We performed a comparison between Elastic Stack and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Elastic Stack is mainly used to monitor servers and APIs. It helps ensure the software's availability and sends notifications at the right time so the system is not down for a long time. The tool's stability and advanced features, such as anomaly detection, are the most valuable features. The benefit of using it is real-time monitoring."
"I think the ecosystem is well supported, and for logs, it was faster compared to our previous previous log management."
"I have experienced a return on investment from the use of the solution."
"The machine learning capabilities are valuable."
"The solution's technical support is good...Elastic Stack offers good value for value for money based on the product's features and what they offer."
"It is a very scalable solution...I didn't face any problem with this scalability part of the solution since we only have a few pieces of equipment in our company."
"The tool is huge, and it performs brilliantly. I tested it for malware, and within two weeks of launching, the product alerted me about a network intrusion. This was a tough test for it, but it performed admirably. The alerting system is excellent, and searching through logs is incredibly efficient. What's impressive is that all three products or options are integrated into one solution. This means I don't need separate logging, monitoring, or antivirus solutions."
"The biggest strength of Elastic Stack is its brilliant archiving capabilities."
"The most valuable feature is the DSS, also known as SPL, because it allows users to script advanced queries with limited knowledge."
"Its dashboard is valuable. If you have a good knowledge of how to create a dashboard, you can create any dashboard related to cybersecurity. If fine-tuned, the alarms that are triggered for instant review are also very valuable and useful."
"Easy to deploy and simple to use."
"To get visibility from your network devices, servers, and security devices is a great feature."
"This solution helps us increase our productivity."
"It is user-friendly. It is more effective than other solutions. The support and help for troubleshooting and the documentation from Splunk make it very effective."
"If I need to integrate devices for logs, it is easier with Splunk. We can integrate different applications, network devices, and databases. It is also very rich in documents. It is the best."
"The level of robustness on offer is very good."
"Elastic Stack should work on their dashboards and integration process."
"The implementation of dashboards in the solution needs to be made easier...I had some issues with the ports and configuration since it was kind of complex to implement with Docker."
"Elastic Stack's search capabilities can be challenging, especially when searching for precise data from past years, such as two or ten years ago. Its indexing performance for exact data retrieval may decrease as the data volume grows. Therefore, I believe there is room for improvement in the product's search functionality. It needs to improve its pricing as well."
"The solution is expensive, particularly the training and certification. If customers want to increase their use of Elastic Stack, they should consider reducing the cost of certification and training."
"The main issue related to Elastic Stack is in the area of its licensing."
"When people try to move the data from another source to Elastic Stack for visualization, they face challenges when connecting to Elastic Stack from such different sources."
"The tool's pricing can be improved."
"Agent deployment is a little tough in the on-premise version."
"Splunk Enterprise Security can be improved by including backup network detection and response and safe management to the paid platform."
"The integration with all our tool sets felt like we were reinventing the wheel, which was a pain point for us."
"Enterprise security: Splunk must work on clarifying the solution to customers and explain how to gain more from it."
"It needs to improve the way to install third-party apps and enable installation without logging into splunk.com."
"I would like to see more SIEM functionality and a better ticket tool."
"The difficult part is related to integration with sources of data that are used to create the logs as this depends on the infrastructure of the client."
"Its user interface for everything other than the charts can be improved. Some parts of it can be simplified a bit, such as when importing documents that have the network traffic. When you're going through the information about the network traffic, you have to have the expertise, but even if a program is supposed to be for IT support, it is good to make it user-friendly because it gets easier to train people. When something goes wrong, the more difficult a program is in terms of UI, the harder it is to fix the issue."
"A problem that we had recently had was we licensed it based on how much data you upload to them every day. Something changed in one our applications, and it started generating three to four times as many logs and. So now, we are trying to assemble something with parts of the Splunk API to warn ourselves, then turn it off and throttle it back more. However it would be better if they had something systematically built into the product that if you're getting close to your license, then to shut things down."
Elastic Stack is ranked 16th in Log Management with 11 reviews while Splunk Enterprise Security is ranked 1st in Log Management with 228 reviews. Elastic Stack is rated 8.4, while Splunk Enterprise Security is rated 8.4. The top reviewer of Elastic Stack writes "A stable product that can be fine-tuned easily". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Elastic Stack is most compared with Security Onion, Wazuh, Falcon LogScale, Grafana Loki and syslog-ng, whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Microsoft Sentinel. See our Elastic Stack vs. Splunk Enterprise Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.