Anomali vs Lumu comparison

Anomali and Lumu Technologies are both solutions in the Extended Detection and Response (XDR) category. Anomali is ranked #27 with an average rating of 8.5, while Lumu Technologies is ranked #18 with an average rating of 9.0. Anomali holds a 0.4% mindshare in XDR, compared to Lumu Technologies’s 1.5% mindshare. Additionally, 80% of Anomali users are willing to recommend the solution, compared to 100% of Lumu Technologies users who would recommend it.

Anomali

Read 4 Anomali reviews

2,282 Views
251 Comparison Views

80% willing to recommend

Lumu

Read 8 Lumu reviews

1,498 Views
974 Comparison Views

100% willing to recommend

Anomali

Lumu

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jul 6, 2025

Anomali and Lumu are competitors in the cybersecurity landscape, focusing on threat intelligence and detection solutions. Data suggests that Anomali slightly has the upper hand, particularly in support and integration, while Lumu is seen as more cost-effective.

Features: Anomali offers extensive threat intelligence capabilities, integration flexibility, and is adaptable to complex environments. Lumu provides real-time continuous compromise assessments, simplified threat visibility, and strong support for straightforward threat detection.

Room for Improvement: Anomali could enhance its pricing structure, streamline feature accessibility, and improve user experience. Lumu might expand its integration portfolio, refine its alert management, and bolster advanced threat modeling capabilities.

Ease of Deployment and Customer Service: Anomali features a robust deployment model with comprehensive support, making integration seamless. Lumu offers simplified deployment for quick adoption, focusing on intuitive self-service options.

Pricing and ROI: Anomali's higher initial setup cost is offset by the significant long-term ROI, suitable for organizations with extensive threat intelligence needs. Lumu offers competitive pricing with quicker ROI, ideal for those prioritizing straightforward real-time detection.

To learn more, read our detailed Anomali vs. Lumu Report (Updated: July 2025).

Buyer's Guide

Anomali vs. Lumu

July 2025

Download the complete report

Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Anomali

Ranking in Extended Detection and Response (XDR)

27th

Average Rating

7.8

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (33rd), User Entity Behavior Analytics (UEBA) (18th), Advanced Threat Protection (ATP) (22nd), Threat Intelligence Platforms (8th)

Lumu

Ranking in Extended Detection and Response (XDR)

18th

Average Rating

9.2

Reviews Sentiment

7.7

Number of Reviews

Ranking in other categories

Intrusion Detection and Prevention Software (IDPS) (14th), Network Detection and Response (NDR) (6th)

Mindshare comparison

As of August 2025, in the Extended Detection and Response (XDR) category, the mindshare of Anomali is 0.4%, up from 0.1% compared to the previous year. The mindshare of Lumu is 1.5%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Extended Detection and Response (XDR)

Featured Reviews

ChrisCollins

Enterprise Security Architect V at FirstEnergy

Enables automated threat intelligence sorting and enhances proactive threat hunting capabilities

You have to have at least a threat intelligence background or a SOC analyst background to use it, as that's the information you'll dig around with in there. If you don't have that kind of knowledge, it probably can be a little hard to use, but they do provide training. They offer training not only for how to use the platform but also some basic threat intelligence training to explain what these things are and what these terms mean. My company is a customer of Anomali. I would recommend it to other people. I would advise making sure you don't pick it without testing other products and have your use cases well thought out and documented before testing, so you know it will solve the problems you're trying to address. Keep an open mind with it and realize that whatever you can dream of, you can probably do with the platform. Overall, I would rate Anomali an eight out of ten.

Read full review

Juan Solano

IT Director at Atlantic Quantum Innovations

Protects against threats and handles it in time with moderate pricing

Mostly, Lumu is an automatic tool. We'll deploy on firewalls and DNS servers. Lumu detects every attack on our network. The other day, we had CLC, the command controller, and the tool reacted automatically. It detected the attack and immediately blocked it without intervention from my team. The improvement is in the security process, as it's now entirely automated. We no longer require a technician or engineer to monitor our network 24/7. Lumu updates with AI and global threat intelligence, which greatly assists us. Since our workload is lighter, Lumu handles all of our tasks. We're using FortiGate for the firewall and Kaspersky for endpoints. If you are going to Lumu, you need another solution for the endpoint. You need to integrate with other tools like firewalls or another antivirus. I recommend the solution based on the price, usability, and service offered by the solution. Overall, I rate the solution a nine out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"I have found Cyber threat intelligence (CTI) very useful and concise. The solution is easy to use."

"We now have a very robust collection of threat intelligence based on the capabilities that Anomali provides."

"The feature I have found most valuable is credential monitoring. This feature is easy and quick."

"The most valuable aspect of Anomali is the threat modeling capability."

"The tool's support team helps partners resolve any problems with the product."

"It's been helpful for overall extended network visibility."

"The automated response to incidents works effectively out of the box, and the number of interfaces and platforms it can work with is impressive."

"Lumu protects against threats immediately and handles them in time."

"You can access external links, playbooks, MITRE Matrix, and a lot of information."

"I like Lumu's simple user interface. When we deployed it, we got full access, allowing us to identify IP addresses on the network and connect machine names to users. It helped us identify and block threats via the firewall. I also appreciate the chat support and ticket closure process. We're currently reviewing network detection solutions, and my recommendations include Lumu, Sentinel, and a few others. Regarding functionality and user-friendliness, I would recommend Lumu over the others."

"The context provided by the tool is very complete, it includes the miter matrix, playbooks, links, hashes, and much more."

"Most of it is automated, so I do not have to watch it to get alerts."

Cons

"A lot of tools can give you many features, such as CTI intelligence and a tax service reduction. However, many people are combining different tools together to have more capabilities. It is up to the consumer whether they want to have multiple tools or have one tool that serves the purpose. Anomali Enterprise could improve by combining all the other tools' features into one solution."

