We performed a comparison between Orca Security and AWS GuardDuty based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Orca Security offers comprehensive cloud visibility and simplified insights through its patented agentless SideScanning technology. Users like its container security, compliance dashboard, and non-intrusive vulnerability management. AWS GuardDuty stands out for its single pane of glass data collection and the ability to monitor AWS accounts at no additional cost. Orca Security could enhance its intrusion detection, data center compatibility, and integration with non-standard ticketing systems. AWS GuardDuty would benefit from a mobile version and stronger dashboard analytics.
Service and Support: Users praised Orca Security's customer service for their prompt assistance and proactive approach to meeting customer requirements. Users value the team's commitment to enhancing their product. Reviewers also spoke highly of AWS technical support, but some users reported occasional delays when reaching out via phone.
Ease of Deployment: The initial setup of Orca Security is quick and uncomplicated, requiring minimal effort and no ongoing maintenance. AWS GuardDuty is also relatively simple and efficient to set up, although it may vary in complexity based on the architecture and integrations involved.
Pricing: Some Orca Security users find it expensive compared to alternatives like Wiz. At the same time, many think the cost is justified due to the level of visibility and security it offers. AWS GuardDuty offers a competitive pay-go license without any extra charges.
ROI: Orca Security offers an all-inclusive security solution that saves users money and allows them to consolidate tools. It delivers instant results, and minimal training is required. Additionally, Orca Security constantly introduces new features without additional charges. In contrast, AWS GuardDuty enhances an organization's overall security posture, resulting in improved customer trust and potential business prospects.
Comparison Results: Orca Security is favored over AWS GuardDuty. Users appreciate the visibility Orca Security offers and find it easy to gain insight into their environment. Orca Security effectively ranks vulnerabilities and risks and excels in container security. Users complained about AWS GuardDuty's lack of dashboard analytics and mobile app.
"It helps us detect brute-force attacks based on machine learning."
"We use the tool for threat detection. AWS includes AI features as well. AWS GuardDuty gives us reports."
"The out-of-band malware detection from the EBS volumes. It's really cool. No agents or anything needed, it automatically finds and correlates based on malware."
"What we found most valuable in Amazon GuardDuty is its threat detection feature, especially because we were monitoring a huge number of AWS accounts, so we needed a solution that would monitor for any kind of malicious activity. The monitoring aspect of the solution was great because it gave us timely notifications if and when anything happened, and Amazon GuardDuty helped keep us on our toes to make sure we took action right away."
"The product has automated protection powered by AI/ML, which is now far more powerful than before. It uses AI/ML in its detection algorithm, providing fast and quick results."
"The solution will detect abnormalities in the AWS workload and alert us so that we can monitor and take action."
"We have over 1,000 employees, and we monitor their activity through AWS GuardDuty."
"Since our environment is cloud based and accessible from the internet, we like the ability to check where the user has logged in from and what kind of API calls that user is doing."
"With its Cloud Security Posture Management capability, we have the ability to read across all of our cloud-based environments, which includes AWS and Azure. We have visibility into those environments. Seeing all vulnerabilities and configurations is really powerful for us, but ultimately, the ability to use the API to query across the fleet to understand what is the current state, what is the patch level, which ones are potentially exposed for a new CVE that just came out is even more valuable. It allows us to gather really specific intelligence through simple queries."
"Orca provides X-ray vision into everything within the cloud properties, whereas normally, this would require multiple tools."
"Orca gives you great visibility into your assets. It shows you the issues and the things that you need to attend to first, by prioritizing things. You can see a lot of information that is not always visible, even to DevOps, to help you know about the machines and their status. It's very easy to see everything in a single dashboard. That makes it a very useful tool."
"Orca Security has updated its interface, making it more user-friendly. I find it particularly useful as it allows me to easily navigate the dashboard and prioritize actions based on severity and criticality."
"It's for protection. It's an agentless tool. We don't need to install anything at a customer's premises. We can just scan the entire assets in the cloud."
"Orca's platform provides an agentless data collection facility that collects information directly from the cloud using APIs, with zero impact on performance."
"Orca's SideScanning is the biggest feature. It's the 'wow' factor... With Orca's SideScanning, they just need permissions for your account and that makes it so simple."
