Gurucul UEBA Reviews

Name: Gurucul UEBA
Brand: Gurucul
Rating: 3.3 (3 reviews)

3.3 out of 5

3 reviews
66% willing to recommend

140 followers

What is Gurucul UEBA?

Threats are a moving target. Determined and persistent threat actors purposely stretch out their activity across weeks or even months, especially when most SIEM and XDR solutions are incapable of piecing together events across time. Even worse, is that these solutions primarily use rule-based Machine Learning, which is essentially pattern matching. This makes them especially ineffective in detecting new attacks and/or variants, which are highly successful in breaching organizations. Discover how Gurucul UEBA security can help your enterprise.

Get the User Entity Behavior Analytics (UEBA) Buyer's Guide and find out what your peers are saying about Gurucul UEBA, IBM Security QRadar, Splunk User Behavior Analytics and more!

Gurucul UEBA is the #8 ranked solution in top User Entity Behavior Analytics (UEBA) solutions. PeerSpot users give Gurucul UEBA an average rating of 6.6 out of 10. Gurucul UEBA is most commonly compared to IBM Security QRadar: Gurucul UEBA vs IBM Security QRadar. Gurucul UEBA is popular among the large enterprise segment, accounting for 62% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 16% of all views.

Buyer's Guide

User Entity Behavior Analytics (UEBA)

November 2024

Get the category report

Helped 816,406 peers since 2012

Featured reviews

Ravi Shekharan

Manager at a comms service provider with 10,001+ employees

Regarding the prioritization of threats, Gurucul UEBA needs to enhance its alert severity assignment process within the system. This is one area where Gurucul UEBA could improve. Additionally, it would be beneficial if the tool itself could provide or assign user-based or asset-based CI ratings to allow for a more accurate assessment of alert severity. In our environment, we forward these logs, events, and alerts to SIM, where the CI rating is already present. Therefore, if we need to closely investigate a UEBA case directly, it becomes problematic. Gurucul UEBA should proactively incorporate asset-based or user-based CI severity into its design. Gurucul UEBA needs to be more user-friendly. I would like Gurucul UEBA to be able to integrate with legacy-based identity systems and systems that are performing network-based access control. This would require additional integration and playbook models.

Read full review

reviewer1557474

Security Architect at Check Point

Scalability is good. You can say for on-prem analytics, building the data lake, and a number of resources that have been used in an on-prem kind of deployment, it is tremendous. If you are moving away from an on-prem, you will get the scale on-demand on a cloud. But investment with the customer and support in terms of the hardware is comparatively a bit higher. But you always need to come back to the ROI, how it would be beneficial, what scale you're looking forward to, and so on. It's probably better to look at a hybrid environment if you're considering the higher side.

Read full review

reviewer1676436

CEO at a tech services company with 51-200 employees

I am using Gurucul for FIEM and UEBA. We are providing solutions to our customers using this tool The most valuable feature of Gurucul is the ability to customize and it is on the Hadoop platform that has a lot of flexibility. Gurucul can improve on the online documentation. They should educate…

Read full review

Gurucul UEBA mindshare

As of November 2024, the mindshare of Gurucul UEBA in the User Entity Behavior Analytics (UEBA) category stands at 3.5%, up from 2.4% compared to the previous year, according to calculations based on PeerSpot user engagement data.

User Entity Behavior Analytics (UEBA)

Key learnings from peers

Valuable Features

"I appreciate the comprehensive categorization of devices based on their intended use, such as those for DNS."
"The most valuable feature of Gurucul is the ability to customize and it is on the Hadoop platform that has a lot of flexibility."
"The reporting feature was the key differentiator. I also liked the ability to create dynamic rules in the environment."

Room for Improvement

"Regarding the prioritization of threats, Gurucul UEBA needs to enhance its alert severity assignment process within the system."
"Gurucul can improve on the online documentation. They should educate the end users more to allow them to do everything themselves."
"It could be more stable."