's pricing is seen as justified by its extensive feature set, whereas Logpoint stands out for affordability and good return on investment.

To learn more, read our detailed Logpoint vs. Wazuh Report (Updated: December 2024).

Buyer's Guide

Logpoint vs. Wazuh

December 2024

Download the complete report

Helped 824,053 peers since 2012

Categories and Ranking

Logpoint

Ranking in Log Management

24th

Ranking in Security Information and Event Management (SIEM)

26th

Average Rating

7.6

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

User Entity Behavior Analytics (UEBA) (7th), Endpoint Detection and Response (EDR) (32nd), Security Orchestration Automation and Response (SOAR) (14th)

Wazuh

Ranking in Log Management

2nd

Ranking in Security Information and Event Management (SIEM)

2nd

Average Rating

7.4

Reviews Sentiment

6.6

Number of Reviews

Ranking in other categories

Extended Detection and Response (XDR) (3rd)

Mindshare comparison

As of December 2024, in the Log Management category, the mindshare of Logpoint is 0.5%, up from 0.4% compared to the previous year. The mindshare of Wazuh is 17.0%, up from 13.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Log Management

Featured Reviews

Subhash Sreenivasan

Head of Professional Services at NiyoSecure

Roughly 800 to 1000 integrations available with various security products and applications and offers built-in SOAR capabilities

The documentation part is something that needs to be improved, as well as the threat intelligence investigation part. Logpoint has a kind of site to describe what kinds of threats they are investigating. But that, I think, maybe Logpoint can improve more. The threat investigations and reporting to the end-users can be improved. Logpoint can also come up with IR [incident response] capabilities. Other important SIEM solutions have some IR services. If I am an MSSP working with LogPoint for SIEM/SOAR solutions and I need immediate support, I should be able to get some support. It can be paid support, like SecureWorks, which has those kinds of functionalities. They will immediately get in and start working on helping us identify the threats, isolate them, and give us remedies to take care of and recover from any kind of attacks. Whereas in LogPoint, that functionality is missing. We will be on our own if something happens. We will get other support from them, but there's no paid support before taking ownership and helping us recover from those kinds of attacks. They have a kind of integration for AI, but the incident response capability is what they should improve.

Read full review

AKASH MAJUMDER

SOC Analyst at Ovelosec

Open-source platform with custom alerting

There are three key strengths of Wazuh that stand out to me. Firstly, Wazuh offers an enhanced HDR version that outperforms the Elastic Stack. Wazuh has achieved this by running a config or a sec in the background, which has improved the XBR for endpoint security significantly. Secondly, Wazuh comes with built-in frameworks, such as the NISC and ISO, that make it easy to comply with various industry standards. We didn't need to configure any custom frameworks for this, as Wazuh had it built in. Lastly, Wazuh has the ability to collect terabytes of data within seconds, which is a crucial feature for modern enterprises dealing with large amounts of data.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It is an AI technology because it is using machine learning technology. So far, there is nothing better out there for UEBA in terms of monitoring endpoints and user activity. It is using machine learning language, so it is right at the top. It provides that capability and monitors all the activities. It devises a baseline and monitors if there is any deviation from the baseline."

"The product is easy to use."

"The solution's user interface is quite simple, and the integration is better than other products."

"The solution is user-friendly."

"The main advantage of Logpoint is the support service. They reply within ten minutes to an hour to our queries."

"What I like best about LogPoint is its cost-effectiveness compared to other solutions. LogPoint also has better dashboards which I find valuable. I also like that you can create use cases based on your assets."

"In my experience with medium-sized operations, LogPoint's scalability is excellent, so I would rate it a ten out of ten."

"Log collection, dashboards and reporting are good."

More Logpoint pros

"The most valuable features are the modules and metrics."

"It allows you to aggregate all your logs in one place and provides a unified view to monitor your security environment."

"The MITRE ATT&CK correlation is most valuable."

"My company implemented Wazuh because it was relatively inexpensive. They could quickly get their hands on it to check a box for some audit and compliance."

"Its cost-effectiveness is the most valuable aspect."

