Try our new research platform with insights from 80,000+ expert users

Elastic Security vs Trellix XDR comparison

Elastic and Trellix are both solutions in the Extended Detection and Response (XDR) category. Elastic is ranked #9 with an average rating of 8.0, while Trellix is ranked #31 with an average rating of 8.0. Elastic holds a 4.8% mindshare in XDR, compared to Trellix’s 0.4% mindshare. Additionally, 86% of Elastic users are willing to recommend the solution, compared to 100% of Trellix users who would recommend it.
Elastic Security
Read 65 Elastic Security reviews
  • 11,035 Views
  • 5,076 Comparison Views
86% willing to recommend
Trellix XDR
Read 2 Trellix XDR reviews
  • 340 Views
  • 337 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Elastic Security and Trellix XDR based on real PeerSpot user reviews.

Find out in this report how the two Extended Detection and Response (XDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Elastic Security vs. Trellix XDR Report (Updated: September 2025).
Buyer's Guide
Elastic Security vs. Trellix XDR
September 2025
Download the complete report
Helped 869,513 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Elastic Security
Ranking in Extended Detection and Response (XDR)
9th
Average Rating
7.8
Reviews Sentiment
6.8
Number of Reviews
65
Ranking in other categories
Log Management (11th), Security Information and Event Management (SIEM) (5th), Endpoint Detection and Response (EDR) (17th), Security Orchestration Automation and Response (SOAR) (7th)
Trellix XDR
Ranking in Extended Detection and Response (XDR)
31st
Average Rating
8.0
Reviews Sentiment
8.0
Number of Reviews
2
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of October 2025, in the Extended Detection and Response (XDR) category, the mindshare of Elastic Security is 4.8%, down from 7.2% compared to the previous year. The mindshare of Trellix XDR is 0.4%, up from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Extended Detection and Response (XDR) Market Share Distribution
ProductMarket Share (%)
Elastic Security4.8%
Trellix XDR0.4%
Other94.8%
Extended Detection and Response (XDR)
 

Featured Reviews

SyedAli17 - PeerSpot reviewer
Centralized monitoring improves security posture through rapid data processing
The processing part of Elastic Security is very interesting for us since we handle almost 7,000 to 8,000 alerts per minute. We require rapid processing speed for alerts and event data, and Elastic Security is very efficient at handling this level of data. Additionally, Elastic Security helps improve the security posture of Pakistan through centralized visibility and real-time processing.
Read full review
Abdullah Al Hadi - PeerSpot reviewer
Enhance cyber threat detection with advanced analytics and machine learning
I am working with EDR and XDR, focusing on migrating on-premises solutions to cloud-based solutions. We are utilizing XDR for cyber threat detection and response The analytics assessment and flexibility of the platform are valuable. Trellix XDR integrates with other systems like SIEM, improving…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of Elastic Security is that you can install agents, and they are not separately licensed."
"It is an extremely stable solution. Stability-wise, I rate the solution a ten out of ten."
"The most valuable feature is the ability to collect authentication information from service providers."
"The solution is compatible with the cloud-native environment and they can adapt to it faster."
"Elastic Security is cost-effective compared to Defender and CrowdStrike."
"The indexes allow you to get your results quickly. The filtering and log passing is the advantage of Logstash."
"Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because of Elastic's efficient search engine."
"The most valuable features of the solution are the prevention methods and the incident alerts."
More Elastic Security pros
"Trellix XDR is an excellent solution that is continually improving."
"It contributes to our system's robust event detection and analysis, enabling us to respond effectively to incidents."
"The analytics assessment and flexibility of the platform are valuable."
 

Cons

"The solution's basic setup takes time, and a lot of effort is required from the beginning to make it actually work."
"The solution does not have a UI and this is one of the reasons we are looking for another solution."
"If you compare this with CrowdStrike or Carbon Black, they can improve."
"Technical support could respond faster."
"An area for improvement in Elastic Security is the pricing. It could be better. Right now, when you increase the volume of logs to be collected, the price also increases a lot."
"It could use maybe a little more on the Linux side."
"The solution could offer better reporting features."
"I think because we are a cybersecurity company, the thing that can be improved is the prebuilt tools, especially quality. Compared to its competitor, they still have fewer prebuilt security rules. Elastic Security, in terms of generating alerts, cannot group the same products into one another. Even though the alerts are the same, they still generate them one by one. So, it is very noisy in our dashboard. I would like the Elastic Security admin to group all the same alarms into one alarm so that our dashboard is not noisy."
More Elastic Security cons
"The platform should enhance compatibility with all other SIEM solutions."
"The EdgeGear solution is an area that requires attention, specifically regarding AI solutions and intelligence features."
"Technical support is crucial, especially when facing critical issues. It's rated six out of ten. Improvements are needed in the support sector, with a focus on providing expert assistance during production periods."
 

