We performed a comparison between ExtraHop Reveal(x) for IT Operations and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out in this report how the two IT Operations Analytics solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature is the way it handles data, from Layer 2 up to Layer 7. We can see everything that happens in the network."
"Wire data analytics."
"This solution is more applications reference architecture focused. Its benefit is that it specializes in that space."
"Not only can you look at the protocol import level. It also has a live PCAP analysis."
"The most valuable features are security detections, perimeter detection, dashboards, and alerts."
"There are many valuable features in this product, but probably the biggest is the customization capability it has."
"Alerts when a server is malfunctioning, monitors external attacks, and takes action to stop spreading viruses."
"Our clients are easily able to modify and evolve their implementations."
"Splunk is quite flexible for our customers. Splunk does not filter from a specific lock, you can define it later."
"The ability to view all of these different logs, then drilling down into specific times or into specific data sources, has proved to be the greatest aspect in decreasing our troubleshooting overhead time."
"Recently, Splunk upgraded to version 9.0.02, which includes excellent data dashboards and visualization effects."
"It provides a lot of analytics with the underlying AI engine, and it is a lot easier than other solutions. There are some products that do automated AI-based detection and drawing up charts, but for network monitoring and all of the monitoring aspects, it is quite a nice tool. It is very convenient for business users because they get more or less a lot of data readily available. If you're familiar with the Splunk query language, you can pretty much do whatever you want."
"Aggregation searches have reduced time and difficulty of identifying trends and conditions which need to reviewed."
"The best part of Splunk Enterprise Security is its customizable settings."
"This solution would be improved if it had the ability to retain data longer."
"I would improve the Rule-Based Access Control (RBAC) by providing granular access control to the data."
"Network visibility is something that needs to be improved."
"They either have to go broad or decide what their bread and butter is and get really good at that."
"We'd like to see a local presence within the region in order to have seamless service whether it's the support, the implementation, or professional services."
"They have a new solution, ExtraHop Reveal(x), and I think it needs improvement."
"I would like Splunk to add more integration. QRadar has many indications with more products than Splunk."
"I love the solution, but I would like to see more accessibility to the machine-learning capabilities that are sprinkled around Splunk."
"Splunk is very expensive. The license is based on the volume of the logs ingested. I was responsible for managing the contract with our service integrator. I don't know the precise details of the competing solution, but I have heard that Splunk is more expensive than others. I don't know what the going rate is on the market, but I think there are at least two competitors that are less expensive. We have experienced a few issues with our service providers in terms of log filtering and ingestion, so we continue to pay a bit more per day for our logs."
"It does not give us permission to implement on-premise so we implement them on the cloud."
"We will receive alerts only for the administrators and deployment servers, but not for all servers."
"Splunk can improve regex/asset analysis as we do not want to crawl until it is done."
"The training was mostly sales-focused, like how to monitor your sales. It was hard to then come back from doing the training and try to switch it to a cybersecurity focus because all the training we did was sales oriented. The basic training didn't really touch on any kind of cybersecurity use cases or anything like that. That would have been great to see in the training."
"Custom visualizations are real hard. While the default visualizations are good, creating enhanced visualizations are complex."
More ExtraHop Reveal(x) for IT Operations Pricing and Cost Advice →
ExtraHop Reveal(x) for IT Operations is ranked 7th in IT Operations Analytics with 8 reviews while Splunk Enterprise Security is ranked 1st in IT Operations Analytics with 228 reviews. ExtraHop Reveal(x) for IT Operations is rated 8.6, while Splunk Enterprise Security is rated 8.4. The top reviewer of ExtraHop Reveal(x) for IT Operations writes "Great for identifying application interdependencies with helpful support but needs better visualizations". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". ExtraHop Reveal(x) for IT Operations is most compared with vRealize Network Insight, NETSCOUT nGeniusONE, ThousandEyes, SolarWinds NPM and Fortinet FortiSIEM, whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Microsoft Sentinel and Elastic Security. See our ExtraHop Reveal(x) for IT Operations vs. Splunk Enterprise Security report.
See our list of best IT Operations Analytics vendors.
We monitor all IT Operations Analytics reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.