Try our new research platform with insights from 80,000+ expert users

Alluvio AppResponse vs Splunk Enterprise Security comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Alluvio AppResponse
Average Rating
8.6
Reviews Sentiment
7.6
Number of Reviews
17
Ranking in other categories
Application Performance Monitoring (APM) and Observability (48th), Network Monitoring Software (59th)
Splunk Enterprise Security
Average Rating
8.4
Reviews Sentiment
7.5
Number of Reviews
318
Ranking in other categories
Log Management (2nd), Security Information and Event Management (SIEM) (1st), IT Operations Analytics (1st)
 

Mindshare comparison

While both are Application Lifecycle Management solutions, they serve different purposes. Alluvio AppResponse is designed for Application Performance Monitoring (APM) and Observability and holds a mindshare of 0.2%, up 0.2% compared to last year.
Splunk Enterprise Security, on the other hand, focuses on Security Information and Event Management (SIEM), holds 9.4% mindshare, down 12.1% since last year.
Application Performance Monitoring (APM) and Observability
Security Information and Event Management (SIEM)
 

Featured Reviews

Ahmet Kilic - PeerSpot reviewer
It's a total solution that gives you end-to-end visibility at all levels
I rate Alluvio AppResponse 10 out of 10. If you work for a financial company especially, you probably face problems on the application side. The problem is easy to identify, but you need to determine the root cause. You can solve issues easily via AppResponse because it shows you all the details of your transactions so you can see the real problem in the database, network, software, etc. For example, you can find the solution easily if you create the right dashboard on your site. If you can't find the problem, you can observe or investigate PCAP.
ROBERT-CHRISTIAN - PeerSpot reviewer
Has many predefined correlation rules and is brilliant for investigation and log analysis
It is very complicated to write your own correlation rules without the help of Splunk support. What Splunk could do better is to create an API to the standard SIEM tools, such as Microsoft Sentinel. The idea would be to make it less painful. In ELK Stack, Kibana is the query language with which you can search log files. I believe Splunk has also a query language in which they search their log files, but once you have identified the log file that you want to use for further security correlation, you want to very quickly transport that into your SIEM tool, such as Microsoft Sentinel. That is something that Splunk could make a little bit less painful because it is a lot of effort to find that log file and forward it. An API with Microsoft Sentinel or a similar SIEM tool would be a good idea.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"When it comes to the ability to scale up the product, this is suitable for small medium and large environments,"
"It's a stable product. Riverbed has invested a significant amount of research and development into it, so it's a solid tool overall."
"AppResponse is a total solution that gives you end-to-end visibility into applications at all levels, from Layer 1 to Layer 7. We can trace all those sections: physical, IP, transport, presentation, application, etc. It gives us the full picture."
"I have found the AppResponse, which is a packet capture solution, very good. It gives you the ability to drill down back in time. You've got all the packets there. You can troubleshoot it later, not immediately. It's very interesting."
"The most valuable feature of Alluvio AppResponse is the actual response time for measuring performance."
"We really like the scalability capabilities."
"You need a packet capture device to perform any type of network monitoring. It helps ensure that network overloads don't happen with alerts allowing for proactive decisions."
"Ability to see end to end user, application, server, and network response time and throughput data."
"Capability to expand the functionality through custom code for data inputs, commands, visualization, alerts, and machine learning."
"The additional vendors we've brought on board, particularly the elastic, have been quite beneficial."
"The technical support has been very good. They are very responsive and have been helpful."
"The end-to-end visibility into our environment that Splunk provides is impressive. We just need to use it better."
"Internal tracking is helpful because we do not like to deal with multiple ticketing systems, and I am not a fan of ServiceNow. We are able to keep everything internal and utilize Enterprise Security."
"The search function for spam is like a google search. You just enter and it will quickly show you the results."
"There are a lot of third-party applications that can be installed."
"I like Splunk's automated threat detection and orchestration capabilities. Splunk offers a single solution for analyzing, aggregating, correlating, monitoring, reporting, visualizing, etc. You can get all of these capabilities in one place. On top of that, it provides a cloud, testing, on-premise, and hybrid solution, giving customers more flexibility for their use cases."
 

