Try our new research platform with insights from 80,000+ expert users

LogRhythm UEBA vs SentinelOne Singularity Complete comparison

LogRhythm and SentinelOne are both solutions in the Extended Detection and Response (XDR) category. LogRhythm is ranked #25 with an average rating of 7.0, while SentinelOne is ranked #2 with an average rating of 8.6. LogRhythm holds a 1.1% mindshare in XDR, compared to SentinelOne’s 5.2% mindshare. Additionally, 55% of LogRhythm users are willing to recommend the solution, compared to 97% of SentinelOne users who would recommend it.
LogRhythm UEBA
Read 11 LogRhythm UEBA reviews
  • 889 Views
  • 752 Comparison Views
55% willing to recommend
SentinelOne Singularity Com...
Read 198 SentinelOne Singularity Complete reviews
  • 9,590 Views
  • 5,229 Comparison Views
97% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 8, 2024
```html

SentinelOne Singularity Complete and LogRhythm UEBA compete in the cybersecurity space. LogRhythm may hold the upper hand due to its superior features, though SentinelOne offers competitive pricing and noteworthy support.

Features: SentinelOne Singularity Complete offers real-time threat detection, autonomous response capabilities, and value-focused security solutions. LogRhythm UEBA is recognized for advanced analytics, behavioral analysis, and in-depth insights into user activities.

Room for Improvement: SentinelOne could enhance integration capabilities, support broader platform compatibility, and improve ecosystem expansion. LogRhythm would benefit from a smoother learning curve, simpler user interfaces, and streamlined access to complex functionalities.

Ease of Deployment and Customer Service: SentinelOne is easy to deploy with responsive customer service. LogRhythm has a more complex deployment but comprehensive support materials are available.

Pricing and ROI: SentinelOne offers favorable pricing leading to positive ROI. LogRhythm, despite higher costs, provides extensive capabilities delivering substantial long-term returns.

```
DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed LogRhythm UEBA vs. SentinelOne Singularity Complete Report (Updated: April 2025).
Buyer's Guide
LogRhythm UEBA vs. SentinelOne Singularity Complete
April 2025
Download the complete report
Helped 850,028 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

LogRhythm UEBA
Ranking in Extended Detection and Response (XDR)
25th
Average Rating
7.0
Reviews Sentiment
6.7
Number of Reviews
11
Ranking in other categories
User Entity Behavior Analytics (UEBA) (11th)
SentinelOne Singularity Com...
Ranking in Extended Detection and Response (XDR)
2nd
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
198
Ranking in other categories
Endpoint Protection Platform (EPP) (3rd), Anti-Malware Tools (2nd), Endpoint Detection and Response (EDR) (2nd)
 

Mindshare comparison

As of May 2025, in the Extended Detection and Response (XDR) category, the mindshare of LogRhythm UEBA is 1.1%, up from 0.9% compared to the previous year. The mindshare of SentinelOne Singularity Complete is 5.2%, down from 7.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Extended Detection and Response (XDR)
 

