Gurucul UEBA Reviews

Name: Gurucul UEBA
Brand: Gurucul
Rating: 3.6 (4 reviews)

3.6 out of 5

4 reviews
75% willing to recommend

146 followers

What is Gurucul UEBA?

Threats are a moving target. Determined and persistent threat actors purposely stretch out their activity across weeks or even months, especially when most SIEM and XDR solutions are incapable of piecing together events across time. Even worse, is that these solutions primarily use rule-based Machine Learning, which is essentially pattern matching. This makes them especially ineffective in detecting new attacks and/or variants, which are highly successful in breaching organizations. Discover how Gurucul UEBA security can help your enterprise.

Get the User Entity Behavior Analytics (UEBA) Buyer's Guide and find out what your peers are saying about Gurucul UEBA, Splunk User Behavior Analytics, Exabeam and more!

Gurucul UEBA is the #7 ranked solution in top User Entity Behavior Analytics (UEBA) solutions. PeerSpot users give Gurucul UEBA an average rating of 7.2 out of 10. Gurucul UEBA is most commonly compared to Splunk User Behavior Analytics: Gurucul UEBA vs Splunk User Behavior Analytics. Gurucul UEBA is popular among the large enterprise segment, accounting for 61% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 19% of all views.

Buyer's Guide

User Entity Behavior Analytics (UEBA)

March 2025

Get the category report

Helped 839,422 peers since 2012

Featured Gurucul UEBA reviews

Ravi Shekharan

Manager at a comms service provider with 10,001+ employees

Regarding the prioritization of threats, Gurucul UEBA needs to enhance its alert severity assignment process within the system. This is one area where Gurucul UEBA could improve. Additionally, it would be beneficial if the tool itself could provide or assign user-based or asset-based CI ratings to allow for a more accurate assessment of alert severity. In our environment, we forward these logs, events, and alerts to SIM, where the CI rating is already present. Therefore, if we need to closely investigate a UEBA case directly, it becomes problematic. Gurucul UEBA should proactively incorporate asset-based or user-based CI severity into its design. Gurucul UEBA needs to be more user-friendly. I would like Gurucul UEBA to be able to integrate with legacy-based identity systems and systems that are performing network-based access control. This would require additional integration and playbook models.

Read full review

reviewer2506872

Security Specialist - UEBA SIEM Admin at IBM

For improvement, I have requested three enhancement tickets, which are already lodged with the Gurucul support team. The first request is to add a visualization option in reports for charts or graphs. I have also requested new dashboard features. In the query box, there's a bug where taking an attribute at the end does not return data, but placing it elsewhere does. The support system could be more equipped.

Read full review

reviewer1557474

Security Architect at Check Point

Scalability is good. You can say for on-prem analytics, building the data lake, and a number of resources that have been used in an on-prem kind of deployment, it is tremendous. If you are moving away from an on-prem, you will get the scale on-demand on a cloud. But investment with the customer and support in terms of the hardware is comparatively a bit higher. But you always need to come back to the ROI, how it would be beneficial, what scale you're looking forward to, and so on. It's probably better to look at a hybrid environment if you're considering the higher side.

Read full review

Gurucul UEBA mindshare

As of March 2025, the mindshare of Gurucul UEBA in the User Entity Behavior Analytics (UEBA) category stands at 4.0%, up from 2.6% compared to the previous year, according to calculations based on PeerSpot user engagement data.

User Entity Behavior Analytics (UEBA)

Key learnings from peers

Last updated Feb 23, 2025

Valuable Features

Gurucul UEBA's most valuable features include dynamic rule creation, comprehensive categorization of devices, and customizable dashboards. It offers flexibility with its Hadoop platform. Users value the smooth and fast search engine that allows data retrieval for up to three months, enhancing investigations through historical data analysis. The extensive categorization aids in managing Active Directory, while dashboards help in tracking deviations from normal user behavior and examining user activity over six months.

"If you are genuinely looking for a UEBA solution, you should choose Gurucul confidently if your need is strictly UEBA."
"I appreciate the comprehensive categorization of devices based on their intended use, such as those for DNS."
"The most valuable feature of Gurucul is the ability to customize and it is on the Hadoop platform that has a lot of flexibility."