Pricing and Cost Advice

"The tool's pricing is flexible and comes at unit cost. You don't have to pay for everything."
"There is no charge for using the open-source version."
"The base product is open-source but if you need advanced security features then you need to pay for the subscription. Elastic Security's price is reasonable in some cases and in other cases it's not."
"We are using the free, open-source version of this solution."
"Compared to other tools, Elastic Security is a cheaper solution."
"Elastic Stack is an open-source tool. You don't have to pay anything for the components."
"The licensing cost of Elastic Security is based on the daily ingestion rate. I can't recall the exact figure, but for 10GB of log action daily, it would cost around $20,000."
"It's a monthly cost with Elastic SIEM, but I am not sure of the exact cost."
More Elastic Security pricing and cost advice
Information not available
report
See which vendors are best for you
Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.
See recommendations
869,513 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Government
10%
Comms Service Provider
8%
Financial Services Firm
7%
Computer Software Company
24%
Healthcare Company
11%
Media Company
8%
Insurance Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business40
Midsize Enterprise11
Large Enterprise14
No data available
 

Questions from the Community

Datadog vs ELK: which one is good in terms of performance, cost and efficiency?
With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...
See all answers
What do you like most about Elastic Security?
Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...
See all answers
What is your experience regarding pricing and costs for Elastic Security?
I am satisfied with the pricing, setup cost, and licensing cost. It is a pure 10.
See all answers
What is your experience regarding pricing and costs for Trellix XDR?
Since I'm a technical engineer, I don't deal with pricing or licensing. Our sales team handles those aspects.
See all answers
What needs improvement with Trellix XDR?
The EdgeGear solution is an area that requires attention, specifically regarding AI solutions and intelligence features. We are still investigating how XDR performs and will identify areas for impr...
See all answers
What is your primary use case for Trellix XDR?
I am working with EDR and XDR, focusing on migrating on-premises solutions to cloud-based solutions. We are utilizing XDR for cyber threat detection and response.
See all answers
 

Comparisons

Wazuh vs Elastic Security Logo
Wazuh vs Elastic Security
Compared 15% of the time
Splunk Enterprise Security vs Elastic Security Logo
Splunk Enterprise Security vs Elastic Security
Compared 7% of the time
IBM Security QRadar vs Elastic Security Logo
IBM Security QRadar vs Elastic Security
Compared 7% of the time
CrowdStrike Falcon vs Elastic Security Logo
CrowdStrike Falcon vs Elastic Security
Compared 6% of the time
Microsoft Defender for Endpoint vs Elastic Security Logo
Microsoft Defender for Endpoint vs Elastic Security
Compared 6% of the time
More Elastic Security Competitors
SentinelOne Singularity Complete vs Trellix XDR Logo
SentinelOne Singularity Complete vs Trellix XDR
Compared 56% of the time
CrowdStrike Falcon vs Trellix XDR Logo
CrowdStrike Falcon vs Trellix XDR
Compared 44% of the time
More Trellix XDR Competitors
 

Product Reports

Buyer's Guide
Elastic Security
October 2025
Elastic Security reportDownload Elastic Security product report
Buyer's Guide
Extended Detection and Response (XDR)
September 2025
Trellix XDR reportDownload Trellix XDR product report
 

Also Known As

Elastic SIEM, ELK Logstash
MVision XDR, MVision eXtended Detection and Response
 

Overview

Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.


Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

Additional offerings and benefits:

  • The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
  • It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
  • With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

Elastic

Gain greater visibility and superior detection with Trellix XDR. This constantly evolving cybersecurity platform defends against today’s and tomorrow’s most sophisticated threats with advanced capabilities such as machine learning and embedded cyber intelligence.

Trellix
 

Sample Customers

Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care
Information Not Available
Buyer's Guide
Elastic Security vs. Trellix XDR
September 2025
Free Report: Elastic Security vs. Trellix XDR
Find out what your peers are saying about Elastic Security vs. Trellix XDR and other solutions. Updated: September 2025.
DOWNLOAD NOW
869,513 professionals have used our research since 2012.
See our Elastic Security vs. Trellix XDR report.
See our list of best Extended Detection and Response (XDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.