We performed a comparison between Splunk Cloud Platform and Wazuh based on real PeerSpot user reviews.
Find out in this report how the two Data Visualization solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It's made searching for data easier. Users like it. We're still in the migration process, but overall, it's a lot easier to use."
"The Splunk search is powerful compared to similar solutions. We get millions of data points within seconds."
"The most valuable feature of Splunk Cloud Platform is its flexibility and readiness because it's already prebuilt, and everything is click-to-go."
"The most valuable feature for me is the flexibility of being able to send the log to the https endpoint."
"The most valuable feature is we don't have to deal with any back-end server maintenance because the solution is cloud-based."
"Splunk Cloud Platform's search modes are a powerful feature."
"Not having to manage Splunk Cloud's infrastructure is valuable."
"Its monitoring is completely automated."
"Wazuh's best features are syscheck, its ability to immediately resolve vulnerabilities, and that it's open source."
"Wazuh automatically scans the host for CIS benchmarks for the latest updates and vulnerabilities and gives a host score. It provides a percentage of perceived risk due to of non patches or any missing patches on that work."
"I like Wazuh because it is a lot like ELK, which I was already comfortable with, so I didn't have to learn from scratch."
"I find the PCI DSS feature the most valuable, along with the feature that monitors the compliance of Windows and the CIS benchmarks on other devices like Unix or Linux systems."
"Integrates with various open-source and paid products, allowing for flexibility in customization based on use cases."
"The MITRE ATT&CK correlation is most valuable."
"It is excellent in terms of visualization and indexing services, making it a powerful tool for malware detection."
"We use it to find any aberration in our endpoint devices. For example, if someone installs a game on their company laptop, Wazuh will detect it and inform us of the unauthorized software or unintended use of the devices provided by the company."
"Support could be improved."
"The administration could use improvement. We have to rely on support more often than we're used to."
"In the case of knowledge objects, even a Splunk admin does not have access to delete them. If we want to remove a knowledge object, we need to contact Splunk support and raise a case. After that, they delete it. They should give us access to delete knowledge objects."
"Every time they launch new versions, we experience a few bugs. The most recent version had a couple of bugs in the databases. We contacted the vendor and got assistance solving these bugs, so the environment is more stable."
"Splunk Cloud could improve by having pre-defined templates. It has very good design views, but there is no predefined template. You have to define your own. If they could add predefined templates for different use cases."
"Splunk Cloud Platform should improve its integrations and consider multiple integrations or direct integration with other platforms like Microsoft Azure, Google Cloud, or AWS."
"The dashboards should be easier to customize."
"When it comes to the integrations with the other platforms, there is a little bit of a lag in the observability part, making it an area where improvements are required."
"A more structured approach, perhaps with modular UI components, to facilitate easier integration and navigation within the Wazuh platform for custom integrations would be beneficial."
"Its configuration process is time-consuming."
"Wazuh should come up with more in-built rules and integrations for the cloud."
"There could be a hardware monitoring tool for the solution."
"The computing resources are consuming and do not make sense."
"The tool does not provide CTI to monitor darknet."
"The tool doesn't detect anomalies or new environments."
"Wazuh has a drawback with regard to Unix systems. The solution does not allow us to do real-time monitoring for Unix systems. If usage increases, it would be a heavy fall on the other SIEM solutions or event monitoring solutions."
Splunk Cloud Platform is ranked 3rd in Data Visualization with 36 reviews while Wazuh is ranked 2nd in Log Management with 38 reviews. Splunk Cloud Platform is rated 8.0, while Wazuh is rated 7.4. The top reviewer of Splunk Cloud Platform writes "Does not require backend maintenance, is easily integrated and utilized". On the other hand, the top reviewer of Wazuh writes "It integrates seamlessly with AWS cloud-native services". Splunk Cloud Platform is most compared with Splunk Enterprise Security, Fortinet FortiAnalyzer, AppInsights, Check Point Security Management and Panther, whereas Wazuh is most compared with Elastic Security, Security Onion, AlienVault OSSIM, Splunk Enterprise Security and Graylog. See our Splunk Cloud Platform vs. Wazuh report.
We monitor all Data Visualization reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.