Try our new research platform with insights from 80,000+ expert users

Splunk Cloud Platform vs Wazuh comparison

The compared Splunk and Wazuh solutions aren't in the same category. Splunk is ranked #3 in DV , with an average rating of 8.4, and holds a 0.5% mindshare in the category. Wazuh is ranked #2 in LM , with an average rating of 7.6, and holds a 17.0% mindshare. Additionally, 96% of Splunk users are willing to recommend the solution, compared to 79% of Wazuh users who would recommend it.
Splunk Cloud Platform
Read 56 Splunk Cloud Platform reviews
  • 232 Views
  • 103 Comparison Views
96% willing to recommend
Wazuh
Read 45 Wazuh reviews
  • 34,744 Views
  • 20,524 Comparison Views
79% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Splunk Cloud Platform and Wazuh based on real PeerSpot user reviews.

Find out in this report how the two Data Visualization solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Splunk Cloud Platform vs. Wazuh Report (Updated: March 2023).
Buyer's Guide
Splunk Cloud Platform vs. Wazuh
March 2023
Download the complete report
Helped 824,053 peers since 2012
 

Categories and Ranking

Splunk Cloud Platform
Average Rating
8.2
Reviews Sentiment
4.4
Number of Reviews
56
Ranking in other categories
Data Visualization (3rd), IT Alerting and Incident Management (3rd)
Wazuh
Average Rating
7.4
Reviews Sentiment
6.6
Number of Reviews
45
Ranking in other categories
Log Management (2nd), Security Information and Event Management (SIEM) (2nd), Extended Detection and Response (XDR) (3rd)
 

Mindshare comparison

While both are Systems Management solutions, they serve different purposes. Splunk Cloud Platform is designed for Data Visualization and holds a mindshare of 0.5%, up 0.3% compared to last year.
Wazuh, on the other hand, focuses on Log Management, holds 17.0% mindshare, up 13.5% since last year.
Data Visualization
Log Management
 

Featured Reviews

Mark Furman - PeerSpot reviewer
Offers real-time threat detection by continuously analyzing incoming logs and correlations
The Splunk Cloud Platform has improved our observability. We can see a lot more information both good and bad, but at least we have the information. It is important that Splunk Cloud Platform has visibility into our cloud-native environments. It comes to observability. And with the visibility, we're able to link, especially with our cloud environment, with Azure the correlations for threat reporting, correlations for account breaches, and correlations for compromised data ex-filtration that's going in and out. Splunk Cloud Platform has improved our mean time to resolution. It stepped down our investigation times. An investigation that used to take ten minutes is now down to five or six minutes per incident. It offers real-time threat detection by continuously analyzing incoming logs and correlations. These trigger pre-defined alerts, and any suspicious activity will be reported within five or six minutes. Splunk Cloud has saved costs through time savings. I can focus that time on other tasks improving productivity. We saw time to value within the first month of implementing the Splunk Cloud Platform. Splunk Unified Platform helps consolidate networking, security, and IT observability tools. We're primarily focusing on the security area and building out the correlations. We haven't moved to the infrastructure side yet. That is something we have on our company roadmap.
Read full review
AKASH MAJUMDER - PeerSpot reviewer
Open-source platform with custom alerting
There are three key strengths of Wazuh that stand out to me. Firstly, Wazuh offers an enhanced HDR version that outperforms the Elastic Stack. Wazuh has achieved this by running a config or a sec in the background, which has improved the XBR for endpoint security significantly. Secondly, Wazuh comes with built-in frameworks, such as the NISC and ISO, that make it easy to comply with various industry standards. We didn't need to configure any custom frameworks for this, as Wazuh had it built in. Lastly, Wazuh has the ability to collect terabytes of data within seconds, which is a crucial feature for modern enterprises dealing with large amounts of data.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The Cloud Platform interface is cleaner than Splunk Enterprise's monitoring console. You can easily understand what's happening with your indexes. It's more refined than Splunk Enterprise's console, but they have the same feel and function."
"Splunk Cloud's most valuable features are log aggregations, dashboarding, business management, reporting, and business controls. Additionally, it has awesome indexing and the solution is always improving"
"It has definitely improved our organization by virtue of reducing the amount of overhead we would have had for those environments. Having to implement, maintain, or even update the existing stuff would have been extremely time-consuming. Splunk Cloud handles all of that for us. So it's definitely been helpful from that perspective. It's allowed them to maintain upgrades for far further than they are. Some of the hosts of that environment were still on version 7 so they could get upgraded feature parity."
"Splunk reduced our mean time to resolve by 30%. If an application starts misbehaving, we send logs to Splunk and check to see what's going on and see what's happening."
"Dashboarding has been very powerful. I work with a lot of different customers, so being able to tailor the data for different customers has been valuable. I am able to make visuals and have reports where they can self-serve."
"Alerts are a huge benefit because we can customize them to each business unit's needs."
"The ability to correlate data and then present it in a meaningful and valuable way is crucial."
"Not having to maintain any infrastructure is valuable. That frees up a lot of time as well."
More Splunk Cloud Platform pros
"One of the most beneficial features of Wazuh, particularly in the context of security needs, is the machine learning data handling capability."
"It's stable."
"Wazuh's best features are syscheck, its ability to immediately resolve vulnerabilities, and that it's open source."
"It has efficient SCA capabilities."
"If they support a solution, it is easy to do an integration."
"Wazuh offers an enhanced HDR version that outperforms its competitors."
"It is a stable solution."
"Wazuh is free and easy to use. It is also adjustable, and we can use it on the cloud and on-premises."
More Wazuh pros
 

