We performed a comparison between Elastic Security and Security Onion based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It is very quick to react. I can set it to check anomalies or suspicious behavior every 30 seconds. It is very fast."
"Just the ability to do a lot more than just up-down is nice, which a lot of people take for granted."
"The most valuable feature of Elastic Security is that you can install agents, and they are not separately licensed."
"The solution is quite stable. The performance has been good."
"The visualization is very good."
"The most valuable feature for me is Discover."
"One of the most valuable features of this solution is that it is more flexible than AlienVault."
"What customers found most valuable in Elastic Security feature-wise is the search capability, in particular, the way of writing the search query and the speed of searching for results."
"We use Security Onion for internal vulnerability assessment."
"The most valuable feature of Security Onion for security monitoring is its ability to find infected ports."
"Security Onion is the most mature solution in the market."
"I would like more ways to manage permissions and restrict access to certain users."
"I think because we are a cybersecurity company, the thing that can be improved is the prebuilt tools, especially quality. Compared to its competitor, they still have fewer prebuilt security rules. Elastic Security, in terms of generating alerts, cannot group the same products into one another. Even though the alerts are the same, they still generate them one by one. So, it is very noisy in our dashboard. I would like the Elastic Security admin to group all the same alarms into one alarm so that our dashboard is not noisy."
"Upgrades currently released as stacks when it should be a plugin or an extension to save removal and reinstallation."
"The Integration module could be improved. It is a pain to build integration with any product. We have to do parking and so on. It's not like other commercial solutions that use profile integration. I would also see more detection features on the SIEM side."
"It could use maybe a little more on the Linux side."
"Improvements in Elastic Security could include refining and normalizing queries to make them more user-friendly, enhancing the user experience with better documentation, and addressing any latency issues."
"This solution cannot do predictive maintenance, so we have to build our own modules for doing it."
"There is an area of improvement in the Logs list. The load list may need to be paginated as there are limits."
"The initial setup of the solution is a little bit difficult."
"The product is not easy to learn."
"Security Onion's user interface could be improved."
Elastic Security is ranked 5th in Log Management with 58 reviews while Security Onion is ranked 37th in Log Management with 3 reviews. Elastic Security is rated 7.6, while Security Onion is rated 7.6. The top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". On the other hand, the top reviewer of Security Onion writes "A mature and affordable solution that is easy to install and easy to update". Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, IBM Security QRadar and Microsoft Defender for Endpoint, whereas Security Onion is most compared with Wazuh, Elastic Stack, TheHive, Splunk Enterprise Security and Grafana Loki. See our Elastic Security vs. Security Onion report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.