We performed a comparison between Grafana Loki and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature is the capability to set up alerts, which becomes necessary when we need to receive notifications for specific events."
"The most valuable feature of Grafana Loki is the dashboards which are really simple to create."
"I appreciate the capability to process logs from microservices and seamlessly integrate them into Grafana."
"The most valuable feature of the solution is the tool's GUI. The solution's GUI is very user-friendly."
"The effectiveness of filters is pivotal for optimizing the search process and extracting the specific information we need from the extensive log data."
"We are using Grafana Loki as a database for real-time metrics."
"The most valuable features of the solution stem from the fact that it is an open-source tool that is stable and flexible."
"The best feature of Grafana Loki is that it integrates well with our other tool."
"I am satisfied with the support."
"From my experience, the visual aid that it provides is most valuable. There are charts and other means to provide information."
"The best part of Splunk Enterprise Security is its customizable settings."
"The ability to analyze huge amounts of sales data and accurate prediction of sales forecasting is the most valuable feature."
"The reporting aspect is good and it does what I need it to do."
"The flexibility of the solution is quite good."
"Splunk would be my choice for the presentation layer because it comes with inbuilt reports and a dashboard that you can customize."
"The ability to manage large amounts of generated data and to protect all devices from unauthorized use are the most valuable features."
"In Grafana Loki, the creation of metrics is not so easy, making it an area that could be made easier."
"Visualization-wise, Grafana Loki's dashboard looks a little outdated compared to other open-source visualization tools like Chronograf."
"There is a need for some change in the alerting types of the product. In short, a few changes in the alert area are needed due to minor shortcomings."
"My main concern is the recommended production-grade setup. They suggest using tools like Tanka or Jsonnet. They should simplify the process to increase adoption."
"The Docker container partition feature needs improvement as they do not reuse the space and goes into a pending state."
"The product must improve its UI."
"The correlation of requests is not simple in Grafana Loki and can be improved."
"The solution has shortcomings regarding security monitoring-oriented features that need improvement."
"Splunk could be improved by reducing the cost. The cost is one of the biggest challenges for us in keeping to our production requirements."
"The training was mostly sales-focused, like how to monitor your sales. It was hard to then come back from doing the training and try to switch it to a cybersecurity focus because all the training we did was sales oriented. The basic training didn't really touch on any kind of cybersecurity use cases or anything like that. That would have been great to see in the training."
"The monitoring aspect of Splunk could be improved. We have to do some queries to get as much information as CrowdStrike or other solutions provide. If you run a big query, you will see a delay. That is the only concern we have because it will take some time if you query large data sets."
"Licensing costs can be a barrier for those with limited budgets."
"They can incorporate the SOAR solution within the actual product so that we do not require two different products, two different installations, and two different pricing methods. In regards to UBA, I am familiar with the UBA that existed two years ago. I am not updated about it today, but two years ago, UBA required such an amount of data that from a cost perspective, it was not worth it. When you compare it to what you get out of the box with Microsoft Sentinel without additional costs, there is no match."
"The search could be improved. Now, it is a bit difficult to write search queries because they become quite long, then maintaining those long search queries is a quite challenging."
"Splunk can be an expensive solution. Technical support could be improved as well."
"It will be helpful for customers if they can create some real-world cases, and we can find a case study to align with. I know that Splunk has tremendous potential. We only include a tiny piece of it. There is a lot of stuff that we need to learn. If Splunk can provide more real-time examples, that will be helpful for customers."
Grafana Loki is ranked 13th in Log Management with 12 reviews while Splunk Enterprise Security is ranked 1st in Log Management with 230 reviews. Grafana Loki is rated 8.0, while Splunk Enterprise Security is rated 8.4. The top reviewer of Grafana Loki writes "Effective for Logging, recovery from node failures is fast and single UI supports metrics, logs, and even tracing". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Grafana Loki is most compared with Graylog, Wazuh, syslog-ng, Fortinet FortiAnalyzer and Datadog, whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Microsoft Sentinel. See our Grafana Loki vs. Splunk Enterprise Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.