ExtraHop Reveal(x) 360 vs LogRhythm UEBA comparison

ExtraHop Networks and LogRhythm are both solutions in the Extended Detection and Response (XDR) category. ExtraHop Networks is ranked #24 with an average rating of 9.0, while LogRhythm is ranked #25 with an average rating of 7.0. ExtraHop Networks holds a 0.3% mindshare in XDR, compared to LogRhythm’s 1.1% mindshare. Additionally, 100% of ExtraHop Networks users are willing to recommend the solution, compared to 55% of LogRhythm users who would recommend it.

ExtraHop Reveal(x) 360

Read 3 ExtraHop Reveal(x) 360 reviews

279 Views
192 Comparison Views

100% willing to recommend

LogRhythm UEBA

Read 11 LogRhythm UEBA reviews

915 Views
756 Comparison Views

55% willing to recommend

ExtraHop Reveal(x) 360

LogRhythm UEBA

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 8, 2024

ExtraHop Reveal(x) 360 and LogRhythm UEBA are solutions in network detection and response and user behavior analytics. ExtraHop stands out in real-time threat detection, while LogRhythm leads in comprehensive analytics depth.

Features: ExtraHop provides advanced threat detection, seamless integration with existing security tools, and enhances overall security ecosystems. LogRhythm offers in-depth user behavior analytics, deep insights into network behavior, and detailed threat analysis.

Room for Improvement: ExtraHop could benefit from offering more granular customization capabilities, improved integration features, and enhanced user interface options. LogRhythm might address system alerting mechanisms to reduce false positives, provide more streamlined integration tools, and enhance dashboard user experience.

Ease of Deployment and Customer Service: ExtraHop is noted for a straightforward deployment process and supportive customer service, suitable for teams with limited resources. LogRhythm, however, requires significant technical expertise for deployment, though post-deployment customer support is generally reliable.

Pricing and ROI: ExtraHop's initial costs are perceived as high, yet users experience substantial ROI through improved threat visibility and response times. LogRhythm is recognized for competitive pricing and good ROI, driven by its detailed analytics capabilities.

To learn more, read our detailed ExtraHop Reveal(x) 360 vs. LogRhythm UEBA Report (Updated: April 2025).

Buyer's Guide

ExtraHop Reveal(x) 360 vs. LogRhythm UEBA

April 2025

Download the complete report

Helped 850,236 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

ExtraHop Reveal(x) 360

Ranking in Extended Detection and Response (XDR)

24th

Average Rating

8.6

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Intrusion Detection and Prevention Software (IDPS) (17th), Container Security (24th), Network Traffic Analysis (NTA) (9th)

LogRhythm UEBA

Ranking in Extended Detection and Response (XDR)

25th

Average Rating

7.0

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

User Entity Behavior Analytics (UEBA) (11th)

Mindshare comparison

As of May 2025, in the Extended Detection and Response (XDR) category, the mindshare of ExtraHop Reveal(x) 360 is 0.3%, up from 0.2% compared to the previous year. The mindshare of LogRhythm UEBA is 1.1%, up from 0.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Extended Detection and Response (XDR)

Featured Reviews

Maksym Toporkov

Head of Research And Development at Quipu GmbH

A competitive choice for network detection and response with exceptional user interface, ease of implementation and minimal false positives

The NDR feature analyzes network traffic, creating records with connection details. While these records offer insights, there's a limitation in investigating payloads directly. ExtraHop provides an option for an additional server to save payloads, but its temporary storage has constraints. Unlike some competitors, it lacks an automatic payload-saving feature for each detection, presenting an improvement opportunity. Suggested enhancement involves the main sensor prompting payload storage for specific detections, streamlining the investigation process, and contributing to a more efficient workflow. A drawback includes packet storage limitations for payload data, necessitating timely extraction for thorough investigations.

Read full review

Sheikh Abu Ayub Azad

CEO at Trustaira

Great at managing cyber incidents; the technical support could be improved

The initial setup is easy, partly because LogRhythm is primarily based on the Windows platform. It's good to have two engineers for deployment but it can be done with one. It's more about the knowledge. Deployment is typically done in two or three different phases. It usually takes up to three full months to get good deployment. There's the initial onboarding of all the log sources, then collecting data in the data lake, followed a couple of weeks later with some minor tuning before the final tuneup.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It stands out for its intuitive and efficient user interface, robust detection capabilities with minimal false positives, and the ability to handle encrypted traffic, making it a valuable asset for network security and management."

"It is very easy to collect and handle data in ExtraHop Reveal(X) Cloud. Integration with Big Data is also easy. Many of our customers integrate it with Big Data platforms like Splunk or Elastic. It is also easy to handle and easy to understand."

"It is scalable."

"It is easy to monitor users and that is how the solution is adding value to our firm."

"The tool's most valuable feature is server threat hunting."

"It has a lot of features. It has file integration monitoring."

"The most valuable features are file activity monitoring and registry activity monitoring."

"The solution's most valuable features are the graphical user interface and the reporting."

"I typically use the product for reducing cyber risk, and I can investigate attacks more quickly using machine learning tools."

"The solution is useful for privilege accounts and super admin accounts. It is beneficial from a security perspective. The tool uses machine learning rather than threshold-based alerts. For instance, it can detect unusual user logins, such as a user logging in from a new browser or location."

"I can investigate attacks more quickly using machine learning tools."

More LogRhythm UEBA pros

Cons

"A drawback includes bucket storage limitations for payload data, necessitating timely extraction for thorough investigations."

"They can include integration with SAP. Currently, no vendor provides network performance monitoring in the SAP market. It is a very big market. We have around 400 customers for SAP in Korea. In the USA, there are more than 10,000 customers."

"There needs to be more support."

