Try our new research platform with insights from 80,000+ expert users

Sumo Logic Security vs Wazuh comparison

Sumo Logic and Wazuh are both solutions in the Log Management category. Sumo Logic is ranked #19 with an average rating of 8.3, while Wazuh is ranked #2 with an average rating of 7.7. Sumo Logic holds a 0.4% mindshare in LM, compared to Wazuh’s 17.1% mindshare. Additionally, 95% of Sumo Logic users are willing to recommend the solution, compared to 78% of Wazuh users who would recommend it.
Sumo Logic Security
Read 18 Sumo Logic Security reviews
  • 1,249 Views
  • 847 Comparison Views
95% willing to recommend
Wazuh
Read 43 Wazuh reviews
  • 35,381 Views
  • 20,675 Comparison Views
78% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

Sumo Logic Security and Wazuh compete in the security solutions category. Sumo Logic Security appears to have the upper hand due to its advanced analytics and customer support, while Wazuh offers higher value through its feature set and cost-effectiveness.

Features: Sumo Logic Security is recognized for its powerful machine learning capabilities and advanced threat detection. Wazuh stands out for its comprehensive visibility across endpoints and seamless integrations. Users find Sumo Logic's analytics superior but appreciate Wazuh's versatile deployment options and extensive feature set, making it a strong contender for those seeking a balance between usability and in-depth security features.

Room for Improvement: Sumo Logic Security users suggest enhancements in integration with third-party tools and more intuitive dashboards. Wazuh users seek improvements in documentation and support for more seamless initial setup processes. Both products could benefit from refining certain areas, but Sumo Logic's need for better third-party integration and Wazuh’s call for improved documentation are key differentiators.

Ease of Deployment and Customer Service: Sumo Logic Security is praised for its relatively straightforward deployment and responsive customer service. Wazuh, while thorough in deployment options, presents a steeper learning curve initially but compensates with extensive customization possibilities. Users generally find Sumo Logic easier to deploy but regard Wazuh's customer service support as needing enhancement, particularly during initial setup phases.

Pricing and ROI: Sumo Logic Security offers competitive pricing with strong ROI through advanced analytics and fast threat detection capabilities. Wazuh’s open-source model provides significant cost savings, appealing to budget-conscious organizations while delivering substantial value. Users find Sumo Logic's pricing justified by its high performance, while Wazuh's cost-effectiveness makes it a preferred option for those willing to navigate a more complex setup for greater long-term savings.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Sumo Logic Security vs. Wazuh Report (Updated: October 2024).
Buyer's Guide
Sumo Logic Security vs. Wazuh
October 2024
Download the complete report
Helped 814,649 peers since 2012
 

Categories and Ranking

Sumo Logic Security
Ranking in Log Management
19th
Ranking in Security Information and Event Management (SIEM)
19th
Average Rating
8.6
Number of Reviews
18
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (12th)
Wazuh
Ranking in Log Management
2nd
Ranking in Security Information and Event Management (SIEM)
3rd
Average Rating
7.4
Reviews Sentiment
7.1
Number of Reviews
43
Ranking in other categories
Extended Detection and Response (XDR) (4th)
 

Mindshare comparison

As of November 2024, in the Log Management category, the mindshare of Sumo Logic Security is 0.4%, down from 0.7% compared to the previous year. The mindshare of Wazuh is 17.1%, up from 13.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

