Coralogix vs Microsoft Sentinel comparison

Coralogix and Microsoft are both solutions in the Security Information and Event Management (SIEM) category. Coralogix is ranked #23 with an average rating of 8.2, while Microsoft is ranked #3 with an average rating of 8.4. Coralogix holds a 0.4% mindshare in SIEM, compared to Microsoft’s 6.6% mindshare. Additionally, 92% of Coralogix users are willing to recommend the solution, compared to 93% of Microsoft users who would recommend it.

Coralogix

Read 11 Coralogix reviews

2,603 Views
390 Comparison Views

92% willing to recommend

Microsoft Sentinel

Read 98 Microsoft Sentinel reviews

20,113 Views
11,062 Comparison Views

93% willing to recommend

Coralogix

Microsoft Sentinel

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

Coralogix and Microsoft Sentinel compete in log analytics and security management. Data shows users are more satisfied with Coralogix's pricing and customer support, yet Microsoft Sentinel is favored for its comprehensive features and overall user satisfaction.

Features: Coralogix users highlight advanced machine learning, anomaly detection capabilities, and flexible cost structures. Microsoft Sentinel users value its integration with Azure services, a robust alerting system, and a wider feature set that appeals to a larger user base.

Room for Improvement: Coralogix users note occasional slow performance, seek more seamless third-party integrations, and mention less intuitive user interfaces. Microsoft Sentinel users often mention the need for user-friendly setup processes, improved documentation, and faster customer service response during busy periods.

Ease of Deployment and Customer Service: Coralogix users find the initial deployment straightforward and praise the responsive customer service. Microsoft Sentinel's deployment process is smooth but can be complex for users unfamiliar with Azure. Microsoft's customer support is highly effective, comparable to Coralogix.

Pricing and ROI: Coralogix is known for competitive pricing and a flexible cost structure, providing good ROI for small to mid-sized businesses. Microsoft Sentinel, though more expensive, is considered worth the price due to its extensive features and seamless integration with other Microsoft products, resulting in high ROI for large enterprises.

To learn more, read our detailed Coralogix vs. Microsoft Sentinel Report (Updated: July 2025).

Buyer's Guide

Coralogix vs. Microsoft Sentinel

July 2025

Download the complete report

Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Coralogix

Ranking in Security Information and Event Management (SIEM)

23rd

Average Rating

8.2

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Application Performance Monitoring (APM) and Observability (22nd), Log Management (21st), API Management (16th), Streaming Analytics (13th), Anomaly Detection Tools (1st)

Microsoft Sentinel

Ranking in Security Information and Event Management (SIEM)

3rd

Average Rating

8.2

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Security Orchestration Automation and Response (SOAR) (1st), Microsoft Security Suite (6th), AI-Powered Cybersecurity Platforms (5th)

Mindshare comparison

As of August 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Coralogix is 0.4%, up from 0.2% compared to the previous year. The mindshare of Microsoft Sentinel is 6.6%, down from 8.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Jorge Florez

Head SRE Latam at PayU

SaaS platform used by developers to store and conveniently search for logs

If a company has the budget and the log service is critical for them, I would say use Coralogix. It is a very good service for that. I would rate Coralogix an eight out of ten. It is an excellent service for storing logs for a long time. The capacity is unlimited for unindexed logs. The cost model is also very efficient because you pay for the ingested data per month. This can be compared to a solution like New Relic where you have to pay it upfront and cannot limit the data ingestion. Coralogix provides an easy way to search for logs and to visualize them. This a great feature because developers are constantly looking for or browsing logs.

Read full review

Ivan Angelov

Project Executive at synergyc

Threat detection and response capabilities enhance investigation processes

My security team has been using Microsoft Sentinel for around two years. We also have Bastion and SolarWinds as part of our monitoring tools. We use a three-way tool, alongside Microsoft Sentinel, in our environment The most valuable features for us include threat collection, threat detection,…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"For now, we have not experienced any stability issues."

"The initial setup is straightforward."

"The solution is easy to use and to start with."

"Numerous data monitoring tools are available, but Coralogix somehow fine-tunes our policies and effectively supports our teams."

