Splunk User Behavior Analytics Competitors and Alternatives

Get our free report covering Darktrace, Cisco, Exabeam, and other competitors of Splunk User Behavior Analytics. Updated: February 2021.
464,369 professionals have used our research since 2012.

Read reviews of Splunk User Behavior Analytics competitors and alternatives

Erik De Decker
Owner & director at Pulsar ICT
Real User
Top 20
Jun 20, 2020
Good processing power, very scalable, and able to handle all data formats

What is our primary use case?

We try to detect malicious files by the logs. The logs are all centralized including all our PCs, our callers, our servers, Linux, windows, Polaris names. We scan everything. Then we have pre-defined specific use cases that allow us to identify if there is an attack on the machine or indirectly by the endpoint. On top of that, we can check with users as we're not directly dealing with the configuration, so we can follow up on the alerts we receive. On top of that, we have the systems in place that allow us to detect if certain inexcusable items are on the system, such as malicious files. We… more »

Pros and Cons

  • "There's lots of processing power. You can actually just add machines to get more performance if you need to. It's pretty flexible and very easy to add another log. It's not like 'oh, no, it's going to be so much extra data'. That's not a problem for the machine. It can handle it."
  • "The solution has quite a steep learning curve. The usability and general user-friendliness could be improved. However, that is kind of typical with products that have a lot of flexibility, or a lot of capabilities. Sometimes having more choices makes things more complex. It makes it difficult to configure it, though. It's kind of a bitter pill that you have to swallow in the beginning and you really have to get through it."

What other advice do I have?

I'm just using it as a customer We tend to use the latest versions of the solution. We try to upgrade it on a regular basis. I'd advise other companies considering implementing the solution to get a team in that knows the product and try to take advantage of their knowledge. It will help reduce the pain of the learning curve. I'd rate the solution eight out of ten. I would not give it a ten because of the steep learning curve. I know what the product is, but many do not, and for them it will be quite difficult to get started without becoming very frustrated in the process.
reviewer1480365
Senior Network Engineer at a comms service provider with 10,001+ employees
MSP
Dec 31, 2020
Very stable with good technical support, but can be quite expensive

What is our primary use case?

We primarily use the solution for email scanning.

Pros and Cons

  • "The technical support on offer is very good."
  • "The solution is pretty expensive."

What other advice do I have?

I'd recommend the solution, however, it depends on what a company needs. Before jumping in, a company needs to ask, themselves questions like: "What's our requirement". That said, for general enterprises, it's a good enough option. For our organization, however, as of next year, we're going to move away from it and deploy with a Cisco-based solution. Overall, I would rate the solution at a seven out of ten.
reviewer900120
IT Specialist at a tech services company with 51-200 employees
Real User
Dec 11, 2019
Advanced analytics has a great overview of user behavior

What is our primary use case?

I'm an IT specialist and we are resellers of Exabeam. We have it deployed as an on-premise demo test cluster for customer POC. We use it mainly for management and for CM use cases to enable an overview of security events as well as user analytics.

Pros and Cons

  • "The advanced analytics has a really great overview of user behavior."
  • "I believe if it were more flexible it would be a better product."

What other advice do I have?

I would recommend the product. I don't have any warnings or anything negative to tell anyone, because there are really no problems with the solution. You can pretty much make it up as you go. I would rate this product an eight out of 10.
Guido Pellillo
Head of Cybersecurity Business Unit at S2E
Real User
Top 20
Nov 30, 2020
Provides a visual representation of attack history, with a nice GUI, but the analysis could be simplified

What is our primary use case?

We are a system integrator and we pose solutions, including this one, to our clients. It is mainly used to reinforce response capabilities with respect to network security.

Pros and Cons

  • "I find it very good in the way that they show the past events, including the attack history."
  • "It would be helpful if they could recognize incidents and simplify the customer's challenge to identify what is happening."

What other advice do I have?

They are currently working on improving their interface by including AI to help simplify things, but it does not work on real-time data. Rather, it works on historical events. This is definitely a product that I can recommend, although I would probably be using it together with a SOC service or somebody else who can manage it properly. I would rate this solution a seven out of ten.
Security7eac
Founder at a tech services company with 1-10 employees
Real User
Mar 26, 2019
Not easy to use and requires notable training, but integrates well with other products

What is our primary use case?

We use it as a SIEM. We're using the enterprise edition.

Pros and Cons

  • "The data collection and the integration with different products are valuable features."
  • "[There is] complexity in maintaining it and managing it. It's not easy to use. It requires a lot of training."

What other advice do I have?

You can use this solution for limited use cases. But for more advanced use cases, there are other solutions which are better than ArcSight. I would rate this solution at five out of ten because of the complexity in maintaining it and managing it. It's not easy to use. It requires a lot of training. It needs better technical support and help with onboarding.
Get our free report covering Darktrace, Cisco, Exabeam, and other competitors of Splunk User Behavior Analytics. Updated: February 2021.
464,369 professionals have used our research since 2012.