Moole Muralidhara Reddy - PeerSpot reviewer
Mar 26, 2024
Used to store and monitor application logs and VPC flow logs
We are mainly concentrating on networking. We use VPC products and application logs to monitor the genuineness of users who have logged in. We also store and monitor GuardDuty logs to see if someone is trying to access the same server multiple times. We are storing and monitoring WAF logs and GuardDuty logs. If someone faces any issues, we'll receive an email and take action based on it. If someone tries to access one of the applications from a different country, we can search in Google and identify the location of that particular IP address. Sumo Logic Security identifies whether a particular IP address is low, medium, or high risk without the help of Google. We can store logs in CloudWatch, but it is very difficult to search them in CloudWatch. We should know the query in order to do that. Searching for logs with Sumo Logic Security is very easy compared to CloudWatch. We have been using the solution for more than two years and haven't faced any issues with the solution's availability. I would recommend the solution to other users. I would recommend Sumo Logic Security instead of AWS, CloudWatch, or CloudTrail. With Sumo Logic Security, you can capture and see all the logs in a single place. If some issues occur, you can log into the solution and verify all the logs. At an organizational level, we have multiple AWS accounts for different environments. Instead of logging in to all the AWS accounts, you can log in to Sumo Logic Security and verify everything. Overall, I rate the solution a nine out of ten.
Read full review
SyedAli17 - PeerSpot reviewer
Sep 25, 2023
Has excellent scalability when deployed on Azure
We primarily use Wazuh for internal security monitoring to ensure the safety of our organization's internal systems. We have two specific requirements: first, we use it to monitor our internal operations, which is essential for general security purposes. Second, we rely on Wazuh to manage the…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Scalability has been good for our needs. We haven't run into any scaling issues in regards to size so far."
"We can integrate threat intelligence solutions into the product."
"I have no concerns about the stability of the product. I feel it handles the stress we put on it very well."
"We use it to ingest Windows domain controller logs. We use this to monitor if anyone is placed in particular administration groups that potentially shouldn't be. It helps us keep track of people."
"It gives us a bird's eye view of what's happening from our connection's point of view."
"For many of our services, we use Sumo Logic to track errors and send notifications to our Slack channel, if there are issues. Then, we have our support people monitoring this, and they can react quickly."
"We are able to diagnose problems before our customers."
"The solution is quite stable."
More Sumo Logic Security pros
"Good for monitoring, active response, and for vulnerabilities."
"If they support a solution, it is easy to do an integration."
"The most valuable features are the modules and metrics."
"Regarding Wazuh, I find the SCA (Security Configuration Assessment) features most valuable. It's crucial for asset management and inventory, allowing us to monitorendpoints and servers' changes easily. This is particularly important for my customers, who aren't heavily focused on incident response but rely on asset management and inventories. Wazuh's compliance management features are very supportive, especially in regions like the Americas and Europe. However, it's less effective in the ANZ (Australia and New Zealand) region since Wazuh doesn't cater to the specific compliance standards there, such as those required in Australia. I appreciate that Wazuh fully complies with PCI DSS and GDPR standards, allowing us to generate necessary reports."
"Wazuh's logging features integrate seamlessly with AWS cloud-native services. There are also Wazuh agent configurations for different use cases, like vulnerability scanning, host-based intrusion detection, and file integrity monitoring."
"Wazuh offers numerous features, such as the ability to define custom rules for detecting malicious activities and remembering behaviors."
"Wazuh offers an enhanced HDR version that outperforms its competitors."
"Its cost-effectiveness is the most valuable aspect."
More Wazuh pros
 

Cons

"It took a bit of trial and error to get it set up correctly based on everything we had to do. In the end, we had to send everything over HTTP, which was sort of a stop-gap."
"There are some API gaps that are missing."
"It would be nice to have an improved ability to scroll through logs within a time frame. Right now, we can search for specific errors. However, if we want to look for "before and after" within a specific time frame, it's not easy using the tool. This would be an improvement."
"The solution should improve its UI."
"If you look at some of the other offerings right now that are available in the market, they do offer APM as well as the product they're offering. I believe Sumo Logic is not there yet. So that's something which I would love to see."
"I would like to see improvement in the user experience when configuring things, ingesting logs, and creating ports."
"We would like the ability to drill down into a dashboard and get into deeper levels."
"In my opinion, this solution has a steep learning curve and requires practice if users to be able to use this tool very efficiently."
More Sumo Logic Security cons
"Scalability is a challenge because it is distributed architecture and it uses Elastic DB. Their Elastic DB doesn't allow open source waste application."
"It would be better if they had a vulnerability assessment plug-in like the one AlienVault has. In the next release, I would like to have an app with an alerting mechanism."
"Its user interface for sure can be improved. It is not so comfortable to use if you're looking for specific logs."
"It would be great if there could be customization for the decoder portion."
"So far, the recent updates have addressed most challenges we previously faced."
"Wazuh doesn't cover sources of events as well as Splunk. You can integrate Splunk with many sources of events, but it's a painful process to take care of some sources of events with Wazuh."
"Wazuh is missing many things that a typical SIEM should have."
"Some features, like alerting, are complex with Wazuh."
More Wazuh cons
 