"Coralogix scales well, and I will rate it nine out of ten."

"The solution offers very good convenience filtering."

"The most valuable feature of Coralogix is that it is a very good vendor for metrics."

"A non-tech person can easily get used to it."

More Coralogix pros

"There are some very powerful features to Sentinel, such as the integration of various connectors. We have a lot of departments that use both IaaS and SaaS services, including M365 as well as Azure services. The ability to leverage connectors into these environments allows for large-scale data injection."

"We’ve got process improvement that's happened across multiple different fronts within the organization, within our IT organization based on this tool being in place."

"The log analysis is excellent; it can predict what can or will happen regarding use patterns and vulnerabilities."

"It is always correlating to IOCs for normal attacks, using Azure-related resources. For example, if any illegitimate IP starts unusual activity on our Azure firewall, then it automatically generates an alarm for us."

"We have seen at least a 60% increase in efficiency with Microsoft Sentinel and the ability to reduce the MTTD down to under five minutes and MTTR down to under fifteen."

"Previously, it was a little bit difficult to find where an incident came from, including which IP address and which country. So in Sentinel, it's very easy to find where the incident came from since we can easily get the information from the dashboard, after which we take action quickly."

"The dashboard that allows me to view all the incidents is the most valuable feature."

"We didn't have anything similar. So, it really provides value from the incidents and automation point of view. The overview of the security fabric is most valuable."

More Microsoft Sentinel pros

Cons

"The customizable dashboards haven't really helped with my company's efficiency at all, and I think there's room for improvement."

"We want it to work at what it is expected to work at and not really based on the updated configuration which one developer has decided to change."

"Maybe they could make it more user-friendly."

"From my experience, Coralogix has horrible Terraform providers."

"The documentation of the tool could be improved"

"Coralogix should have some AI capabilities to auto-detect anomalies and provide suggestions. The increasing volume of data and the resulting bandwidth charges are concerns."

"Coralogix should have some AI capabilities to auto-detect anomalies and provide suggestions."

"The user interface is not intuitive, especially when first onboarding, and improvements could be made here."

More Coralogix cons

"We do have in-built or out-of-the-box metrics that are shown on the dashboard, but it doesn't give the kind of metrics that we need from our environment whereby we need to check the meantime to detect and meantime to resolve an incident. I have to do it manually. I have to pull all the logs or all the alerts that are fed into Sentinel over a certain period. We do this on a monthly basis, so I go into Microsoft Sentinel and pull all the alerts or incidents we closed over a period of thirty days."

"The interface could be more user-friendly. It''s a small improvement that they could make if they wanted to."

"It would be nice to be able to leverage more AI to handle more data and recovery aspects in the future."

"Microsoft Sentinel is relatively expensive, and its cost should be improved."

"When it comes to ingesting Azure native log sources, some of the log sources are specific to the subscription, and it is not always very clear."

"They only classify alerts into three categories: high, medium, and low. So, from the user's point of view, having another critical category would be awesome."

"When we pass KPIs to the governance department, there's no option to provide rights to the data or dashboard to colleagues. We can use Power BI for this, but it isn't easy or convenient. They should just come up with a way to provide limited role-based access to auditing personnel"

"Sentinel can be used in two ways. With other tools like QRadar, I don't need to run queries. Using Sentinel requires users to learn KQL to run technical queries and check things. If they don't know KQL, they can't fully utilize the solution."

More Microsoft Sentinel cons

Pricing and Cost Advice

"Currently, we are at a very minimal cost, which is around $400 per month since we have reduced our usage. Initially, we were at $900 per month."

"The cost of the solution is per volume of data ingested."

"The platform has a reasonable cost. I rate the pricing a three out of ten."

"We are paying roughly $5,000 a month."

"It is kind of like a sliding scale. There are different tiers of pricing that go from $100 per day up to $3,500 per day. So, it just kind of depends on how much data is being stored. There can be additional costs to the standard license other than the additional data. It just kind of depends on what other services you're spinning up in Azure, or if you're using something like Azure log analytics."

