Logpoint vs Wazuh Comparison 2024

Logpoint

Wazuh

Logpoint

Read 20 Logpoint reviews

1,715 views|737 comparisons

Wazuh

Read 38 Wazuh reviews

38,600 views|20,925 comparisons

Comparison Buyer's Guide

Download the complete report

Buyer's Guide

Logpoint vs. Wazuh

April 2024

Executive Summary

Updated on Jul 20, 2023

We performed a comparison between LogPoint and Wazuh based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.

Features: LogPoint is noted for its advanced technology and extensive log-collection, parsing, and analysis mechanisms. Wazuh stands out for its effortless integration, excellent log monitoring capabilities, and ELK-based investigation.LogPoint can improve its dashboard customization, resource efficiency, network hierarchy diagrams, and agent deployment. Wazuh needs improvements in event source coverage, threat intelligence integration, and real-time monitoring of Unix systems.
Service and Support: LogPoint's customer service receives high marks for its exceptional technical support and responsive engineers, but some users reported delays in receiving help from higher-level support. Wazuh's customer service is generally deemed satisfactory, and many customers noted that they could easily find answers from community forums.
Ease of Deployment: The complexity of LogPoint's initial setup can range from complex and time-consuming to fast and easy, depending on the user's experience and the organization’s size. Some users said that Wazuh’s setup is easy and fast, while others perceived it as complicated and said it required a significant amount of time.
Pricing: LogPoint's fixed pricing model is seen as cost-effective and competitive. Wazuh is a cost-effective option as it is open-source and completely free to acquire.
ROI: LogPoint makes costs more predictable and enables companies to generate revenue through security operation services. Wazuh's MSP program and partnerships offer opportunities to generate revenue from the platform.

Conclusion: Based on user feedback, LogPoint is the preferred product over Wazuh. LogPoint stands out for its comprehensive and advanced technology, utilizing machine learning to monitor endpoints and user activity. It offers superior dashboards, a user-friendly interface, and valuable features like AI technology, comprehensive data gathering, log parsing, search capabilities, centralization, support for onboarding applications, and combined SIEM and SOAR functionality. LogPoint also provides a fixed pricing model, ensuring transparency and predictability in annual expenses. Users have also highly praised LogPoint's customer service and support for their prompt solutions and responsiveness.

To learn more, read our detailed Logpoint vs. Wazuh Report (Updated: April 2024).

Download the complete report

772,649 professionals have used our research since 2012.

Featured Review

Anonymous User

Security Manager at a tech vendor

It was easy to use and helpful for compliance, but we did have some memory and performance issues

The most beneficial was being able to prove, with proper reports, that from a compliance perspective, the company is in control. The service part... Read more →

Md Salim Hossain Hossain

Cyber Digital Transformation Engineer at OneWorldInfoTech

An open-source platform to integrate various products

Quotes From Members

We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:

Pros

"It is an AI technology because it is using machine learning technology. So far, there is nothing better out there for UEBA in terms of monitoring endpoints and user activity. It is using machine learning language, so it is right at the top. It provides that capability and monitors all the activities. It devises a baseline and monitors if there is any deviation from the baseline.""The flexibility of the search feature and the solution's analytics features are the most valuable parts of the solution.""The solution offers excellent reporting features. Our customers have been satisfied that they have been able to meet their compliance needs by giving them a standard report.""The product is easy to use.""The most beneficial was being able to prove, with proper reports, that from a compliance perspective, the company is in control. The service part of LogPoint did modifications or did some additional work to have the proper reports defined.""The most valuable feature of LogPoint is that they have the SIEM and SOAR combined in one solution. They are not on a separate platform.""They basically charge you in a better way.""The solution's user interface is quite simple, and the integration is better than other products."