"Orca's dashboard is excellent. My team needs to be able to focus on specific areas for improvement in our cloud environment. And most recently, we've started to get good use out of sonar, the search capabilities, and the alert creation."
"One improvement I would suggest for AWS GuardDuty is the ability to assign findings to specific users or groups, facilitating better communication and follow-up actions."
"Because it's a threat detection service, they need to keep up with the various threat factors because new threat factors and attack factors come up all the time."
"For me, I would say just the presentation of findings, like the dashboards and other stuff, could be improved a bit."
"AWS GuardDuty needs to be more customer-oriented."
"For the next release, they could provide IPS features as well."
"Improvement-wise, Amazon GuardDuty should have an overall dashboard analytics function so we could see what's in the current environment, and then in addition to that, provide best practices and recommendations, particularly to provide some type of observability, and then figure out the login side of it, based on our current environment, in terms of what we're not monitoring and what we should monitor. The solution should also give us a sample code configuration to implement that added feature or feature request. What I'd like to see in the next release of Amazon GuardDuty are more security analytics, reporting, and monitoring. They should provide recommendations and additional options that answer questions such as "Hey, what can we see in our environment?", "What should we implement within the environment?", What's recommended?" We know that cost will always be associated with that, but Amazon GuardDuty should show us the increased costs or decreased costs if we implement it or don't implement it, and that would be a good feature request, particularly with all products within AWS, just for cloud products in general because there are times features are implemented, but once they're deployed, they don't tell you about costs that would be generated along with those features. After features are deployed, there should a summary of the costs that would be generated, and projected based on current usage, so they would give us the option to figure out how long we're going to use those features and the option to keep those on or turn those off. If more services were like that, a lot more people would use those on the cloud."
"Amazon GuardDuty could be better enriched in threat intelligence data."
"Cost changes. It's very expensive. If you turn on every feature, it's more than most commercial vendors. For smaller orgs, that doesn't make sense."
"As with all software, the user interface can always be made simpler to use. It would be helpful for people with very little knowledge, like somebody sitting behind the SOC, to allow them to be able to drill down into things a little bit easier than it is currently."
"There were a couple of times when Orca was down when I was trying to access it. I work strange hours because all of my team is in the UK right now. It was 2 a.m. on a Saturday and I was trying to log in but it wasn't working. But relative to my other security tools, Orca is definitely the most stable that I've seen."
"It's not all clouds that they are currently onboarded with. For instance, they are not yet with public cloud and many other private clouds."
"We are PCI DSS compliant, so we need to scan our environment externally with tools vetted by the PCI DSS organization. Orca doesn't scan the environment externally. It only scans what's currently in the cloud."
"In the future, I'd like to see Orca work better with third-party vendors. Specifically, being able to provide sanitized results from third parties."
"I would like to see better customization options for security frameworks and better integration with reporting tools like Power BI or Grafana dashboards."
"I would be happy if they offered more automatic remediation options. They're working on that, but the more the better. For example, if they want you to harden a server, they would offer a hardening script that would be more aware of what's going on."
"The solution could improve by making the dashboards more elaborative and more descriptive."
AWS GuardDuty is ranked 4th in Cloud Workload Protection Platforms (CWPP) with 19 reviews while Orca Security is ranked 12th in Cloud Workload Protection Platforms (CWPP) with 14 reviews. AWS GuardDuty is rated 8.2, while Orca Security is rated 9.4. The top reviewer of AWS GuardDuty writes "A stellar threat-detection service that has helped bolster security against malicious threats". On the other hand, the top reviewer of Orca Security writes "Allows agentless data collection directly from the cloud". AWS GuardDuty is most compared with Microsoft Defender for Cloud, Prisma Cloud by Palo Alto Networks, CrowdStrike Falcon Cloud Security, Wiz and Threat Stack Cloud Security Platform, whereas Orca Security is most compared with Wiz, Prisma Cloud by Palo Alto Networks, Microsoft Defender for Cloud, Tenable Vulnerability Management and Aqua Cloud Security Platform. See our AWS GuardDuty vs. Orca Security report.
See our list of best Cloud Workload Protection Platforms (CWPP) vendors.
We monitor all Cloud Workload Protection Platforms (CWPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.