"It would be helpful if there were more guidance provided for integrating with unsupported devices."

"The product could be user-friendly for someone who doesn’t have any prior experience working with it."

"LogRhythm UEBA's data aggregation needs to be improved. Open-source users do not have much documentation available. Documentation is available only for enterprise users."

"The product should improve its dashboards. Splunk has neat dashboards. Additionally, we would like to enhance the use cases provided by LogRhythm as its use case library is not as extensive as other tools. Its machine-learning capabilities need to improve when compared to other solutions. It lacks risk quantification in a single, transparent view for individuals such as CSOs."

"What needs improvement in LogRhythm UEBA is the pricing. Here in Asia, for example, in Sri Lanka, pricing is the primary concern, and this is the only area for improvement I see in the product."

"The UI could be improved a little bit."

"In general, if something needs to be improved in the algorithm, it would be the dashboards."

"The on-premises LogRhythm is not very scalable. When considering packets per second or the MPS needed for additional logs such as web application logs, scalability is usually found in cloud products."

More LogRhythm UEBA cons

Pricing and Cost Advice

"When compared to other solutions, it aligns with the market average, indicating a competitive pricing level."

"It is quite a budget-friendly product."

"The pricing is nice when compared to other products in the industry."

"Licensing is on a yearly basis. It's not expensive compared to its competitors."

"I rate the product's pricing a three out of ten. However, the cloud version is expensive. You need to hire professional services for deployment and migrations, which can be expensive."

"As LogRhythm UEBA is pretty expensive, I'd give its pricing a seven out of ten."

"LogRhythm UEBA's pricing is affordable for small and medium businesses."

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

850,236 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

10%

Comms Service Provider

University

Insurance Company

Computer Software Company

18%

Financial Services Firm

11%

Manufacturing Company

Real Estate/Law Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about ExtraHop Reveal(x) 360?

It stands out for its intuitive and efficient user interface, robust detection capabilities with minimal false positives, and the ability to handle encrypted traffic, making it a valuable asset for...

See all answers

What needs improvement with ExtraHop Reveal(x) 360?

See all answers

What advice do you have for others considering ExtraHop Reveal(x) 360?

I recommend prioritizing demos over POCs when engaging with vendors. Organizing POCs involves significant time and resource investments for both parties. Instead, invest time in multiple demo sessi...

See all answers

What do you like most about LogRhythm UserXDR?

The solution is useful for privilege accounts and super admin accounts. It is beneficial from a security perspective. The tool uses machine learning rather than threshold-based alerts. For instance...

See all answers

What is your experience regarding pricing and costs for LogRhythm UserXDR?

I rate the product's pricing a three out of ten. However, the cloud version is expensive. You need to hire professional services for deployment and migrations, which can be expensive.

See all answers

What needs improvement with LogRhythm UserXDR?

In general, if something needs to be improved in the algorithm, it would be the dashboards. The dashboards with solutions such as Splunk are very neat and clean. I would also like to improve the us...

See all answers

Comparisons

ExtraHop Reveal(x) vs ExtraHop Reveal(x) 360

Compared 32% of the time

Wiz vs ExtraHop Reveal(x) 360

Compared 17% of the time

Corelight vs ExtraHop Reveal(x) 360

Compared 16% of the time

Stellar Cyber Open XDR vs ExtraHop Reveal(x) 360

Compared 14% of the time

Forescout Platform vs ExtraHop Reveal(x) 360

Compared 13% of the time

More ExtraHop Reveal(x) 360 Competitors

Wazuh vs LogRhythm UEBA

Compared 45% of the time

Darktrace vs LogRhythm UEBA

Compared 20% of the time

Cortex XDR by Palo Alto Networks vs LogRhythm UEBA

Compared 10% of the time

Microsoft Purview Insider Risk Management vs LogRhythm UEBA

Compared 9% of the time

CrowdStrike Falcon vs LogRhythm UEBA

Compared 6% of the time

More LogRhythm UEBA Competitors

Product Reports

Buyer's Guide

Intrusion Detection and Prevention Software (IDPS)

April 2025

Download ExtraHop Reveal(x) 360 product report

Buyer's Guide

User Entity Behavior Analytics (UEBA)

April 2025

Download LogRhythm UEBA product report

Also Known As

ExtraHop Reveal(X) Cloud, Reveal(X) Cloud

LogRhythm UserXDR, LogRhythm Enterprise UEBA

Overview

Cloud is where your business operates, where it innovates, how it enables employees, and how it connects with customers. Adversaries know this, and that's why attacks against cloud assets in IaaS, PaaS, and SaaS environments are increasing. With Reveal(x) 360, you can mitigate the blast radius of advanced threats like ransomware and supply chain attacks with unified security across multicloud and hybrid environments in a single management pane.

ExtraHop Networks

LogRhythm UEBA enables your security team to quickly and effectively detect, respond to, and neutralize both known and unknown threats. Providing evidence-based starting points for investigation, it employs a combination of scenario analytics techniques (e.g., statistical analysis, rate analysis, trend analysis, advanced correlation), and both supervised and unsupervised machine learning (ML).

LogRhythm

Sample Customers

Wizards of the Coast

Information Not Available

Buyer's Guide

ExtraHop Reveal(x) 360 vs. LogRhythm UEBA

April 2025

Free Report: ExtraHop Reveal(x) 360 vs. LogRhythm UEBA

Find out what your peers are saying about ExtraHop Reveal(x) 360 vs. LogRhythm UEBA and other solutions. Updated: April 2025.

DOWNLOAD NOW

850,236 professionals have used our research since 2012.

See our ExtraHop Reveal(x) 360 vs. LogRhythm UEBA report.

See our list of best Extended Detection and Response (XDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.