Cons

"They need to provide more training options."
"In the case of knowledge objects, even a Splunk admin does not have access to delete them. If we want to remove a knowledge object, we need to contact Splunk support and raise a case. After that, they delete it. They should give us access to delete knowledge objects."
"Customization could be simplified."
"The expensive nature of the product is an area of concern that needs to be considered for improvement."
"It is sometimes slow. Some of that has to do with the queries themselves not being efficient, but sometimes it is slow."
"The current visuals on the dashboard could be more impactful."
"Splunk Cloud could improve by having pre-defined templates. It has very good design views, but there is no predefined template. You have to define your own. If they could add predefined templates for different use cases."
"Splunk currently manages the components, which restricts our ability to access them directly."
More Splunk Cloud Platform cons
"So far, the recent updates have addressed most challenges we previously faced."
"Wazuh could improve the detection, it is not detecting all of the attacks. Additionally, it is lacking features compared to other solutions."
"Wazuh doesn't cover sources of events as well as Splunk. You can integrate Splunk with many sources of events, but it's a painful process to take care of some sources of events with Wazuh."
"The computing resources are consuming and do not make sense."
"Log data analysis could be improved. My IT team has been looking for an alternative because they want better log data for malware detection. We are also doing more container implementation also, so we need better container security, log data analysis, auditing and compliance, malware detection, etc."
"Wazuh needs more security and features, particularly visualization features and a health monitor."
"An issue I noticed is with tag values in certain rules not functioning properly."
"There's not much I like about Wazuh. Other products I've used were a lot more functional and user friendly. They came with reports and use cases out of the box. We need to configure Wazuh's alerts and monitoring capabilities manually. It'd be nice if we could select from templates and presets for use cases already built and coded."
More Wazuh cons
 

Pricing and Cost Advice

"The pricing was negotiated through Trustwave and for our first contract in three years, we got a good deal."
"It was a good model."
"The Splunk Cloud Platform is expensive."
"The pricing model makes this an expensive solution."
"The licensing costs depend on the state of your environment and the fees are paid on a monthly basis."
"We were on ingest. We were on-prem, and when we switched to the cloud, we went to an SVC model, and that has been a huge help. We are now able to ingest more data than before."
"My company has a license for Splunk Cloud Platform. My company also has a license for Splunk Enterprise."
"The cost of the Splunk Cloud Platform is high, and in addition to the standard licensing fee, we also have a premium support fee."
More Splunk Cloud Platform pricing and cost advice
"The solution's cost is above the average."
"Wazuh is a cheaply priced product."
"Wazuh is a good tool, but the open-source version has scalability limitations."
"Wazuh is open-source, but you must consider the total cost of ownership. It may be free to acquire, but you spend a lot of time and effort supporting the product and getting it to a point where it's useful."
"The product is cheaper compared to other tools."
"The current pricing is open source."
"The solution's pricing is very competitive."
"Wazuh is open-source, so I think it's an option for a small organization that cannot go for enterprise-grade solutions like Splunk."
More Wazuh pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Data Visualization solutions are best for your needs.
See recommendations
824,053 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
27%
Financial Services Firm
13%
University
7%
Educational Organization
5%
Computer Software Company
16%
Comms Service Provider
7%
University
7%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Splunk Cloud Platform?
Splunk has sped up our response and reduced the time we spend manually monitoring any logs for ticketing tools or servers. It saves us around two hours daily.
See all answers
What is your experience regarding pricing and costs for Splunk Cloud Platform?
Splunk Cloud is affordable, depending on your license. I don't know how much it costs exactly, but my colleague said it depends on your licensing and which features you use.
See all answers
What needs improvement with Splunk Cloud Platform?
First-time users may struggle with the user interface. When I first used Splunk, I entered my username and password. After that, we get a dashboard on the left side with apps. At the top, you can c...
See all answers
What do you like most about Wazuh?
Integrates with various open-source and paid products, allowing for flexibility in customization based on use cases.
See all answers
What needs improvement with Wazuh?
I am investigating more about the community support for Wazuh. I can't provide a definitive answer yet. An issue I noticed is with tag values in certain rules not functioning properly. It's unclear...
See all answers
What is your primary use case for Wazuh?
I am currently evaluating and using Wazuh for file monitoring and compliance reporting. We are in the process of conducting a POC to understand how the rules work. I lead this effort to explore and...
See all answers
 