Pricing and Cost Advice

"The AWS Marketplace pricing is fairly reasonable for what it does. I wouldn't call it expensive, but I wouldn't call it cheap. It is pretty good."
"Pricing has been cheaper than some of the competing tools, like Splunk."
"The AWS Marketplace pricing is borderline. Every annual renewal, we always contemplate if we are getting what we think we could out of it or could we do it cheaper with some other product."
"Storing logs in Sumo Logic Security is charged GB-wise, which is a little higher than other products."
"Purchasing Sumo Logic through the AWS Marketplace was a simple step."
"The only limit to the scalability of the product for us is how much we are willing to pay."
"Purchasing the solution through the AWS Marketplace is very easy."
"The product is costly."
More Sumo Logic Security pricing and cost advice
"It is a cost-effective solution."
"My client uses the open-source version of Wazuh."
"Wazuh is free and open source."
"The solution's pricing is very competitive."
"They have a good pricing strategy for market expansion."
"Wazuh is open-source, so I think it's an option for a small organization that cannot go for enterprise-grade solutions like Splunk."
"Wazuh is an open-source tool, which means it is freely available for use."
"The solution's cost is above the average."
More Wazuh pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
See recommendations
814,649 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
11%
Government
10%
Manufacturing Company
8%
Computer Software Company
16%
University
7%
Government
7%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Sumo Logic Security?
Sumo Logic Security is a good solution for searching the logs and identifying the issues.
See all answers
What is your experience regarding pricing and costs for Sumo Logic Security?
Storing logs in Sumo Logic Security is charged GB-wise, which is a little higher than other products.
See all answers
What needs improvement with Sumo Logic Security?
Sumo Logic Security is expensive, and its pricing could be improved.
See all answers
What do you like most about Wazuh?
Integrates with various open-source and paid products, allowing for flexibility in customization based on use cases.
See all answers
What needs improvement with Wazuh?
Wazuh doesn't have native support for some enterprise solutions. It requires an agent installed on the server, whether Windows Server or Linux, to collect logs. While you can gather information via...
See all answers
What is your primary use case for Wazuh?
My company specializes in providing SIEM as a service. We leverage Wazoo for that. Since Wazoo is open-source, I hosted it on Azure. We provide Wazuh as a service to our customers. Currently, we ha...
See all answers
 

Comparisons

Google Chronicle Suite vs Sumo Logic Security Logo
Google Chronicle Suite vs Sumo Logic Security
Compared 15% of the time
Rapid7 InsightIDR vs Sumo Logic Security Logo
Rapid7 InsightIDR vs Sumo Logic Security
Compared 11% of the time
Securonix Next-Gen SIEM vs Sumo Logic Security Logo
Securonix Next-Gen SIEM vs Sumo Logic Security
Compared 8% of the time
Microsoft Sentinel vs Sumo Logic Security Logo
Microsoft Sentinel vs Sumo Logic Security
Compared 8% of the time
Splunk Enterprise Security vs Sumo Logic Security Logo
Splunk Enterprise Security vs Sumo Logic Security
Compared 7% of the time
More Sumo Logic Security Competitors
Security Onion vs Wazuh Logo
Security Onion vs Wazuh
Compared 16% of the time
AlienVault OSSIM vs Wazuh Logo
AlienVault OSSIM vs Wazuh
Compared 10% of the time
Elastic Security vs Wazuh Logo
Elastic Security vs Wazuh
Compared 9% of the time
Elastic Stack vs Wazuh Logo
Elastic Stack vs Wazuh
Compared 7% of the time
Splunk Enterprise Security vs Wazuh Logo
Splunk Enterprise Security vs Wazuh
Compared 6% of the time
More Wazuh Competitors
 

Product Reports

Buyer's Guide
Sumo Logic Security
October 2024
Sumo Logic Security reportDownload Sumo Logic Security product report
Buyer's Guide
Wazuh
October 2024
Wazuh reportDownload Wazuh product report
 

Learn More

Sumo Logic
Wazuh
 

Overview

Sumo Logic

Sumo Logic is a cloud-based machine data analytics company focusing on security, operations, and BI use cases. It provides log management and analytics services that leverage machine-generated big data to deliver real-time IT insights.

Sumo Logic is developed as a SaaS solution, it processes and analyzes large quantities of IT infrastructure data, spotting patterns and anomalies that can indicate a potential threat or significant event.

The platform is designed to help IT, security, and business operations teams develop, manage, and secure their applications and cloud infrastructures. It collects, aggregates, and analyzes data from various sources including servers, virtual machines, and network devices, providing visibility into complex systems.