"I like the features we use, including malware detection, inventory, detection of hidden processes, and activity logs. Inventory is probably the most important feature. It tells us when processes and packages were installed and what they are, which is helpful."

"Wazuh is simple to use for PCI compliance."

"The configuration assessment and Pile integrity monitoring features are decent."

More Wazuh pros

Cons

"We were missing visuals and graphics. Recently, a new version seems to have come out, and it has a new graphical user interface. When I was integrating it, it was usable, but the GUI needed improvement."

"It is complicated to collect daily logs from other systems."

"It is a good product, but its interface or GUI could be better."

"LogPoint can improve its dashboards. We are not able to customize the dashboard when creating them. They only have preset dashboards which do not have exactly what we are looking for."

"The interface needs things like wizards that will assist with creating complex correlation rules."

"LogPoint must find a way to integrate the servers without agents."

"The solution should offer more integrations and third-party solutions like incident response platforms or allow access to third-party big data"

"One of the things we faced last year was that we had some memory issues with the server running. We were running them as virtual services, and we were facing some performance issues. Back then, there were some things that had already been solved at the end, but one of the small issues we had was that it was quite memory-consuming. After one upgrade that we did, we faced some performance issues."

More Logpoint cons

"They could include flexibility and customization capabilities by modifying for customers based on partner agreements."

"Scalability is a constraint in the on-prem version of Wazuh in terms of the volume of logs we can manage."

"Some features, like alerting, are complex with Wazuh."

"Wazuh should come up with more in-built rules and integrations for the cloud."

"It would be better if they had a vulnerability assessment plug-in like the one AlienVault has. In the next release, I would like to have an app with an alerting mechanism."

"Wazuh currently fails to provide its users with AI and ML."

"Its configuration process is time-consuming."

"Integration with Vyara could be better."

More Wazuh cons

Pricing and Cost Advice

"It's getting more expensive, which is one of the reasons we're looking around just to see if there's anything better value."

"Our licensing fees are about $10,000 USD per month, which I think is fair."

"Logpoint's pricing is mid-ranged and depends on the number of devices."

"On a scale of one to ten, where one is cheap, and ten is expensive, I would rate LogPoint's pricing a seven. It is not very expensive compared to some of the more costly products, and it is not very cheap compared to some of the cheaper products in the SIEM market."

"My company used to pay for LogPoint costs annually. It's a cost-effective solution. I'm not part of the Finance team, though, so I'm not sure exactly what the licensing fee is or what license my company had."

"It was on a yearly basis at about $100K. It was not a huge environment. We were running it on our own virtual server environment, which, of course, had a cost. There was hardware and some energy cost, and then there were Microsoft Windows licenses for servers. That's all, but there was nothing in comparison to the licensing costs."

"It's less expensive than the competitors. The Logpoint marketing team is very accommodating and client-friendly. They offer very good reductions in price. They are pretty good in this aspect. They are transparent in their licensing and pricing."

"It has a fixed price, which is what I like about LogPoint. I bought the system and paid for it, and I pay maintenance. It is not a consumption model. Most SIEMs or most of the log management systems are consumption-based, which means that you pay for how many logs you have in the system. That's a real problem because logs can grow very quickly in different circumstances, and when you have a variable price model, you never know what you're going to pay. Splunk is notoriously expensive for that reason. If you use Splunk or QRadar, it becomes expensive because there are not just the logs; you also have to parse the logs and create indexes. Those indexes can be very expensive in terms of space. Therefore, if they charge you by this space, you can end up paying a significant amount of money. It can be more than what you expect to pay. I like the fact that LogPoint has a fixed cost. I know what I'm going to pay on a yearly basis. I pay that, and I pay the maintenance, and I just make it work."

More Logpoint pricing and cost advice

"The product price is neither too high nor too low."

"Wazuh is not an expensive solution."

"Wazuh is a cheaply priced product."

"Wazuh is open-source, therefore it is free. You can purchase support for $1,000 a year."

"The solution's pricing is very competitive."

"Wazuh is a good tool, but the open-source version has scalability limitations."

"Wazuh has a community edition, and I was using that. It's free and open source."

"We use the free version of Wazuh."

More Wazuh pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Log Management solutions are best for your needs.