More Logpoint Pros →

"It's stable.""Integrates with various open-source and paid products, allowing for flexibility in customization based on use cases.""The product’s interface is intuitive.""I like the features we use, including malware detection, inventory, detection of hidden processes, and activity logs. Inventory is probably the most important feature. It tells us when processes and packages were installed and what they are, which is helpful.""It is excellent in terms of visualization and indexing services, making it a powerful tool for malware detection.""Good for monitoring, active response, and for vulnerabilities.""The most valuable feature of Wazuh is the ELK for doing an investigation.""Wazuh's most beneficial features for our security needs are flexibility, built-in rules, integration capabilities, and documentation."

More Wazuh Pros →

Cons

"Sometimes, the product is not stable.""LogPoint can improve its dashboards. We are not able to customize the dashboard when creating them. They only have preset dashboards which do not have exactly what we are looking for.""What could be improved in LogPoint is its UI because it's less friendly to users than LogRhythm. The UI could be more aesthetically appealing to users. It's completely outdated.""The thing that makes it a little bit challenging is when you run into a situation where you have logs that are not easily parsable. If a log has a very specific structure, it is very easy to parse and create a parser for it, but if a log has a free form, meaning that it is of any length or it can change at any time, handling such a log is very challenging, not just in LogPoint but also in everything else. Everybody struggles with that scenario, and LogPoint is also in the same boat. One-third of logs are of free form or not of a specific length, and you can run into situations where it is almost impossible to parse the log, even if they try to help you. It is just the nature of the beast.""Log management could be better because transporting the log from a password to the client system takes time.""The solution should offer more integrations and third-party solutions like incident response platforms or allow access to third-party big data""In terms of functionality, it is very good. The only issue is the documentation. Its documentation should be improved.""One of the things we faced last year was that we had some memory issues with the server running. We were running them as virtual services, and we were facing some performance issues. Back then, there were some things that had already been solved at the end, but one of the small issues we had was that it was quite memory-consuming. After one upgrade that we did, we faced some performance issues."

More Logpoint Cons →

"A lack of certain features creates limitations.""The only challenge we faced with Wazuh was the lack of direct support.""The computing resources are consuming and do not make sense.""Log data analysis could be improved. My IT team has been looking for an alternative because they want better log data for malware detection. We are also doing more container implementation also, so we need better container security, log data analysis, auditing and compliance, malware detection, etc.""A more structured approach, perhaps with modular UI components, to facilitate easier integration and navigation within the Wazuh platform for custom integrations would be beneficial.""Alerts should be specific rather than repeatedly triggered by integrating multiple factors. This issue needs improvement to create a more efficient alert system.""The technical support can be improved. Wazuh has some bugs that need to be fixed. It would be good if we can have automation with respect to incidence responses.""Wazuh is missing many things that a typical SIEM should have."

More Wazuh Cons →

Pricing and Cost Advice

"For a hundred user deployment the cost is about $10,000. The next year it would be the same because it's a subscription-based license. There are separate costs as well, for example, if a customer asks for training for their staff."

"Our licensing fees are about $10,000 USD per month, which I think is fair."

"It's getting more expensive, which is one of the reasons we're looking around just to see if there's anything better value."

"LogPoint seemed like it was a good product, but it was expensive and there wasn't any room to move the pricing when customers needed a lower-costing solution."

"It has a fixed price, which is what I like about LogPoint. I bought the system and paid for it, and I pay maintenance. It is not a consumption model. Most SIEMs or most of the log management systems are consumption-based, which means that you pay for how many logs you have in the system. That's a real problem because logs can grow very quickly in different circumstances, and when you have a variable price model, you never know what you're going to pay. Splunk is notoriously expensive for that reason. If you use Splunk or QRadar, it becomes expensive because there are not just the logs; you also have to parse the logs and create indexes. Those indexes can be very expensive in terms of space. Therefore, if they charge you by this space, you can end up paying a significant amount of money. It can be more than what you expect to pay. I like the fact that LogPoint has a fixed cost. I know what I'm going to pay on a yearly basis. I pay that, and I pay the maintenance, and I just make it work."

