No more typing reviews! Try our Samantha, our new voice AI agent.

Anomali vs Coralogix comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jan 18, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
6.0
Anomali offers cost-effective solutions with significant ROI, reducing manual effort and enhancing efficiency through automation and AI-driven tasks.
Sentiment score
5.0
Coralogix improves system reliability and reduces downtime, saving time and money with easy cloud deployment and faster issue resolution.
Analyst productivity has improved significantly, with hours saved because of automation and AI-driven work that Anomali performs.
Global Leadership Council at a tech company with 10,001+ employees
Anomali provides us with a very cost-effective value compared to the market, and I would rate it ten out of ten for return on investment metrics.
Solution Delivery Advisor at a tech vendor with 10,001+ employees
There is a return on investment concerning time and effort saved by 40% after implementing Anomali.
Security Consultant at Deloitte
Previously one to two hours were required to resolve major issues. Now it takes around ten to twenty minutes, representing approximately a sixty to seventy percent reduction in resolution time.
Technical Solution Support Development Engineer at Ericsson Global
I have seen a return on investment with Coralogix, particularly in terms of time saved.
Presales Engineer at Crayon AS
I see a return on investment in time saving.
Cloud Engineer at TO THE NEW Digital
 

Customer Service

Sentiment score
5.0
Anomali offers excellent enterprise support with quick, reliable assistance, though smaller client attention and professionalism have recently declined.
Sentiment score
7.3
Coralogix customer service excels in responsiveness and expertise, often surpassing competitor expectations in technical support and effective solutions.
They have strong onboarding and deployment assistance, provide a dedicated technical account manager for large customers, and engage in regular product updates and customer interaction.
Global Leadership Council at a tech company with 10,001+ employees
The technical support at Anomali is excellent.
Senior Cyber Threat Hunter at a financial services firm with 10,001+ employees
It doesn't seem very professional how they're handling support anymore.
Enterprise Security Architect V at FirstEnergy
I am satisfied with their response time and overall competence.
Engineering Manager at a tech vendor with 51-200 employees
The support team has good technical knowledge and is able to understand log-related monitoring issues without much back and forth.
Technical Solution Support Development Engineer at Ericsson Global
They are helpful, especially when we created several custom dashboards.
SDE II at Nutanix
 

Scalability Issues

Sentiment score
8.0
Anomali offers scalable solutions by smoothly handling extensive threat data and integrating with security systems, supporting organizational growth.
Sentiment score
7.1
Coralogix efficiently scales in large environments, handling growth, log volumes, and microservices smoothly with cloud infrastructure integration.
The scalability is massive, allowing us to store millions of indicators.
Enterprise Security Architect V at FirstEnergy
I believe Anomali's scalability is good; whether it is an organization for ten people or one hundred thousand people, the job a threat intel platform has to do will be the same.
Sr. Threat Intelligence Analyst at a tech vendor with 10,001+ employees
Anomali's scalability is impressive as a mature platform capable of processing large amounts of threat intelligence and indicators of compromise data.
Global Leadership Council at a tech company with 10,001+ employees
As our system usage and log volume increased, Coralogix was able to handle the growth without requiring any major changes from our side.
Technical Solution Support Development Engineer at Ericsson Global
We have never faced any scalability issues.
SDE II at Nutanix
Handling scaling with Coralogix is good, as it is easy to scale up or down as my needs change.
Presales Engineer at Crayon AS
 

Stability Issues

Sentiment score
8.4
Users praise Anomali's high stability and enterprise-grade reliability, noting consistent performance despite occasional platform function changes.
Sentiment score
8.0
Coralogix is highly rated for stability and reliability, with occasional minor delays but no significant performance issues.
From a reliability perspective, Anomali consistently injects threat feeds, works on automation, performs reliable API integrations, and supports enterprise scale globally.
Global Leadership Council at a tech company with 10,001+ employees
For example, while Microsoft allows ample time for users to adapt to deprecated features, Anomali only gave us three weeks before switching, so they need to be more cognizant of customer use cases from their engineering side.
Enterprise Security Architect V at FirstEnergy
The good thing is that they have a health check page, and if any issues arise, they notify us.
Lead Cyber Threat Intelligence Incident Response Engineer & Security Engineer at a retailer with 10,001+ employees
There are no downtimes, no crashes, or any performance issues that I've noticed since we started using it.
Platform Engineer at a tech vendor with 51-200 employees
We use it continuously for monitoring and troubleshooting, and we have not faced any major stability issues that impacted our work significantly.
Technical Solution Support Development Engineer at Ericsson Global
High CPU usage on one pod can be averaged out by others, concealing potential issues.
SDE II at Nutanix
 