See recommendations

824,053 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

67%

Computer Software Company

Comms Service Provider

Manufacturing Company

Computer Software Company

16%

Comms Service Provider

University

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about LogPoint?

The solution is user-friendly.

See all answers

What is your experience regarding pricing and costs for LogPoint?

On a scale of one to ten, where one is cheap, and ten is expensive, I would rate LogPoint's pricing a seven. It is not very expensive compared to some of the more costly products, and it is not ver...

See all answers

What needs improvement with LogPoint?

See all answers

What do you like most about Wazuh?

Integrates with various open-source and paid products, allowing for flexibility in customization based on use cases.

See all answers

What needs improvement with Wazuh?

I am investigating more about the community support for Wazuh. I can't provide a definitive answer yet. An issue I noticed is with tag values in certain rules not functioning properly. It's unclear...

See all answers

What is your primary use case for Wazuh?

I am currently evaluating and using Wazuh for file monitoring and compliance reporting. We are in the process of conducting a POC to understand how the rules work. I lead this effort to explore and...

See all answers

Comparisons

IBM Security QRadar vs Logpoint

Compared 20% of the time

Elastic Security vs Logpoint

Compared 18% of the time

Microsoft Sentinel vs Logpoint

Compared 9% of the time

Rapid7 InsightIDR vs Logpoint

Compared 8% of the time

LogRhythm SIEM vs Logpoint

Compared 7% of the time

More Logpoint Competitors

Security Onion vs Wazuh

Compared 16% of the time

AlienVault OSSIM vs Wazuh

Compared 9% of the time

Elastic Stack vs Wazuh

Compared 9% of the time

Elastic Security vs Wazuh

Compared 9% of the time

Graylog vs Wazuh

Compared 5% of the time

More Wazuh Competitors

Product Reports

Buyer's Guide

Logpoint

December 2024

Download Logpoint product report

Buyer's Guide

Wazuh

November 2024

Download Wazuh product report

Learn More

Logpoint

Wazuh

Overview

Logpoint is a cutting-edge security information and event management (SIEM) solution that is designed to be intuitive and flexible enough to be used by an array of different businesses. It is capable of expanding according to its users' needs.

Benefits of Logpoint

Some of the benefits of using Logpoint include:

Unifies data logs: Logpoint creates a single system of classification for collected data. It makes it easy for users to search for and find data, which aids users when they are creating reports or alerts. Users can conserve resources while at the same time seeing a rise in the efficiency of their business operations.

Intuitive solution design: Logpoint is designed so that anyone can utilize all of its features, even if they are not an expert in network security. Logpoint’s UI is simple enough that users can utilize it without undergoing extensive training.

Highly flexible: Logpoint is designed so that users can scale it linearly to accommodate projects that are large and complex. This allows users to expand the scope of their projects according to their needs without worrying that their infrastructure won’t be able to handle the increase in size. The solution’s security features can be deployed both on the cloud and in a physical environment.

Simple role-based access security: Logpoint allows administrators to employ Microsoft’s active directory (AD) and a Lightweight Directory Access Protocol to manage user access. These can help administrators protect their systems from being abused or otherwise harmed by bad actors.

Reviews from Real Users

Logpoint is a security and management solution that stands out among its competitors for a number of reasons. Two major ones are its data gathering and artificial intelligence (AI) capabilities. Logpoint enables users to not only gather the data, but also to maximize both the amount of data that can be gathered and its usefulness. It removes many of the challenges that users may face in data collection. The solution allows users to set rules for collection and then it pulls information from sources that meet the rules that have been set. This data is then broken into manageable segments and ordered. Users can then analyze these ordered segments with ease. Additionally, LogPoint utilizes both machine learning and AI technology. Users gain the ability to protect themselves from and if necessary resolve emerging threats as soon as they arise. The AI sets security parameters for a user’s system. These act as a baseline that are triggered and notify the user if anything deviates from the rules that it set up.