Featured Reviews

Sheikh Abu Ayub Azad - PeerSpot reviewer
Great at managing cyber incidents; the technical support could be improved
The initial setup is easy, partly because LogRhythm is primarily based on the Windows platform. It's good to have two engineers for deployment but it can be done with one. It's more about the knowledge. Deployment is typically done in two or three different phases. It usually takes up to three full months to get good deployment. There's the initial onboarding of all the log sources, then collecting data in the data lake, followed a couple of weeks later with some minor tuning before the final tuneup.
Read full review
Asim Naeem - PeerSpot reviewer
It integrates well with other platforms, is user-friendly, and is stable
SentinelOne Singularity Complete integrates with our other security solutions, correlating data from NDR, ADR, SIEM, and XDR tools. All this information is consolidated within SentinelOne, providing a centralized access point. SentinelOne Singularity Complete has helped us streamline our security operations by consolidating multiple solutions into a single platform. We are currently in the process of acquiring a threat intelligence platform to complete our security stack. We use Ranger to monitor our network and track connected devices. This is crucial because it helps us quickly identify unauthorized machines connected to our infrastructure, including personal devices. We have additional security measures in place, but Ranger provides an extra layer of protection. It also alerts us if the SentinelOne Singularity Complete agent is missing from any new or existing machines, allowing us to take appropriate action. SentinelOne Ranger's agentless and hardware-independent nature is crucial for our environment with 26,000 endpoints, as manual management of such a large number would be extremely challenging. Ranger uses a multi-layered approach to prevent vulnerable devices from being compromised. We employ scanners, network configurations, and a risk scanner to assess devices, endpoints, servers, and cloud infrastructures. Vulnerability reports and timelines for remediation are shared with device owners or custodians. This proactive strategy enables us to address vulnerabilities efficiently and secure our infrastructure. SentinelOne Singularity Complete has significantly enhanced our security posture. While no system is impenetrable, this solution has brought us closer to achieving a high level of protection, ensuring we maintain at least a 90 percent security level. Our team is dedicated to refining alerts and eliminating false positives from our solutions. Additionally, a team is responsible for identifying and excluding alerts from the solution. We can manually expedite this process by reviewing these elements and utilizing our security tools. We have been able to reduce the alert volume by 20 percent. Our 30-member Security Operations Center team has been able to redirect their focus to other tasks due to the time saved after implementing SentinelOne Singularity Complete. SentinelOne Singularity Complete has helped us improve our mean time to detect threats, which we accomplish using the Vigilance service for detection and response. SentinelOne Singularity Complete has helped us decrease our organizational risk. We utilize the Security Scorecard to manage our security posture, which has remained steady at 90 percent.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It is easy to monitor users and that is how the solution is adding value to our firm."
"Good capability pinpointing specific cyber incidents."
"I can investigate attacks more quickly using machine learning tools."
"It has a lot of features. It has file integration monitoring."
"LogRhythm UEBA’s best feature is the dashboard. It provides several graphs, charts, and event logs."
"What I like most about LogRhythm UEBA is that it allows you to identify and analyze end-user behaviors and suspicious activities within the systems."
"The most valuable features are file activity monitoring and registry activity monitoring."
"The tool's most valuable feature is server threat hunting."
More LogRhythm UEBA pros
"It is purely cloud-based, meaning you don't need to have something installed, such as a server on-prem. You have cloud management and can access it from anywhere, with integration with SSO, with one click. It's also very lightweight."
"It protects your machine, and it does an excellent job using AI to determine an attack and stop the attack. Its most powerful feature is prevention, and it can unwind ransomware activity as well. So, it is a really useful product in that sense."
"SentinelOne has improved the overall security posture of the firm without creating a lot of hassle for our end users. Everything is a bit more secure. We think Singularity Complete has helped us reduce our organizational risks."
"The most valuable features of SentinelOne Singularity Complete are machine learning because it saves us time, device control for data privacy, and the token."
"Another valuable feature is that if a machine is infected, one that may infect other computers within the network, we have the capability of segregating that machine in the network so that it remains connected to the internet but is cut off from the other machines in the network. That helps prevent spreading of the infection. That's a very unique feature, one I have not seen in the last 10 to 15 years from any other antivirus program. That's amazing."
"I was extremely happy with their technical staff. The solution's tech support is top-notch. They have some really good engineers on their team."
"Singularity Complete has helped reduce alerts."
"SentinelOne Singularity has hundreds of features. The most valuable feature of the solution is the ease of use and threat control."
More SentinelOne Singularity Complete pros
 

