Try our new research platform with insights from 80,000+ expert users

Microsoft Sentinel vs NNT Log Tracker Enterprise comparison

Microsoft and Netwrix are both solutions in the Security Information and Event Management (SIEM) category. Microsoft is ranked #3 with an average rating of 8.5, while Netwrix is ranked #62. Microsoft holds a 6.2% mindshare in SIEM, compared to Netwrix’s 0.3% mindshare. Additionally, 93% of Microsoft users are willing to recommend the solution, compared to 100% of Netwrix users who would recommend it.
Microsoft Sentinel
Read 98 Microsoft Sentinel reviews
  • 17,928 Views
  • 10,040 Comparison Views
93% willing to recommend
NNT Log Tracker Enterprise
Read 4 NNT Log Tracker Enterprise reviews
  • 444 Views
  • 355 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

NNT Log Tracker Enterprise and Microsoft Sentinel compete in the security solutions category. Microsoft Sentinel appears to have an upper hand due to its features and ease of deployment, while NNT Log Tracker Enterprise stands out in support and pricing.

Features: NNT Log Tracker Enterprise offers robust security controls, flexible reporting, and efficient system monitoring. Microsoft Sentinel provides comprehensive integration capabilities, advanced threat detection, and extensive analytics.

Room for Improvement: NNT Log Tracker Enterprise requires a more intuitive setup process, enhanced scalability, and better support for larger data volumes. Microsoft Sentinel needs improvements in documentation, enhanced user training, and more streamlined initial setup.

Ease of Deployment and Customer Service: NNT Log Tracker Enterprise is relatively straightforward to deploy with commendable customer service. Microsoft Sentinel, while more complex in deployment, benefits from Microsoft's extensive support network and resources.

Pricing and ROI: NNT Log Tracker Enterprise is cost-effective, providing a quicker return on investment. Microsoft Sentinel, though pricier, offers value through its features and integrations. NNT Log Tracker Enterprise is seen as better suited for budget-conscious organizations.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Microsoft Sentinel vs. NNT Log Tracker Enterprise Report (Updated: September 2025).
Buyer's Guide
Microsoft Sentinel vs. NNT Log Tracker Enterprise
September 2025
Download the complete report
Helped 869,760 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Microsoft Sentinel
Ranking in Security Information and Event Management (SIEM)
3rd
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
98
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (1st), Microsoft Security Suite (6th), AI-Powered Cybersecurity Platforms (5th)
NNT Log Tracker Enterprise
Ranking in Security Information and Event Management (SIEM)
62nd
Average Rating
8.2
Number of Reviews
4
Ranking in other categories
Log Management (62nd)
 

Mindshare comparison

As of October 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Microsoft Sentinel is 6.2%, down from 8.0% compared to the previous year. The mindshare of NNT Log Tracker Enterprise is 0.3%, up from 0.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Market Share Distribution
ProductMarket Share (%)
Microsoft Sentinel6.2%
NNT Log Tracker Enterprise0.3%
Other93.5%
Security Information and Event Management (SIEM)
 

Featured Reviews

Ivan Angelov - PeerSpot reviewer
Threat detection and response capabilities enhance investigation processes
My security team has been using Microsoft Sentinel for around two years. We also have Bastion and SolarWinds as part of our monitoring tools. We use a three-way tool, alongside Microsoft Sentinel, in our environment The most valuable features for us include threat collection, threat detection,…
Read full review
JT
Great for PCI compliance but issues with stability and large amounts of data
I mainly use this solution to meet PCI compliance The automation of compliance reports and the correlation of the log have been major improvements.  The most valuable feature is the predefined reports for PCI compliance. The correlation suite needs to be improved. I also think they need to…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"One of the most valuable features is that it creates a kind of a single pane of glass for organizations that already use Microsoft software. So, when they have things like Microsoft 365, it is very easy for them to kind of plug in or enroll those endpoints into the Azure Sentinel service."
"It's pretty powerful and its performance is pretty good."
"The scalability is great. You can put unlimited logs in, as long as you can pay for it. There are commitment tiers, up to six terabytes per day, which is nowhere close to what any one of our customers is running."
"It is able to connect to an ever-growing number of platforms and systems within the Microsoft ecosystem, such as Azure Active Directory and Microsoft 365 or Office 365, as well as to external services and systems that can be brought in and managed. We can manage on-premises infrastructure. We can manage not just the things that are running in Azure in the public cloud, but through Azure Arc and the hybrid capabilities, we can monitor on-premises servers and endpoints. We can monitor VMware infrastructure, for instance, running as part of a hybrid environment."
"The main benefit is the ease of integration."
"Microsoft Sentinel is cloud native, which is a significant advantage. The data connectors that provide the ability to connect third-party log sources are highly valuable."
"The machine learning and artificial intelligence on offer are great."
"It is easy to implement (turn on) - does need a skilled analyst to develop queries and playbooks."
More Microsoft Sentinel pros
"This is a very easy-to-use interface with a quick ramp-up time."
"File integrity monitoring is a very important function."
"The most valuable feature is the predefined reports for PCI compliance."
"The FIM features in the Change Tracker and the Log Tracker are the most valuable."
 