The chief infrastructure & security officer at a financial services firm writes, “It is a very comprehensive solution for gathering data. It has got a lot of capabilities for collecting logs from different systems. Logs are notoriously difficult to collect because they come in all formats. Logpoint has a very sophisticated mechanism for you to be able to connect to or listen to a system, get the data, and parse it. Logs come in text formats that are not easily parsed because all logs are not the same, but with Logpoint, you can define a policy for collecting the data. You can create a parser very quickly to get the logs into a structured mechanism so that you can analyze them.”

A. Secca., a Cyber Security Analyst at a transportation company, writes, “It is an AI technology because it is using machine learning technology. So far, there is nothing better out there for UEBA in terms of monitoring endpoints and user activity. It is using machine learning language, so it is right at the top. It provides that capability and monitors all of the user’s activities. It devises a baseline and monitors if there is any deviation from the baseline.”

Wazuh is an enterprise-ready platform used for security monitoring. It is a free and open-source platform that is used for threat detection, incident response and compliance, and integrity monitoring. Wazuh is capable of protecting workloads across virtualized, on-premises, containerized, and cloud-based environments.

It consists of an endpoint security agent and a management server. Additionally, Wazuh is fully integrated with the Elastic Stack, allowing users the ability to navigate through security alerts via a data visualization tool.

Wazuh’s agent can run on many different platforms, and is lightweight. It can successfully perform the tasks needed to detect threats in order to trigger responses automatically.
Wazuh manages the agents, can analyze agent data, and can scale horizontally.
Elastic Stack is where alerts are indexed and stored.

Wazuh Capabilities

Some of Wazuh’s most notable capabilities include:

Intrusion detection: Wazuh’s agents can detect hidden files, cloaked processes, or unregistered network listeners, as well as inconsistencies in system call responses. Wazuh’s server component uses a signature-based approach to intrusion detection, using its regular expression engine to analyze collected log data and look for indicators of compromise.
Log data analysis: Wazuh can read operating system and application logs, and securely forward them to a central manager for rule-based analysis and storage.
Integrity monitoring: File integrity monitoring can help identify changes in content, ownership, permissions, and attribute of files. Wazuh’s file integrity monitoring can be used in conjunction with threat intelligence.
Vulnerability detection: Wazuh agents can identify well-known vulnerable software so you can see where your weak spots are and take action before an attack can exploit them.
Configuration assessment: System and application configurations are monitored to make sure they are compliant with security policies. Periodic scans are used to detect applications that are known to be vulnerable, insecurely configured, or unpatched.
Incident response: Wazuh responds actively when active threats need to be addressed. It can perform countermeasures like blocking access to a system when a threat source is identified.
Regulatory compliance: Wazuh includes the security controls required to be compliant with industry regulations and standards.
Cloud security: Wazuh’s light-weight and multi-platform agents are commonly used to monitor cloud environments at the instance level. In addition, Wazuh helps monitor cloud infrastructure at an API level.
Security for containers: With Wazuh, you have increased security visibility into hosts and containers, allowing for easier detection of threats, anomalies, and vulnerabilities.

Wazuh Benefits

Some of the most valued benefits of Wazuh include:

No vendor lock-in
No license costs
Uses lightweight, multi-platform agents
Free community support

Wazuh Offers

Annual support and maintenance
Assistance with deployment and configuration
Training and instructional hands-on courses

Reviews From Real Users

"It's very easy to integrate Wazuh with other environments, cloud applications, and on-prem applications. So, the advantage is that it's easy to implement and integrate with other solutions." - Robert C., IT Security Consultant at Microlan Kenya Limited

“The MITRE ATT&CK correlation is most valuable.” - Chief Information Security Officer at a financial services firm

Sample Customers

AP Pension, Copenhagen Airports, KMD, Terma, DISA, Danish Crown, Durham City Council, Game, TopDanmark, Lahti Energia, Energi Midt, Synoptik, Eissmann Group Automotive, Aligro, CG50...

Information Not Available

Buyer's Guide

Logpoint vs. Wazuh

December 2024

Free Report: Logpoint vs. Wazuh

Find out what your peers are saying about Logpoint vs. Wazuh and other solutions. Updated: December 2024.

DOWNLOAD NOW

824,053 professionals have used our research since 2012.

See our Logpoint vs. Wazuh report.

See our list of best Log Management vendors and best Security Information and Event Management (SIEM) vendors.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.