Cons

"The product could be user-friendly for someone who doesn’t have any prior experience working with it."
"The cloud version is lacking and not up to par."
"The product should improve its dashboards. Splunk has neat dashboards. Additionally, we would like to enhance the use cases provided by LogRhythm as its use case library is not as extensive as other tools. Its machine-learning capabilities need to improve when compared to other solutions. It lacks risk quantification in a single, transparent view for individuals such as CSOs."
"LogRhythm UEBA's data aggregation needs to be improved. Open-source users do not have much documentation available. Documentation is available only for enterprise users."
"In general, if something needs to be improved in the algorithm, it would be the dashboards."
"The on-premises LogRhythm is not very scalable. When considering packets per second or the MPS needed for additional logs such as web application logs, scalability is usually found in cloud products."
"It should have better mitigation with other solutions and be tightly integrated with other solutions. It has to be improved."
"It would be helpful if there were more guidance provided for integrating with unsupported devices."
More LogRhythm UEBA cons
"We are now using an external monitoring tool to monitor the services of SentinelOne, because apparently they don't have any solution for that. When the SentinelOne agent is down, you can go to the interface and see a mark on SentinelOne that something is not correct or the server needs to be rebooted, but you will not get an alert. You will not be warned that there is an issue with the SentinelOne agent. I have found that a little bit disturbing, because then we need to use a third-party monitoring tool to make sure that all services of SentinelOne are up and running."
"The setup process could be improved."
"SentinelOne needs to provide more documentation for administrators and analytics."
"I would like to improve the reports because they are not so customizable and we would like more info from them."
"The SentinelOne portal is not user-friendly, which is one of its drawbacks."
"All is good for now, but we cannot rest, and continuous development - in particular with regard to the areas of automation, machine learning, and artificial intelligence - is required to keep ahead of the cybercriminals."
"The ability to have more direct purchasing for smaller groups and smaller businesses would be great."
"The agent update is not the most intuitive process, but I understand why they do it. We have a pretty vertical 64-bit environment for Windows. That is pretty much all we have, but we get alerts for things like the new Linux endpoint or things that do not apply to us. That is probably the only thing that I do not like. There may be some way to turn that off so that I do not get endpoint update alerts from platforms that are not applicable to our system, enterprise, or network."
More SentinelOne Singularity Complete cons
 

Pricing and Cost Advice

"As LogRhythm UEBA is pretty expensive, I'd give its pricing a seven out of ten."
"I rate the product's pricing a three out of ten. However, the cloud version is expensive. You need to hire professional services for deployment and migrations, which can be expensive."
"Licensing is on a yearly basis. It's not expensive compared to its competitors."
"It is quite a budget-friendly product."
"The pricing is nice when compared to other products in the industry."
"LogRhythm UEBA's pricing is affordable for small and medium businesses."
"The price for it is very competitive compared to other Next Gen EPP."
"SentinelOne Singularity Complete meets all enterprise requirements and is priced accordingly."
"The license is per user."
"Pricing seemed reasonable at first. However, the way SentinelOne handles its licensing did not work for our environments and led to secondary discussions around cost. They counted many of the instances and licenses as duplicates despite them only being alive once, which was frustrating."
"It is comparatively cheap in the market and provides a good price point."
"The price is competitive, if you compare it with other solutions on the market."
"It is expensive. There is no doubt about it. If one of the functions does not work, it becomes very difficult for any CIO to justify the cost."
"SentinelOne was half the price of CrowdStrike."
More SentinelOne Singularity Complete pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.
See recommendations
850,028 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
18%
Financial Services Firm
11%
Manufacturing Company
9%
Real Estate/Law Firm
7%
Computer Software Company
20%
Manufacturing Company
8%
Financial Services Firm
7%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about LogRhythm UserXDR?
The solution is useful for privilege accounts and super admin accounts. It is beneficial from a security perspective. The tool uses machine learning rather than threshold-based alerts. For instance...
See all answers
What is your experience regarding pricing and costs for LogRhythm UserXDR?
I rate the product's pricing a three out of ten. However, the cloud version is expensive. You need to hire professional services for deployment and migrations, which can be expensive.
See all answers
What needs improvement with LogRhythm UserXDR?
In general, if something needs to be improved in the algorithm, it would be the dashboards. The dashboards with solutions such as Splunk are very neat and clean. I would also like to improve the us...
See all answers
Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...
See all answers
Which is better - SentinelOne or Darktrace?
Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is meant for smaller to medium-sized businesses. It is also a good option for organ...
See all answers
What do you like most about SentinelOne Singularity?
The Ranger feature is valuable.
See all answers
 

