We performed a comparison between ArcSight Logger and Wazuh based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."ArcSight's robustness is its most valuable feature."
"In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating."
"Some of the most valuable features I really appreciate are the performance, how quick the solution is, and how easy it is to create a query."
"It provides in-depth information on business activities once we log into the system."
"We haven't had any crashes or bugs. It is stable."
"I am impressed with the product's ability to pick up logs. It also has UEBA which has reduced the time to take charge of the events."
"The technical support team is good...It is a scalable solution."
"The most valuable feature is the level of detail that you can see about certain events, even when they do not come up in the console."
"The most valuable features are the modules and metrics."
"Its cost-effectiveness is the most valuable aspect."
"I like Wazuh because it is a lot like ELK, which I was already comfortable with, so I didn't have to learn from scratch."
"The configuration assessment and Pile integrity monitoring features are decent."
"One of the most beneficial features of Wazuh, particularly in the context of security needs, is the machine learning data handling capability."
"The most valuable feature of Wazuh is the ELK for doing an investigation."
"Wazuh's best features are syscheck, its ability to immediately resolve vulnerabilities, and that it's open source."
"It has efficient SCA capabilities."
"ArcSight has been sold two or three times, and the quality has decreased."
"It would be better if the product is cheaper."
"The speed of Logger indexing and searching for certain bugs for some queries that we provide could be improved. It can handle a huge number of logs but it can be improved."
"The console in older versions is not user-friendly."
"I would rate the technical support only 5 out of 10. The technical support is not satisfactory."
"I would like to see better scheduling in the next release of this solution."
"The platform is quite expensive. They should reduce its cost."
"The integration with other systems could be improved."
"While it is scalable, it can suffer from reduced latencies."
"Scalability is a challenge because it is distributed architecture and it uses Elastic DB. Their Elastic DB doesn't allow open source waste application."
"A more structured approach, perhaps with modular UI components, to facilitate easier integration and navigation within the Wazuh platform for custom integrations would be beneficial."
"The tool doesn't detect anomalies or new environments."
"Some features, like alerting, are complex with Wazuh."
"I have yet to find the same capability in Wazuh to get logs from different sources into the system"
"Wazuh needs more security and features, particularly visualization features and a health monitor."
"Integration with Vyara could be better."
ArcSight Logger is ranked 20th in Log Management with 31 reviews while Wazuh is ranked 2nd in Log Management with 38 reviews. ArcSight Logger is rated 7.8, while Wazuh is rated 7.4. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of Wazuh writes "It integrates seamlessly with AWS cloud-native services". ArcSight Logger is most compared with Splunk Enterprise Security, IBM Security QRadar, Elastic Security, LogRhythm SIEM and syslog-ng, whereas Wazuh is most compared with Elastic Security, Security Onion, AlienVault OSSIM, Splunk Enterprise Security and Graylog. See our ArcSight Logger vs. Wazuh report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.