"It was on a yearly basis at about $100K. It was not a huge environment. We were running it on our own virtual server environment, which, of course, had a cost. There was hardware and some energy cost, and then there were Microsoft Windows licenses for servers. That's all, but there was nothing in comparison to the licensing costs."

"My company used to pay for LogPoint costs annually. It's a cost-effective solution. I'm not part of the Finance team, though, so I'm not sure exactly what the licensing fee is or what license my company had."

"It's less expensive than the competitors. The Logpoint marketing team is very accommodating and client-friendly. They offer very good reductions in price. They are pretty good in this aspect. They are transparent in their licensing and pricing."

More Logpoint Pricing and Cost Advice →

"Wazuh is open-source, so I think it's an option for a small organization that cannot go for enterprise-grade solutions like Splunk."

"There is not a license required for Wazuh."

"Wazuh is open-source, but you must consider the total cost of ownership. It may be free to acquire, but you spend a lot of time and effort supporting the product and getting it to a point where it's useful."

"Wazuh is open-source, therefore it is free. You can purchase support for $1,000 a year."

"Wazuh is totally free and open source. There are no licensing costs, only support costs if you need them."

"Wazuh has a community edition, and I was using that. It's free and open source."

"The current pricing is open source."

"Wazuh is free and open source."

More Wazuh Pricing and Cost Advice →

See Which Vendors Are Best For You

Use our free recommendation engine to learn which Log Management solutions are best for your needs.

See Recommendations

772,649 professionals have used our research since 2012.

Questions from the Community

What do you like most about LogPoint?

Top Answer:The solution is user-friendly.

Read all 19 answers →

What is your experience regarding pricing and costs for LogPoint?

Top Answer:The product should provide a perpetual license.

Read all 14 answers →

What needs improvement with LogPoint?

Top Answer:Logpoint is not flexible. Its documentation is not user-friendly.

Read all 19 answers →

What do you like most about Wazuh?

Top Answer:Integrates with various open-source and paid products, allowing for flexibility in customization based on use cases.

Read all 28 answers →

What needs improvement with Wazuh?

Top Answer:I have built some rules that produce duplicate alerts two or three times. Therefore, these rules should be consolidated. Alerts should be specific rather than repeatedly triggered by integrating… more »

Read all 28 answers →

What is your primary use case for Wazuh?

Top Answer:We use Wazuh for the onboarding of both Windows and Linux machines, as well as for firewall and SIM configuration. The IP address is automatically blocked if a server has multiple wrong passwords.

Read all 26 answers →

Ranking

29th

out of 95 in Log Management

Views

1,715

Comparisons

737

Reviews

Average Words per Review

655

Rating

7.1

2nd

out of 95 in Log Management

Views

38,600

Comparisons

20,925

Reviews

Average Words per Review

479

Rating

7.6

Comparisons

IBM Security QRadar vs. Logpoint

Compared 22% of the time.

Elastic Security vs. Logpoint

Compared 14% of the time.

Rapid7 InsightIDR vs. Logpoint

Compared 10% of the time.

Microsoft Sentinel vs. Logpoint

Compared 8% of the time.

LogRhythm SIEM vs. Logpoint

Compared 6% of the time.

More Logpoint Competitors →

Elastic Security vs. Wazuh

Compared 15% of the time.

Security Onion vs. Wazuh

Compared 14% of the time.

Splunk Enterprise Security vs. Wazuh

Compared 10% of the time.

AlienVault OSSIM vs. Wazuh

Compared 10% of the time.

Graylog vs. Wazuh

Compared 6% of the time.

More Wazuh Competitors →

Learn More

Logpoint

Wazuh

Overview

Logpoint is a cutting-edge security information and event management (SIEM) solution that is designed to be intuitive and flexible enough to be used by an array of different businesses. It is capable of expanding according to its users' needs.