Comparisons

Wazuh vs LogRhythm UEBA Logo
Wazuh vs LogRhythm UEBA
Compared 45% of the time
Darktrace vs LogRhythm UEBA Logo
Darktrace vs LogRhythm UEBA
Compared 20% of the time
Cortex XDR by Palo Alto Networks vs LogRhythm UEBA Logo
Cortex XDR by Palo Alto Networks vs LogRhythm UEBA
Compared 10% of the time
Microsoft Purview Insider Risk Management vs LogRhythm UEBA Logo
Microsoft Purview Insider Risk Management vs LogRhythm UEBA
Compared 9% of the time
CrowdStrike Falcon vs LogRhythm UEBA Logo
CrowdStrike Falcon vs LogRhythm UEBA
Compared 6% of the time
More LogRhythm UEBA Competitors
Datto Endpoint Detection and Response (EDR) vs SentinelOne Singularity Complete Logo
Datto Endpoint Detection and Response (EDR) vs SentinelOne Singularity Complete
Compared 6% of the time
Microsoft Defender for Endpoint vs SentinelOne Singularity Complete Logo
Microsoft Defender for Endpoint vs SentinelOne Singularity Complete
Compared 6% of the time
Darktrace vs SentinelOne Singularity Complete Logo
Darktrace vs SentinelOne Singularity Complete
Compared 6% of the time
CrowdStrike Falcon vs SentinelOne Singularity Complete Logo
CrowdStrike Falcon vs SentinelOne Singularity Complete
Compared 5% of the time
Bitdefender GravityZone EDR vs SentinelOne Singularity Complete Logo
Bitdefender GravityZone EDR vs SentinelOne Singularity Complete
Compared 4% of the time
More SentinelOne Singularity Complete Competitors
 

Product Reports

Buyer's Guide
User Entity Behavior Analytics (UEBA)
April 2025
LogRhythm UEBA reportDownload LogRhythm UEBA product report
Buyer's Guide
SentinelOne Singularity Complete
April 2025
SentinelOne Singularity Complete reportDownload SentinelOne Singularity Complete product report
 

Also Known As

LogRhythm UserXDR, LogRhythm Enterprise UEBA
Sentinel Labs, SentinelOne Singularity
 

Overview

LogRhythm UEBA enables your security team to quickly and effectively detect, respond to, and neutralize both known and unknown threats. Providing evidence-based starting points for investigation, it employs a combination of scenario analytics techniques (e.g., statistical analysis, rate analysis, trend analysis, advanced correlation), and both supervised and unsupervised machine learning (ML).

LogRhythm

SentinelOne Singularity Complete provides AI-driven threat detection and response with features like ransomware protection and rollback, offering endpoint protection with minimal system impact and deep forensic analysis.

SentinelOne Singularity Complete combines machine learning and artificial intelligence to offer robust endpoint protection. It delivers real-time insights and advanced threat detection through seamless integration with third-party tools, allowing for efficient endpoint management. With an emphasis on user-friendliness, it ensures reduced false positives. Room for improvement includes better integration options, enhanced reporting, and more precise analytics to tackle false positives. Users seek improved interoperability with systems and comprehensive support for legacy systems.

What are the key features of SentinelOne Singularity Complete?
  • Rollback Feature: Enables restoration of affected systems to a healthy state after an attack.
  • Ransomware Protection: Advanced mechanisms to prevent and mitigate ransomware threats.
  • Machine Learning and AI: Utilizes cutting-edge technology for precise threat detection and response.
  • Seamless Integration: Works well with third-party tools for enhanced endpoint protection.
  • Real-Time Protection: Proactively defends against advanced threats with minimal delays.
What benefits and ROI should users consider?
  • Reduced False Positives: Accurate threat detection limits operational disruptions.
  • Efficient Endpoint Protection: Ensures security with low system impact.
  • User-Friendly Experience: Simplified management and ease of use aid productivity.
  • Deep Forensic Analysis: Assists in effective threat investigation and response.
  • Cost-Effective Security: Positions as a worthwhile alternative to traditional antivirus solutions.

Organizations from industries like finance, healthcare, and technology deploy SentinelOne Singularity Complete to safeguard endpoints such as PCs, servers, and virtual machines. Equipped with EDR, it effectively replaces traditional antivirus systems and integrates with cloud technology for real-time security insights.

SentinelOne
 

Sample Customers

Information Not Available
Havas, Flex, Estee Lauder, McKesson, Norfolk Southern, JetBlue, Norwegian airlines, TGI Friday, AVX, Fim Bank
Buyer's Guide
LogRhythm UEBA vs. SentinelOne Singularity Complete
April 2025
Free Report: LogRhythm UEBA vs. SentinelOne Singularity Complete
Find out what your peers are saying about LogRhythm UEBA vs. SentinelOne Singularity Complete and other solutions. Updated: April 2025.
DOWNLOAD NOW
850,028 professionals have used our research since 2012.
See our LogRhythm UEBA vs. SentinelOne Singularity Complete report.
See our list of best Extended Detection and Response (XDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.