Room For Improvement

Anomali needs enhanced AI, simplified interfaces, better integration, consistent tagging, flexible reporting, clearer pricing, and intuitive workflows.
Coralogix users seek better cost management, AI integration, simpler interfaces, dashboard customization, and improved support for various technical features.
Combining all aliases into a coherent solution would be beneficial, as we had to review each individual source ourselves.
Senior Cyber Threat Hunter at a financial services firm with 10,001+ employees
Anomali should increase their capability to fetch details from various dark web solutions where threat actors post compromised credentials.
Lead Cyber Threat Intelligence Incident Response Engineer & Security Engineer at a retailer with 10,001+ employees
Anomali's ability to correlate and integrate different Threat Intel platforms, such as Mandiant and PolySwarm, is another valuable feature, removing duplicacy and enabling the application of specific IOCs across various security controls.
Associate Consultant at a tech vendor with 1,001-5,000 employees
Coralogix already provides strong capabilities for centralized logging and monitoring, but enhancing these areas would make it even more efficient for large-scale environments in our telecom servers.
Technical Solution Support Development Engineer at Ericsson Global
We require some form of grouping or categorization of logs to identify them better.
SDE II at Nutanix
Coralogix should have some AI capabilities to auto-detect anomalies and provide suggestions.
Engineering Manager at a tech vendor with 51-200 employees
 

Setup Cost

Anomali pricing is medium to high, with contracts of one to two years, managed by senior staff in discussions.
Coralogix offers flexible usage-based pricing with costs from $400-$5,000, emphasizing scalability and cost management for enterprises.
Pricing and licensing are good, but the costs for purchasing threat feeds are somewhat complicated and a bit on the higher side.
Associate Consultant at a tech vendor with 1,001-5,000 employees
My experience with Anomali's pricing is that it is higher compared to other open-source alternatives.
Senior Information Technology Security Consultant at Mideast Data Systems
My experience with pricing, setup cost, and licensing is that there are not many follow-ups, but once we interacted with the product team or the leadership of Anomali, they managed a lot with us, and it all paid off to reach a conclusion that we would continue with this product.
Solution Delivery Advisor at a tech vendor with 10,001+ employees
Despite the expense, I believe it is worth the money to have Coralogix as a tool.
SDE II at Nutanix
Currently, we are at a very minimal cost, which is around $400 per month since we have reduced our usage.
Engineering Manager at a tech vendor with 51-200 employees
It is charged based on what we store.
Presales Engineer at Crayon AS
 

Valuable Features

Anomali excels in threat intelligence by efficiently automating data integration, improving response times, and reducing manual workloads.
Coralogix offers intuitive UI, real-time logging, AI insights, seamless integrations, and efficient log management for improved troubleshooting and visualization.
Regarding integration, Anomali has capabilities to integrate with different downstream applications such as Palo Alto, allowing us to create playbooks to block domains, URLs, or IPs directly within the firewall.
Lead Cyber Threat Intelligence Incident Response Engineer & Security Engineer at a retailer with 10,001+ employees
Correlating IOCs with the telemetry data we are ingesting from our data sources allows us to pull monthly reports identifying how many assets and users interacted with malicious content, giving insight into whether communications failed or users accessed restricted content, providing complete visibility of the IOCs traveling throughout our environment.
Associate Consultant at a tech vendor with 1,001-5,000 employees
It aggregates intelligence from hundreds of sources, automatically de-duplicates, applies risk scoring, applies context, and reduces much manual effort.
Global Leadership Council at a tech company with 10,001+ employees
I can monitor Kubernetes or Docker platforms as well, and I can integrate with the DevOps chain including Jenkins and all infrastructure code, Terraform, or Ansible.
Presales Engineer at Crayon AS
Coralogix has positively impacted our organization by providing us with a clearer data flow, which allows us to analyze data better and find errors easier using the smart logs it offers.
Automation Engineer at a tech services company with 501-1,000 employees
Out of real-time analytics, cost-efficient storage, and AI-powered insights, the most valuable for my team has been the cost-efficient storage.
Software Developer
 

Categories and Ranking

Anomali
Ranking in Security Information and Event Management (SIEM)
10th
Average Rating
8.0
Reviews Sentiment
6.2
Number of Reviews
13
Ranking in other categories
User Entity Behavior Analytics (UEBA) (5th), Advanced Threat Protection (ATP) (11th), Threat Intelligence Platforms (TIP) (3rd), Extended Detection and Response (XDR) (11th)
Coralogix
Ranking in Security Information and Event Management (SIEM)
13th
Average Rating
8.4
Reviews Sentiment
6.5
Number of Reviews
22
Ranking in other categories
Application Performance Monitoring (APM) and Observability (13th), Log Management (12th), API Management (11th), Streaming Analytics (11th), Anomaly Detection Tools (2nd), AI Observability (8th)
 