Benefits of Logpoint

Some of the benefits of using Logpoint include:

Unifies data logs: Logpoint creates a single system of classification for collected data. It makes it easy for users to search for and find data, which aids users when they are creating reports or alerts. Users can conserve resources while at the same time seeing a rise in the efficiency of their business operations.

Intuitive solution design: Logpoint is designed so that anyone can utilize all of its features, even if they are not an expert in network security. Logpoint’s UI is simple enough that users can utilize it without undergoing extensive training.

Highly flexible: Logpoint is designed so that users can scale it linearly to accommodate projects that are large and complex. This allows users to expand the scope of their projects according to their needs without worrying that their infrastructure won’t be able to handle the increase in size. The solution’s security features can be deployed both on the cloud and in a physical environment.

Simple role-based access security: Logpoint allows administrators to employ Microsoft’s active directory (AD) and a Lightweight Directory Access Protocol to manage user access. These can help administrators protect their systems from being abused or otherwise harmed by bad actors.

Reviews from Real Users

Logpoint is a security and management solution that stands out among its competitors for a number of reasons. Two major ones are its data gathering and artificial intelligence (AI) capabilities. Logpoint enables users to not only gather the data, but also to maximize both the amount of data that can be gathered and its usefulness. It removes many of the challenges that users may face in data collection. The solution allows users to set rules for collection and then it pulls information from sources that meet the rules that have been set. This data is then broken into manageable segments and ordered. Users can then analyze these ordered segments with ease. Additionally, LogPoint utilizes both machine learning and AI technology. Users gain the ability to protect themselves from and if necessary resolve emerging threats as soon as they arise. The AI sets security parameters for a user’s system. These act as a baseline that are triggered and notify the user if anything deviates from the rules that it set up.

The chief infrastructure & security officer at a financial services firm writes, “It is a very comprehensive solution for gathering data. It has got a lot of capabilities for collecting logs from different systems. Logs are notoriously difficult to collect because they come in all formats. Logpoint has a very sophisticated mechanism for you to be able to connect to or listen to a system, get the data, and parse it. Logs come in text formats that are not easily parsed because all logs are not the same, but with Logpoint, you can define a policy for collecting the data. You can create a parser very quickly to get the logs into a structured mechanism so that you can analyze them.”

A. Secca., a Cyber Security Analyst at a transportation company, writes, “It is an AI technology because it is using machine learning technology. So far, there is nothing better out there for UEBA in terms of monitoring endpoints and user activity. It is using machine learning language, so it is right at the top. It provides that capability and monitors all of the user’s activities. It devises a baseline and monitors if there is any deviation from the baseline.”

Wazuh is an enterprise-ready platform used for security monitoring. It is a free and open-source platform that is used for threat detection, incident response and compliance, and integrity monitoring. Wazuh is capable of protecting workloads across virtualized, on-premises, containerized, and cloud-based environments.

It consists of an endpoint security agent and a management server. Additionally, Wazuh is fully integrated with the Elastic Stack, allowing users the ability to navigate through security alerts via a data visualization tool.

Wazuh’s agent can run on many different platforms, and is lightweight. It can successfully perform the tasks needed to detect threats in order to trigger responses automatically.
Wazuh manages the agents, can analyze agent data, and can scale horizontally.
Elastic Stack is where alerts are indexed and stored.

Wazuh Capabilities

Some of Wazuh’s most notable capabilities include:

