Wazuh and Google Chronicle Suite are top contenders in the cybersecurity space. Users show a preference for Google Chronicle Suite due to its advanced features, while Wazuh is preferred for cost-effectiveness and support.
Features: Users value Wazuh for its integration capabilities, real-time monitoring, and cost-effectiveness. Google Chronicle Suite is praised for its scalable cloud-native infrastructure, comprehensive threat intelligence, and advanced features.
Room for Improvement: Wazuh users highlight the need for more comprehensive documentation, smoother upgrade processes, and better user interface. Google Chronicle Suite users seek enhanced customization options, quicker response times to support requests, and better user flexibility.
Ease of Deployment and Customer Service: Wazuh is favored for its straightforward deployment and responsive support team. Google Chronicle Suite offers seamless deployment at scale but has mixed feedback on customer service efficiency.
Pricing and ROI: Wazuh is noted for its affordability and quick ROI. Google Chronicle Suite, though costly, is considered a worthwhile investment for its advanced capabilities.
I have seen value in security cost savings with Wazuh, as using proprietary EDR versions could save us substantial money.
We are a critical project for them at this moment, and they provide excellent service.
They are slow, and the initial responses often require more information rather than providing helpful solutions.
The technical support I’ve received is rated an eight out of ten.
They responded quickly, which was crucial as I was on a time constraint.
We use the open-source version of Wazuh, which does not provide paid support.
The documentation is good and provides clear instructions, though it's targeted at those with technical backgrounds.
I rate the scalability of Google Chronicle Suite as ten out of ten.
Google Chronicle Suite is very scalable, being a cloud-based solution.
Chronicle Suite is fully scalable with a rating of seven or eight out of ten in scalability.
It can accommodate thousands of endpoints on one instance, and multiple instances can run for different clients.
Currently, I don't see any limitations in terms of scalability as Wazuh can still connect many endpoints.
Scalability depends on the configuration and the infrastructure resources like compute and memory we allocate.
I rate the stability of Google Chronicle Suite as a nine, as I have not encountered any stability issues.
The stability of Wazuh is strong, with no issues stemming from the solution itself.
The stability of Wazuh is largely dependent on maintenance.
The indexer frequently times out, requiring system restarts.
The graphical user interface could be improved to enhance user experience.
The UI is the primary challenge in need of improvement.
Google Chronicle Suite lacks near time detection.
The integration modules are insufficiently developed, necessitating the creation of custom integration solutions using tools like Logstash and PubSub.
I think Wazuh should improve by introducing AI functionalities, as it would be beneficial to see AI incorporated in the threat hunting and detection functionalities.
Wazuh could improve by creating videos on YouTube covering installation, use cases, and integration of third-party APIs for different scenarios that other SAAS services provide.
It's neither expensive nor cheap, and I believe it is a justified price for the features offered.
Compared to a SIEM like Microsoft Sentinel, it is much more affordable.
I experience Chronicle as less expensive and less complicated than Azure.
Wazuh is completely free of charge.
Totaling around two lakh Indian rupees per month.
Wazuh is free to use, but there are licensing fees for third parties.
They also combine their source solution into one product, allowing for out-of-the-box playbook creation and incident response.
The AI infused into the platform helps in investigations and rule creation.
The automated response feature allows for immediate actions like isolating infected machines or blocking malicious IP addresses.
Wazuh is a SIEM tool that is highly customizable and versatile.
The system allows us to monitor endpoints effectively and collect security data that can be utilized across other platforms such as SOAR.
With this open source tool, organizations can establish their own customized setup.
Organizations primarily leverage Google Chronicle Suite for centralized log management, threat intelligence, and endpoint security, addressing MDR requirements with continuous monitoring.
Google Chronicle Suite supports storage, security, and alert checking. Utilizing log information to generate alerts and integration with search engines, it monitors network and login issues. It is a choice for consultants on client projects, and partners handle its global resale and implementation.
What are the key features of Google Chronicle Suite?Industries employ Google Chronicle Suite for its robust security measures and log management. It is especially vital for IT, finance, healthcare, and any sector needing stringent security and compliance. Consultants find it essential for tailoring security protocols in client projects, while partners ensure seamless implementation across regions.
Wazuh is an enterprise-ready platform used for security monitoring. It is a free and open-source platform that is used for threat detection, incident response and compliance, and integrity monitoring. Wazuh is capable of protecting workloads across virtualized, on-premises, containerized, and cloud-based environments.
It consists of an endpoint security agent and a management server. Additionally, Wazuh is fully integrated with the Elastic Stack, allowing users the ability to navigate through security alerts via a data visualization tool.
Wazuh Capabilities
Some of Wazuh’s most notable capabilities include:
Wazuh Benefits
Some of the most valued benefits of Wazuh include:
Wazuh Offers
Reviews From Real Users
"It's very easy to integrate Wazuh with other environments, cloud applications, and on-prem applications. So, the advantage is that it's easy to implement and integrate with other solutions." - Robert C., IT Security Consultant at Microlan Kenya Limited
“The MITRE ATT&CK correlation is most valuable.” - Chief Information Security Officer at a financial services firm
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