What are the key features of Sumo Logic?

  • Real-time Analytics: Continuous queries and live dashboards that provide insights into application performance, user behavior, and security threats.

  • Advanced Machine Learning: Utilizes machine learning algorithms to identify trends, anomalies, and patterns.

  • Integrated Threat Intelligence: Tools and workflows to enhance security postures by detecting threats and anomalies.

  • Multi-tenant Cloud Service: Allows users to operate in a shared cloud environment securely.

The solution aims to simplify data complexity, streamline operations, and provide actionable insights to businesses across various industries.

Sumo Logic is designed to handle high data volumes from multiple sources without diminishing performance. It is primarily deployed in the cloud with seamless integrations for AWS, Google Cloud, and Microsoft Azure. This flexibility allows users to leverage Sumo Logic’s capabilities regardless of their existing cloud infrastructure.

In summary, Sumo Logic is a comprehensive, AI-driven analytics solution ideal for businesses looking to enhance their IT and security operations through data-driven insights and real-time monitoring. Its flexible deployment options and scalable pricing model make it accessible for various business sizes and sectors.

Wazuh is an enterprise-ready platform used for security monitoring. It is a free and open-source platform that is used for threat detection, incident response and compliance, and integrity monitoring. Wazuh is capable of protecting workloads across virtualized, on-premises, containerized, and cloud-based environments.

It consists of an endpoint security agent and a management server. Additionally, Wazuh is fully integrated with the Elastic Stack, allowing users the ability to navigate through security alerts via a data visualization tool.

  • Wazuh’s agent can run on many different platforms, and is lightweight. It can successfully perform the tasks needed to detect threats in order to trigger responses automatically.
  • Wazuh manages the agents, can analyze agent data, and can scale horizontally.
  • Elastic Stack is where alerts are indexed and stored.

Wazuh Capabilities

Some of Wazuh’s most notable capabilities include:

  • Intrusion detection: Wazuh’s agents can detect hidden files, cloaked processes, or unregistered network listeners, as well as inconsistencies in system call responses. Wazuh’s server component uses a signature-based approach to intrusion detection, using its regular expression engine to analyze collected log data and look for indicators of compromise.

  • Log data analysis: Wazuh can read operating system and application logs, and securely forward them to a central manager for rule-based analysis and storage.

  • Integrity monitoring: File integrity monitoring can help identify changes in content, ownership, permissions, and attribute of files. Wazuh’s file integrity monitoring can be used in conjunction with threat intelligence.

  • Vulnerability detection: Wazuh agents can identify well-known vulnerable software so you can see where your weak spots are and take action before an attack can exploit them.

  • Configuration assessment: System and application configurations are monitored to make sure they are compliant with security policies. Periodic scans are used to detect applications that are known to be vulnerable, insecurely configured, or unpatched.
  • Incident response: Wazuh responds actively when active threats need to be addressed. It can perform countermeasures like blocking access to a system when a threat source is identified.

  • Regulatory compliance: Wazuh includes the security controls required to be compliant with industry regulations and standards.

  • Cloud security: Wazuh’s light-weight and multi-platform agents are commonly used to monitor cloud environments at the instance level. In addition, Wazuh helps monitor cloud infrastructure at an API level.

  • Security for containers: With Wazuh, you have increased security visibility into hosts and containers, allowing for easier detection of threats, anomalies, and vulnerabilities.

Wazuh Benefits

Some of the most valued benefits of Wazuh include:

  • No vendor lock-in
  • No license costs
  • Uses lightweight, multi-platform agents
  • Free community support

Wazuh Offers

  • Annual support and maintenance
  • Assistance with deployment and configuration
  • Training and instructional hands-on courses

Reviews From Real Users

"It's very easy to integrate Wazuh with other environments, cloud applications, and on-prem applications. So, the advantage is that it's easy to implement and integrate with other solutions." - Robert C., IT Security Consultant at Microlan Kenya Limited

The MITRE ATT&CK correlation is most valuable.” - Chief Information Security Officer at a financial services firm

Buyer's Guide
Sumo Logic Security vs. Wazuh
October 2024
Free Report: Sumo Logic Security vs. Wazuh
Find out what your peers are saying about Sumo Logic Security vs. Wazuh and other solutions. Updated: October 2024.
DOWNLOAD NOW
814,649 professionals have used our research since 2012.
See our Sumo Logic Security vs. Wazuh report.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.