Intrusion detection: Wazuh’s agents can detect hidden files, cloaked processes, or unregistered network listeners, as well as inconsistencies in system call responses. Wazuh’s server component uses a signature-based approach to intrusion detection, using its regular expression engine to analyze collected log data and look for indicators of compromise.
Log data analysis: Wazuh can read operating system and application logs, and securely forward them to a central manager for rule-based analysis and storage.
Integrity monitoring: File integrity monitoring can help identify changes in content, ownership, permissions, and attribute of files. Wazuh’s file integrity monitoring can be used in conjunction with threat intelligence.
Vulnerability detection: Wazuh agents can identify well-known vulnerable software so you can see where your weak spots are and take action before an attack can exploit them.
Configuration assessment: System and application configurations are monitored to make sure they are compliant with security policies. Periodic scans are used to detect applications that are known to be vulnerable, insecurely configured, or unpatched.
Incident response: Wazuh responds actively when active threats need to be addressed. It can perform countermeasures like blocking access to a system when a threat source is identified.
Regulatory compliance: Wazuh includes the security controls required to be compliant with industry regulations and standards.
Cloud security: Wazuh’s light-weight and multi-platform agents are commonly used to monitor cloud environments at the instance level. In addition, Wazuh helps monitor cloud infrastructure at an API level.
Security for containers: With Wazuh, you have increased security visibility into hosts and containers, allowing for easier detection of threats, anomalies, and vulnerabilities.

Wazuh Benefits

Some of the most valued benefits of Wazuh include:

No vendor lock-in
No license costs
Uses lightweight, multi-platform agents
Free community support

Wazuh Offers

Annual support and maintenance
Assistance with deployment and configuration
Training and instructional hands-on courses

Reviews From Real Users

"It's very easy to integrate Wazuh with other environments, cloud applications, and on-prem applications. So, the advantage is that it's easy to implement and integrate with other solutions." - Robert C., IT Security Consultant at Microlan Kenya Limited

“The MITRE ATT&CK correlation is most valuable.” - Chief Information Security Officer at a financial services firm

Sample Customers

AP Pension, Copenhagen Airports, KMD, Terma, DISA, Danish Crown, Durham City Council, Game, TopDanmark, Lahti Energia, Energi Midt, Synoptik, Eissmann Group Automotive, Aligro, CG50...

Information Not Available

Top Industries

REVIEWERS

Government27%

Computer Software Company18%

Comms Service Provider18%

Financial Services Firm18%

VISITORS READING REVIEWS

Educational Organization62%

Computer Software Company7%

Comms Service Provider4%

Manufacturing Company3%

REVIEWERS

Computer Software Company25%

Comms Service Provider18%

Security Firm14%

Financial Services Firm11%

VISITORS READING REVIEWS

Computer Software Company17%

Comms Service Provider8%

Government7%

Financial Services Firm7%

Company Size

REVIEWERS

Small Business62%

Midsize Enterprise14%

Large Enterprise24%

VISITORS READING REVIEWS

Small Business16%

Midsize Enterprise67%

Large Enterprise17%

REVIEWERS

Small Business54%

Midsize Enterprise28%

Large Enterprise18%

VISITORS READING REVIEWS

Small Business33%

Midsize Enterprise20%

Large Enterprise47%

Buyer's Guide

Logpoint vs. Wazuh

April 2024

Free Report: Logpoint vs. Wazuh

Find out what your peers are saying about Logpoint vs. Wazuh and other solutions. Updated: April 2024.

DOWNLOAD NOW

772,649 professionals have used our research since 2012.

Logpoint is ranked 29th in Log Management with 20 reviews while Wazuh is ranked 2nd in Log Management with 38 reviews. Logpoint is rated 7.4, while Wazuh is rated 7.4. The top reviewer of Logpoint writes "Good technical support but it is complex to use and resource-heavy". On the other hand, the top reviewer of Wazuh writes "It integrates seamlessly with AWS cloud-native services". Logpoint is most compared with IBM Security QRadar, Elastic Security, Rapid7 InsightIDR, Microsoft Sentinel and LogRhythm SIEM, whereas Wazuh is most compared with Elastic Security, Security Onion, Splunk Enterprise Security, AlienVault OSSIM and Graylog. See our Logpoint vs. Wazuh report.

See our list of best Log Management vendors and best Security Information and Event Management (SIEM) vendors.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.

Logpoint vs Wazuh comparison