Cons

"Only one thing is missing: NDR is not available out-of-the-box. The competitive cloud-native SIEM providers have the NDR component. Currently, Sentinel needs NDR to be powered from either Corelight or some other NDR provider."
"My primary improvement request would be for auxiliary logs, as they represent our biggest need."
"One key area that can be improved is by building a strong integration with our XDR platform."
"The troubleshooting has room for improvement."
"I can't think of anything other than just getting the name out there. I think a lot of customers don't fully understand the full capabilities of Azure Sentinel yet. It is kind of like when they're first starting to use Azure, it might not be something they first think about. So, they should just kind of get to the point where it is more widely used."
"They should integrate it with many other software-as-a-service providers and make connectors available so that you don't have to do any sort of log normalization."
"Currently, the watchlist feature is being utilized, and although there have been improvements, it is still not fully optimized."
"Microsoft Sentinel should provide an alternative query language to KQL for users who lack KQL expertise."
More Microsoft Sentinel cons
"It is able to identify the vulnerability, however, they need an option to auto-mitigate."
"I would like to see the integration of AI technology, so rather than manually monitoring the logs, the tool will understand it and take care of it."
"Only one minor deployment issue came up and it was resolved quickly. No other areas of improvement come to mind yet."
"The correlation suite needs to be improved."
 

Pricing and Cost Advice

"For us, it is not expensive at this time, but if we start to collect all logs from our on-premise SIEM solutions, it will cost more than QRadar. If we calculate its cost over the next five or ten years, it will cost more than what we paid for QRadar."
"It is consumption-based pricing. It is an affordable solution."
"It is a consumption-based license model. bands at 100, 200, 400 GB per day etc. Azure Sentinel Pricing | Microsoft Azure"
"Azure Sentinel is very costly, or at least it appears to be very costly. The costs vary based on your ingestion and your retention charges."
"There are no additional costs other than the initial costs of Sentinel."
"Currently, given our use case, the cost of Sentinel is justified, but it is expensive."
"The product is costly compared to Splunk."
"It's costly to maintain and renew."
More Microsoft Sentinel pricing and cost advice
"Consider both their on-premises solution and their hosted solution. Both are reasonably priced."
"NNT's pricing is moderate - I would rate their pricing two-and-a-half out of ten."
"We have selected a perpetual license along with support."
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
869,760 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
11%
Manufacturing Company
8%
Government
7%
No data available
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business37
Midsize Enterprise20
Large Enterprise41
No data available
 

Questions from the Community

Is there a common threat intelligence tool that aggregates multiple threat intelligence sources?
Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel and its Threat Hunting functionality with AI available as templates or customized ...
See all answers
What is a better choice, Splunk or Azure Sentinel?
It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log ...
See all answers
Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
Ask a question
Earn 20 points
 

Comparisons

AWS Security Hub vs Microsoft Sentinel Logo
AWS Security Hub vs Microsoft Sentinel
Compared 18% of the time
Cortex XSIAM vs Microsoft Sentinel Logo
Cortex XSIAM vs Microsoft Sentinel
Compared 7% of the time
IBM Security QRadar vs Microsoft Sentinel Logo
IBM Security QRadar vs Microsoft Sentinel
Compared 7% of the time
Wazuh vs Microsoft Sentinel Logo
Wazuh vs Microsoft Sentinel
Compared 5% of the time
Google Chronicle Suite vs Microsoft Sentinel Logo
Google Chronicle Suite vs Microsoft Sentinel
Compared 4% of the time
More Microsoft Sentinel Competitors
No data available
 

Product Reports

Buyer's Guide
Microsoft Sentinel
September 2025
Microsoft Sentinel reportDownload Microsoft Sentinel product report
Buyer's Guide
Log Management
October 2025
NNT Log Tracker Enterprise reportDownload NNT Log Tracker Enterprise product report
 

Also Known As

Azure Sentinel
No data available
 

Overview

Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

- Respond to incidents rapidly with built-in orchestration and automation of common tasks

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

Microsoft

NNT Log Tracker Enterprise is a comprehensive and easy-to-use Security Information and Event Management (SIEM) solution for any compliance mandate providing:

  • Enterprise-class SIEM capabilities.
  • Compliance Automation.
  • User and System Activity Audit trails.
  • Network Anomaly forensics.
  • Proactive Threat Detection.
Netwrix
 

Sample Customers

Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.
Wonga, WHSmith
Buyer's Guide
Microsoft Sentinel vs. NNT Log Tracker Enterprise
September 2025
Free Report: Microsoft Sentinel vs. NNT Log Tracker Enterprise
Find out what your peers are saying about Microsoft Sentinel vs. NNT Log Tracker Enterprise and other solutions. Updated: September 2025.
DOWNLOAD NOW
869,760 professionals have used our research since 2012.
See our Microsoft Sentinel vs. NNT Log Tracker Enterprise report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.