Comparisons

Fortinet FortiAnalyzer vs Splunk Cloud Platform Logo
Fortinet FortiAnalyzer vs Splunk Cloud Platform
Compared 10% of the time
Coralogix vs Splunk Cloud Platform Logo
Coralogix vs Splunk Cloud Platform
Compared 8% of the time
SolarWinds Kiwi Syslog Server vs Splunk Cloud Platform Logo
SolarWinds Kiwi Syslog Server vs Splunk Cloud Platform
Compared 8% of the time
Microsoft Purview Audit vs Splunk Cloud Platform Logo
Microsoft Purview Audit vs Splunk Cloud Platform
Compared 7% of the time
Splunk Enterprise Security vs Splunk Cloud Platform Logo
Splunk Enterprise Security vs Splunk Cloud Platform
Compared 7% of the time
More Splunk Cloud Platform Competitors
Security Onion vs Wazuh Logo
Security Onion vs Wazuh
Compared 16% of the time
AlienVault OSSIM vs Wazuh Logo
AlienVault OSSIM vs Wazuh
Compared 9% of the time
Elastic Stack vs Wazuh Logo
Elastic Stack vs Wazuh
Compared 9% of the time
Elastic Security vs Wazuh Logo
Elastic Security vs Wazuh
Compared 9% of the time
Graylog vs Wazuh Logo
Graylog vs Wazuh
Compared 5% of the time
More Wazuh Competitors
 

Product Reports

Buyer's Guide
Splunk Cloud Platform
November 2024
Splunk Cloud Platform reportDownload Splunk Cloud Platform product report
Buyer's Guide
Wazuh
November 2024
Wazuh reportDownload Wazuh product report
 

Learn More

Splunk
Wazuh
 

Overview

Splunk Cloud Platform is widely used for log management, security monitoring, application performance monitoring, troubleshooting, data aggregation, and IT operations. It centralizes logs from numerous sources, enabling detailed analysis, incident detection, and effective dashboard creation.

Companies across various industries leverage Splunk Cloud Platform for cybersecurity, compliance, user activity monitoring, and alerts. It helps in managing cloud environments, optimizing data storage costs, and enhancing customer insights with effective data visualization. The platform's robust capabilities include customizable reporting, flexible log sending, powerful search features, and seamless integration with other systems. Users monitor multiple environments and platforms effortlessly with the cloud infrastructure maintained by Splunk. Despite its advantages, users find the pricing steep, support ineffective, and encounter performance issues with large data volumes. Integration challenges, limited training resources, and insufficient documentation also pose concerns.

What are the most important features of Splunk Cloud Platform?
  • Customizable Reporting and Dashboards: Design personalized reports and visual dashboards.
  • Quick Setup: Rapid deployment and setup process.
  • Flexible Log Sending: Send logs seamlessly from multiple sources.
  • Powerful Search Capabilities: Conduct detailed log event searches efficiently.
  • Easy Integration: Integrates easily with other systems.
  • End-to-End Visibility: Complete monitoring of the IT infrastructure.
  • Automated Monitoring: Real-time automated oversight.
  • Federated Search: Search across multiple data sources.
  • User-Friendly Interface: Intuitive and accessible design.
What benefits can users expect from Splunk Cloud Platform?
  • Business Resilience: Improved continuity and reduced downtime.
  • Enhanced Cybersecurity: Advanced security features and compliance.
  • Performance Improvement: Better system performance and faster issue resolution.
  • Cost Optimization: Efficient data storage and cost management.
  • Customer Insights: Enhanced analytics for better understanding of customer behavior.

