We performed a comparison between Splunk Cloud Platform and Wazuh based on real PeerSpot user reviews.
Find out in this report how the two Data Visualization solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Not having to manage Splunk Cloud's infrastructure is valuable."
"We only buy the services we need. We don't have to pay for other things we don't."
"The log search capabilities are very good."
"It's made searching for data easier. Users like it. We're still in the migration process, but overall, it's a lot easier to use."
"Dashboards and alerting are the most valuable features. The dashboards let us see how the system looks in terms of anomalies, and the alerts trigger us to go and look at what possible problems are happening."
"The Splunk search is powerful compared to similar solutions. We get millions of data points within seconds."
"It has end-to-end visibility into our cloud-native environment, which is pretty important for us. About 80% of our infrastructure is on AWS."
"Splunk has sped up our response and reduced the time we spend manually monitoring any logs for ticketing tools or servers. It saves us around two hours daily."
"If they support a solution, it is easy to do an integration."
"One of the most beneficial features of Wazuh, particularly in the context of security needs, is the machine learning data handling capability."
"The deployment is easy and they provide very good documentation."
"I like the cloud-native infrastructure and that it's free. We didn't have to pay anything, and it has the capabilities of many premium solutions in the market. We could integrate all of our services and infrastructure in the cloud with Wazuh. From an integration point of view, Wazuh is pretty good. I had a good experience with this platform."
"I like Wazuh because it is a lot like ELK, which I was already comfortable with, so I didn't have to learn from scratch."
"It offers built-in modules for file integrity and vulnerability management."
"The most valuable features are the modules and metrics."
"It is excellent in terms of visualization and indexing services, making it a powerful tool for malware detection."
"The dashboards should be easier to customize."
"Splunk should offer various options for real-time monitoring."
"The only thing I would say is an issue is the cost. It matches other products. The costs can be justified for the value that we gain. The entire threat analysis stack should come in a bundle. If the cost was matchable with other products I think Splunk would pick up in the market."
"In the case of knowledge objects, even a Splunk admin does not have access to delete them. If we want to remove a knowledge object, we need to contact Splunk support and raise a case. After that, they delete it. They should give us access to delete knowledge objects."
"I have not come across anything that I would consider missing as such. If anything, sometimes we have dashboards that would not go into the dark mode. It is a minor issue, but it is the only thing that I wish was there. The dark mode would definitely help."
"Support is the bigger issue when we have a problem. When we need their help, it takes weeks or months to actually get resolved."
"When one of my customers needs an app, and I am able to find that app on the Splunk base, I have to create a ticket and wait for five days for them to download the app into the cloud environment. That is probably one of the main things. It is painful because I have to wait to get that app in the cloud."
"They can streamline the process of creating custom apps."
"Scalability is a constraint in the on-prem version of Wazuh in terms of the volume of logs we can manage."
"The implementation is very complex."
"Wazuh has a drawback with regard to Unix systems. The solution does not allow us to do real-time monitoring for Unix systems. If usage increases, it would be a heavy fall on the other SIEM solutions or event monitoring solutions."
"Wazuh is missing many things that a typical SIEM should have."
"The biggest part that's missing is threat intelligence. It isn't inbuilt, and if a sudden incident occurs, we don't get that feedback inside the SIEM tool. That's a big gap, I see. It would be better if we could get the threat intelligence feeds integrated with the SIEM tools. That would help us push value solutions to the clients in a big way."
"I think that the next release should be more suitable for large enterprises, because currently they are not because large companies do not rely on open source solutions."
"One area where Wazuh could use some improvement is in its reporting mechanism, especially for high-level management like CSOs and CEOs."
"The computing resources are consuming and do not make sense."
Splunk Cloud Platform is ranked 3rd in Data Visualization with 34 reviews while Wazuh is ranked 2nd in Log Management with 38 reviews. Splunk Cloud Platform is rated 8.0, while Wazuh is rated 7.4. The top reviewer of Splunk Cloud Platform writes "Does not require backend maintenance, is easily integrated and utilized". On the other hand, the top reviewer of Wazuh writes "It integrates seamlessly with AWS cloud-native services". Splunk Cloud Platform is most compared with Splunk Enterprise Security, Fortinet FortiAnalyzer, AppInsights, Check Point Security Management and Panther, whereas Wazuh is most compared with Elastic Security, Security Onion, Splunk Enterprise Security, AlienVault OSSIM and Graylog. See our Splunk Cloud Platform vs. Wazuh report.
We monitor all Data Visualization reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.