Cons

"The AI features should be addressed in respect of the analysis and intelligence that must be supported and delivered in the tool to predigest the large amounts of data."
"Integration between NPM and APM solutions would improve efficiency. There is no agent on the server site related to AppResponse."
"Need to bring back the NetFlow module for AppResponse."
"The pricing is on the higher side of things. If they could lower it, that would be ideal."
"Technical support needs to be more responsive."
"If Alluvio AppResponse reduces its cost, it will be more beneficial for customers to monitor their application and network performance."
"The recent changes in corporate structure may have caused some decrease in support quality."
"The recent changes in corporate structure may have caused some decrease in support quality."
"We'd like to have the number of devices covered under the license to be increased."
"It needs integration with a configuration management solution."
"The configuration had a bit of a learning curve."
"Splunk Enterprise Security is a wonderful solution, however, the background configuration process could be better as the administration process is very complicated."
"They can incorporate the SOAR solution within the actual product so that we do not require two different products, two different installations, and two different pricing methods. In regards to UBA, I am familiar with the UBA that existed two years ago. I am not updated about it today, but two years ago, UBA required such an amount of data that from a cost perspective, it was not worth it. When you compare it to what you get out of the box with Microsoft Sentinel without additional costs, there is no match."
"Splunk could add more ways to manage archiving and storage. There isn't a web interface. You can do this on the SaaS version, but the on-premise platform doesn't have this option. It has other things but no option for remote NAS. I would like to have a personal web interface where I can specify how long logs should be stored. To have this readily available on the web, you need to adjust some settings on the backend. That is tricky."
"I would like to see the asset and identity lookups be more automatic and less manual."
"One thing that I probably dislike the most about the Splunk product is their support."
 

Pricing and Cost Advice

"It is costly for small and medium businesses."
"The licensing model is expensive compared to its competitors, but the service it gives to your business, and the data quality, means that it's worth it."
"The price is a little bit high, especially because we have to pay an import tax."
"The solution is no more expensive than other products."
"The pricing is very complicated, and it is very pricey. You do require a lot of different licenses in order to get a comprehensive solution that is not just the SIEM solution."
"The pricing modules could be improved."
"I believe that Splunk Enterprise Security is worth the price, but it is expensive."
"Splunk Enterprise Security is a bit expensive overall, but it provides good value."
"The tool's pricing model is great. You can choose between workloads or volume."
"Unlike other security tools, Splunk provides a fixed amount of gigabytes per day, and we are required to pay for any additional usage beyond that limit, in addition to our monthly cost."
"It is quite expensive."
"Truly evaluate the data you want to ingest and go slow. Pulling in data that can provide no use to your mission only wastes data against your license."
report
Use our free recommendation engine to learn which Application Performance Monitoring (APM) and Observability solutions are best for your needs.
861,390 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
19%
Computer Software Company
13%
Performing Arts
8%
Energy/Utilities Company
8%
Financial Services Firm
14%
Computer Software Company
14%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Riverbed SteelCentral AppResponse?
The most valuable feature of Alluvio AppResponse is the actual response time for measuring performance.
What is your experience regarding pricing and costs for Riverbed SteelCentral AppResponse?
The pricing of Riverbed Alluvio AppResponse is really high. Very few customers buy Riverbed because many do not have the sufficient budget. Its pricing is comparatively higher than SolarWinds. Rive...
What needs improvement with Riverbed SteelCentral AppResponse?
The reporting models need improvement as most of the time, we have to customize the reports manually. Additionally, a feature similar to SolarWinds AppStack, which provides a holistic view of the i...
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
How does Splunk compare with Azure Monitor?
Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we...
 

Also Known As

Riverbed AppResponse, OPNET SteelCentral AppResponse, ACE Live, OPNET, AppResponse Xpert
No data available
 

Overview

 

Sample Customers

N11.com, OneMain Financial, China Bank, Halkbank, Kaust
Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
Find out what your peers are saying about Alluvio AppResponse vs. Splunk Enterprise Security and other solutions. Updated: May 2023.
861,390 professionals have used our research since 2012.