Mindshare comparison

As of July 2026, in the Security Information and Event Management (SIEM) category, the mindshare of Anomali is 1.4%, up from 0.3% compared to the previous year. The mindshare of Coralogix is 1.2%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
Anomali1.4%
Coralogix1.2%
Other97.4%
Security Information and Event Management (SIEM)
 

Featured Reviews

TarunKumar11 - PeerSpot reviewer
Global Leadership Council at a tech company with 10,001+ employees
Strategic threat intelligence has improved detection speed and consistently reduces analyst workload
Anomali can be improved in various aspects. Its AI-driven automation can further advance, and AI-powered investigation summaries can improve. User experience could be enhanced through simplification of workflows. Better board-level cyber risk dashboards could provide easier visualization. Additionally, Anomali could work on simplifying the pricing structure. Although it excels in threat intelligence aggregation and operationalization, stronger GenAI capability, improved executive reporting, and a more intuitive workflow for analysts would further increase SOC efficiency and add more business value. Regarding Anomali's AI capabilities, governance and security are quite good. Anomali has incorporated AI and machine learning primarily to improve correlation and prioritization. These capabilities are valuable but could be more mature. The platform could achieve better threat correlation, prioritization, more anomaly detection, and allow AI to accelerate intelligence analysis while further improving quality and relevance. The accuracy and reliability of Anomali's AI output are fairly reasonable and good. The AI engine works well, but this capability could be improved. Better threat correlation with threat actors, certain indicators of compromise, malware, and campaigns is possible. Threat prioritization could increase, and alert noise could be reduced through further de-duplication. While reasonable, this is not the best available, and other products possibly have more AI maturity, such as Recorded Future and CrowdStrike Falcon.
Arka Sarkar - PeerSpot reviewer
Technical Solution Support Development Engineer at Ericsson Global
Centralized monitoring has transformed telecom troubleshooting and now reduces downtime proactively
Coralogix works well for our needs, but there are a few areas where improvements can be made. One area is querying performance for large-scale data sets. When we are dealing with very high log volumes, some complex queries take time to return results. Improving query speed and optimization would enhance the troubleshooting experience. Another point is the learning curve for advanced features. While basic usage is straightforward, advanced querying and dashboard configurations can take time for new users we are onboarding. We have faced this situation in our organization's domain frequently. More simplified UI options or guided templates would help new team members onboard faster. Additionally, dashboard customization flexibility needs improvement. Although dashboards are useful, having more flexibility in customization would make them even more powerful. An important point is cost optimization. Since log volume is high in our environment, better visibility and control over cost optimization would be beneficial. These are minor improvements overall. Coralogix already provides strong capabilities for centralized logging and monitoring, but enhancing these areas would make it even more efficient for large-scale environments in our telecom servers. Improvements could include query performance, alert noise reduction, and ease of use for advanced features, especially for large-scale environments like ours.
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Manufacturing Company
9%
Construction Company
8%
Computer Software Company
6%
Financial Services Firm
12%
Manufacturing Company
10%
Outsourcing Company
8%
Computer Software Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise1
Large Enterprise14
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise7
Large Enterprise11
 

Questions from the Community

What is your experience regarding pricing and costs for Anomali Enterprise?
My experience with pricing involved a yearly, two-year contract; I can't specify the setup cost, but it was aligned with our budget, so I consider it good.
What needs improvement with Anomali ThreatStream?
I can mention one point regarding improvements for Anomali, which is more enhanced reporting flexibility. The reporting provided to us is not too detailed and could be more enhanced. Better filteri...
What is your primary use case for Anomali ThreatStream?
I was using Anomali primarily for threat intelligence operations, security monitoring, and threat detection initiatives. I was part of the SOC team, and my role and responsibilities involved workin...
What is your experience regarding pricing and costs for Coralogix?
My experience with Coralogix pricing and licensing has been generally positive, especially considering the value it provides in terms of monitoring and troubleshooting. It follows a usage-based pri...
What needs improvement with Coralogix?
Coralogix works well for our needs, but there are a few areas where improvements can be made. One area is querying performance for large-scale data sets. When we are dealing with very high log volu...
What is your primary use case for Coralogix?
In my organization, particularly in Ericsson's telecom BSS domain, the primary use case of Coralogix is centralized log management and real-time monitoring of telecom applications, such as the BSS ...
 

Also Known As

Match, Lens, ThreatStream, STAXX, Anomali Security Analytics
No data available
 

Overview

 

Sample Customers

Bank of England, First Energy, UBISOFT, Bank of Hope, Blackhawk Network
Payoneer, AGS, Monday.com, Capgemini
Find out what your peers are saying about Anomali vs. Coralogix and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.