Splunk Cloud Platform is implemented across industries including finance, healthcare, retail, and technology. Organizations use it to enhance cybersecurity measures, meet compliance requirements, monitor user activities, and issue automated alerts. In finance, it assists in fraud detection and compliance. In healthcare, it ensures data security and regulatory adherence. Retailers use it for customer behavior analysis and performance monitoring, while technology companies benefit from its troubleshooting and log management capabilities. Despite its powerful features, companies face challenges with pricing, support, and integration that require consideration during implementation.

Wazuh is an enterprise-ready platform used for security monitoring. It is a free and open-source platform that is used for threat detection, incident response and compliance, and integrity monitoring. Wazuh is capable of protecting workloads across virtualized, on-premises, containerized, and cloud-based environments.

It consists of an endpoint security agent and a management server. Additionally, Wazuh is fully integrated with the Elastic Stack, allowing users the ability to navigate through security alerts via a data visualization tool.

  • Wazuh’s agent can run on many different platforms, and is lightweight. It can successfully perform the tasks needed to detect threats in order to trigger responses automatically.
  • Wazuh manages the agents, can analyze agent data, and can scale horizontally.
  • Elastic Stack is where alerts are indexed and stored.

Wazuh Capabilities

Some of Wazuh’s most notable capabilities include:

  • Intrusion detection: Wazuh’s agents can detect hidden files, cloaked processes, or unregistered network listeners, as well as inconsistencies in system call responses. Wazuh’s server component uses a signature-based approach to intrusion detection, using its regular expression engine to analyze collected log data and look for indicators of compromise.

  • Log data analysis: Wazuh can read operating system and application logs, and securely forward them to a central manager for rule-based analysis and storage.

  • Integrity monitoring: File integrity monitoring can help identify changes in content, ownership, permissions, and attribute of files. Wazuh’s file integrity monitoring can be used in conjunction with threat intelligence.

  • Vulnerability detection: Wazuh agents can identify well-known vulnerable software so you can see where your weak spots are and take action before an attack can exploit them.

  • Configuration assessment: System and application configurations are monitored to make sure they are compliant with security policies. Periodic scans are used to detect applications that are known to be vulnerable, insecurely configured, or unpatched.
  • Incident response: Wazuh responds actively when active threats need to be addressed. It can perform countermeasures like blocking access to a system when a threat source is identified.

  • Regulatory compliance: Wazuh includes the security controls required to be compliant with industry regulations and standards.

  • Cloud security: Wazuh’s light-weight and multi-platform agents are commonly used to monitor cloud environments at the instance level. In addition, Wazuh helps monitor cloud infrastructure at an API level.

  • Security for containers: With Wazuh, you have increased security visibility into hosts and containers, allowing for easier detection of threats, anomalies, and vulnerabilities.

Wazuh Benefits

Some of the most valued benefits of Wazuh include:

  • No vendor lock-in
  • No license costs
  • Uses lightweight, multi-platform agents
  • Free community support

Wazuh Offers

  • Annual support and maintenance
  • Assistance with deployment and configuration
  • Training and instructional hands-on courses

Reviews From Real Users

"It's very easy to integrate Wazuh with other environments, cloud applications, and on-prem applications. So, the advantage is that it's easy to implement and integrate with other solutions." - Robert C., IT Security Consultant at Microlan Kenya Limited

The MITRE ATT&CK correlation is most valuable.” - Chief Information Security Officer at a financial services firm

 

Sample Customers

Mindtouch
Information Not Available
Buyer's Guide
Splunk Cloud Platform vs. Wazuh
March 2023
Free Report: Splunk Cloud Platform vs. Wazuh
Find out what your peers are saying about Splunk Cloud Platform vs. Wazuh and other solutions. Updated: March 2023.
DOWNLOAD NOW
824,053 professionals have used our research since 2012.
See our Splunk Cloud Platform vs. Wazuh report.

We monitor all Data Visualization reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.