"Sentinel is a pay-as-you-go solution. To use it, you need a Log Analytics workspace. This is where the logs are stored and the cost of Log Analytics is based on gigabytes... On top of that, there is the cost of Sentinel, which is about €2 per gigabyte. If a customer has an M365 E5 license, the logs that come from Microsoft Defender are free."

"In comparison to other security solutions, Microsoft Sentinel offers a reasonable price for the features included."

"It comes with a Microsoft subscription which the customer has, so they don't have to invest somewhere else."

"Microsoft Sentinel is expensive."

"The are two native advantages for customers that use M365 Security and Sentinel. The first advantage is that the log or security-event ingestion into Sentinel is free. Cost-wise, they're saving a lot and that is a major advantage."

"Currently, given our use case, the cost of Sentinel is justified, but it is expensive."

"From a cost point of view, it is not a cheap product. It's, like, an enterprise-level application. So if you compare it with a low-level application, it's expensive, but if you compare it with the same-level application, it's pretty much cost-effective, I think."

More Microsoft Sentinel pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

865,384 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

11%

Computer Software Company

11%

Manufacturing Company

Healthcare Company

Computer Software Company

15%

Financial Services Firm

11%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Coralogix?

Numerous data monitoring tools are available, but Coralogix somehow fine-tunes our policies and effectively supports our teams.

See all answers

What is your experience regarding pricing and costs for Coralogix?

The pricing is expensive. We need to reduce logs to manage costs. Despite the expense, I believe it is worth the money to have Coralogix as a tool.

See all answers

What needs improvement with Coralogix?

Change might not be the correct word, but with every service, there is always room to improve. They are improving their services daily and deploy new features. When we had missing features that we ...

See all answers

Is there a common threat intelligence tool that aggregates multiple threat intelligence sources?

Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel and its Threat Hunting functionality with AI available as templates or customized ...

See all answers

What is a better choice, Splunk or Azure Sentinel?

It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...

See all answers

Which is better - Azure Sentinel or AWS Security Hub?

We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...

See all answers

Comparisons

Datadog vs Coralogix

Compared 25% of the time

New Relic vs Coralogix

Compared 10% of the time

Grafana vs Coralogix

Compared 9% of the time

Elastic Search vs Coralogix

Compared 7% of the time

Sentry vs Coralogix

Compared 6% of the time

More Coralogix Competitors

AWS Security Hub vs Microsoft Sentinel

Compared 19% of the time

Cortex XSIAM vs Microsoft Sentinel

Compared 7% of the time

IBM Security QRadar vs Microsoft Sentinel

Compared 7% of the time

Wazuh vs Microsoft Sentinel

Compared 5% of the time

Google Chronicle Suite vs Microsoft Sentinel

Compared 5% of the time

More Microsoft Sentinel Competitors

Product Reports

Buyer's Guide

Coralogix

August 2025

Download Coralogix product report

Buyer's Guide

Microsoft Sentinel

August 2025

Download Microsoft Sentinel product report

Also Known As

No data available

Azure Sentinel

Overview

Coralogix is a stateful streaming data platform that provides real-time insights and long-term trend analysis with no reliance on storage or indexing, solving the monitoring challenges of data growth in large-scale systems.

Ingest log, metric, and security data from any source for a single, centralized platform to monitor and alert on your applications. As data is ingested, Coralogix instantly narrows millions of events down to common patterns for deeper insights and faster troubleshooting. Proactive data storage optimization enables up to 70% savings on monitoring costs with better performance.

Coralogix

Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

- Respond to incidents rapidly with built-in orchestration and automation of common tasks

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

Microsoft

Sample Customers

Payoneer, AGS, Monday.com, Capgemini

Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.

Buyer's Guide

Coralogix vs. Microsoft Sentinel

July 2025

Free Report: Coralogix vs. Microsoft Sentinel

Find out what your peers are saying about Coralogix vs. Microsoft Sentinel and other solutions. Updated: July 2025.

DOWNLOAD NOW

865,384 professionals have used our research since 2012.

See our Coralogix vs. Microsoft Sentinel report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.