Room for Improvement

Gurucul UEBA requires improved stability and enhanced online documentation to better educate end users. Users highlight the need for refinement in threat prioritization and alert severity assignment. Integration with legacy identity systems and network-based access control is desired. Asset-based or user-based CI ratings should be incorporated for accuracy. Users also mention issues with report visualization and dashboard features, along with a bug in the query box, suggesting the support system be more equipped.

"Technical support is good but can improve. I would rate it six to seven out of ten. The main issue is response time, which can take three to four hours even for simple queries."
"Regarding the prioritization of threats, Gurucul UEBA needs to enhance its alert severity assignment process within the system."
"Gurucul can improve on the online documentation. They should educate the end users more to allow them to do everything themselves."

Pricing

"The price of Gurucul is competitive."
"The price is fair. In fact, I believe it was on the cheaper side when compared to the competition."

Popular Use Cases

Gurucul UEBA is primarily used to monitor user behavior, detect deviations such as unusual activities, unauthorized logins, and policy violations. Organizations executed proof of concepts and deployed customized use cases for customer projects. It replaced SIM tools for more accurate user behavior analytics and persona development. Entities implemented diverse models to meet specific needs, enhancing security monitoring by identifying non-compliant activities and automatic flagging. Custom case creation based on behaviors is deemed easy.

Service and Support

Customer support from Gurucul UEBA is considered adequate with room for enhancement. Many express concerns about response times and suggest better documentation of resolved issues, including comprehensive articles and white papers. Response times are often slow, taking hours for simple inquiries. Users appreciate that support staff understand their work but recommend improvements in efficiency and documentation for better access to information during issue resolution.

Deployment

Gurucul UEBA's initial setup often necessitates vendor assistance due to complexity and manual customizations. Users find management user-friendly, yet experience is beneficial for implementation. Some report a straightforward process completed in days with multiple personnel required, reflecting policy-related hardening requirements. Deployment schedules can span weeks, covering server allocation, integration, and client handover. For single-node installations, completion is possible within a day, while multi-tenant setups may demand additional time.

Scalability

Gurucul UEBA offers impressive scalability, excelling in both on-prem and cloud environments with simplified transition to SaaS. While requiring higher investment in hardware, organizations find value in its scalable licenses and on-demand capabilities. Implementations can seamlessly scale nodes and adapt to various deployments, receiving high ratings for scalability.

Stability

Gurucul UEBA experiences mixed reactions regarding stability. Some environments report issues with features and intermittent login problems, affecting user access. Others find it quite reliable, without downtime concerns. Ratings vary, with assessments ranging from six out of ten due to login inconsistency, to nine out of ten for lack of downtime. Stability fluctuates depending on individual experiences within different environments.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our User Entity Behavior Analytics (UEBA) Buyer's Guide for additional reliable information.

Top industries

By visitors reading reviews

Computer Software Company

19%

Healthcare Company

Financial Services Firm

Government

Manufacturing Company

Non Profit

Educational Organization

Comms Service Provider

Recruiting/Hr Firm

Insurance Company

University

Real Estate/Law Firm

Photography Company

International Affairs Institute

Pharma/Biotech Company

Energy/Utilities Company

Media Company

Aerospace/Defense Firm

Transportation Company

Outsourcing Company

Recreational Facilities/Services Company

Retailer

Performing Arts

Security Firm

Construction Company

Logistics Company

Hospitality Company

Cloud Solution Provider

Training & Coaching Company

Compare Gurucul UEBA with alternative products

Learn more about Gurucul UEBA

Gurucul UEBA customers

Global semi-conductor company

Product Categories

User Entity Behavior Analytics (UEBA)

Popular Comparisons

Splunk User Behavior Analytics vs Gurucul UEBA

Exabeam vs Gurucul UEBA

See all alternatives

Gurucul UEBA Reviews

What is Gurucul UEBA?

Featured Gurucul UEBA reviews

Gurucul UEBA mindshare

Valuable Features

Room for Improvement

Pricing

Popular Use Cases

Service and Support

Deployment

Scalability

Stability

Top industries

Compare Gurucul UEBA with alternative products

Learn more about Gurucul UEBA

Gurucul UEBA customers

Related questions

Product Categories

Popular Comparisons