"Less code in integration would be nice when building blocks."

"An area for improvement is the intelligence sharing within the Anomali community. The tagging system can be inconsistent, as any company can use any tags for their reporting."

"Support in the past has been top-notch, but recent trends indicate that it has taken a back seat, as we often don't get answers for days."

"The integration with different vendors and endpoints could be improved."

"The free version is minimal compared to the full version."

"It would be good if we could access the physical logs."

"The reports need improvement."

"I am happy with the current features. However, one important one is to improve the reports."

"Lumu's ability to discover threats is an area of concern where improvements are needed."

"Nothing so far needs to be improved."

"Having a larger support network would be beneficial. Nobody I know has heard of Lumu, so they are in the same space as Darktrace or CrowdStrike, but people give blank stares."

Pricing and Cost Advice

"When comparing the price of Anomali Enterprise to other solutions it is in the medium to high range. However, I am satisfied with the price."

"It is the cheapest solution we found."

"The tool is available at a good price. The tool offers a good and competitive price for customers."

"Compared to Lumu, other solutions are more expensive. SentinelOne was a bit cheaper, and another provider's price structure is unclear, but Lumu fit our budget nicely. SentinelOne's cost depends on the number of devices, and it might be similar to Lumu's, depending on deployment."

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

865,384 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

17%

Computer Software Company

13%

Government

Insurance Company

Educational Organization

11%

Financial Services Firm

Comms Service Provider

Insurance Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What needs improvement with Anomali ThreatStream?

An area for improvement is the intelligence sharing within the Anomali community. The tagging system can be inconsistent, as any company can use any tags for their reporting. Combining all aliases ...

See all answers

What is your primary use case for Anomali ThreatStream?

I use Anomali ( /products/anomali-reviews ) for threat hunting, threat collection, operationalization of intelligence, such as indicators of compromise (IOCs), and dissemination of reports for repo...

See all answers

What advice do you have for others considering Anomali ThreatStream?

For new users, I recommend taking the training provided by Anomali as it is very well articulated. I advise reading the user manual and taking the instructor-led training sessions from the customer...

See all answers

What do you like most about Lumu?

Lumu protects against threats immediately and handles them in time.

See all answers

What needs improvement with Lumu?

There is always room for improvement. I am not giving it a perfect score because I am sure there is something that could be enhanced.Having some sort of certification or training, along with more p...

See all answers

What is your primary use case for Lumu?

We use it as our managed SOC instead of contracting with an MSP. It coordinates endpoint and gives us a single pane of glass for our security events.It fulfills the role of a SIEM, serving as our d...

See all answers

Comparisons

ThreatConnect Threat Intelligence Platform (TIP) vs Anomali

Compared 20% of the time

Recorded Future vs Anomali

Compared 17% of the time

ThreatQ vs Anomali

Compared 13% of the time

Splunk Enterprise Security vs Anomali

Compared 11% of the time

SOCRadar Extended Threat Intelligence vs Anomali

Compared 6% of the time

More Anomali Competitors

Darktrace vs Lumu

Compared 49% of the time

Wazuh vs Lumu

Compared 13% of the time

Stellar Cyber Open XDR vs Lumu

Compared 10% of the time

Vectra AI vs Lumu

Compared 8% of the time

Microsoft Defender XDR vs Lumu

Compared 7% of the time

More Lumu Competitors

Product Reports

Buyer's Guide

Threat Intelligence Platforms

July 2025

Download Anomali product report

Buyer's Guide

Lumu

August 2025

Download Lumu product report

Also Known As

Match, Lens, ThreatStream, STAXX, Anomali Security Analytics

No data available

Overview

Anomali delivers advanced threat intelligence solutions designed to enhance security operations by providing comprehensive visibility into threats and enabling real-time threat detection and management.

Anomali stands out in threat intelligence, offering an innovative platform that integrates data to identify and analyze threats effectively. It enables teams to streamline threat detection processes and respond to incidents with increased agility. With a focus on accuracy and efficiency, Anomali supports cybersecurity professionals in making informed decisions to safeguard their networks consistently.

What are Anomali's core features?

ThreatStream: A platform that aggregates threat intelligence feeds to enhance threat assessment.
Match: An automated detection feature that matches internal log data against threat intelligence insights.
Link: Provides graphical visualization for threat analysis, helping to understand threat vectors better.
STAXX: A lightweight tool for collecting and analyzing open-source threat intelligence.

What are the key benefits and ROI of using Anomali?

Improved Threat Detection: Streamlined processes lead to faster identification and response to threats.
Resource Efficiency: Automation reduces manual tasks, allowing security teams to focus on strategic activities.
Better Decision Making: Provides actionable insights that enable more informed security strategies.

In industries like finance and healthcare, Anomali is implemented to address specific challenges like compliance and data protection. By using this platform, organizations gain the ability to adapt to evolving threats, ensuring robust and adaptable security postures tailored to industry demands.

Anomali

Lumu Technologies is a cyber-security company that illuminates threats, attacks, and adversaries affecting enterprises worldwide. Using actionable intelligence, Lumu provides a radical way to secure networks by enhancing and augmenting existing defense capabilities established over the past 25 years.

Lumu Technologies

Sample Customers

Bank of England, First Energy, UBISOFT, Bank of Hope, Blackhawk Network

Information Not Available

Buyer's Guide

Anomali vs. Lumu

July 2025

Free Report: Anomali vs. Lumu

Find out what your peers are saying about Anomali vs. Lumu and other solutions. Updated: July 2025.

DOWNLOAD NOW

865,384 professionals have used our research since 2012.

See our Anomali vs. Lumu report.

See our list of best Extended Detection and Response (XDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.