We performed a comparison between Quest InTrust, Splunk Enterprise Security, and VMware Aria Operations for Logs based on real PeerSpot user reviews.
Find out what your peers are saying about Splunk, Wazuh, Datadog and others in Log Management."I would rate the technical support very well as they are knowledgeable and quick to respond."
"There are quite a lot of things that we find useful. Splunk agents are useful and good. Its UI is quite impressive."
"I haven't had the chance to properly sink my teeth into Enterprise Security but so far I like that they added the MITRE ATT&CK features."
"Splunk has facilitated the correlation of information security logs to look for incidents which could cause damage to the company's infrastructure, as well as financial losses from leaks."
"Search language is easy to understand and teach to new users."
"Splunk's interface is user-friendly, and it has apps and add-ons for most applications. We can easily normalize the data to make it readable and understand the logs. We easily get all the field extractions and enrichment done by using the apps and add-ons. This helps us understand the application logs because the raw data is useless unless we extract some useful information from it. These add-ons make it so much easier."
"If I need to integrate devices for logs, it is easier with Splunk. We can integrate different applications, network devices, and databases. It is also very rich in documents. It is the best."
"The ability to rapidly diagnose problems in production and non-production, across hundreds of log files, is the most valuable feature."
"The most valuable features for us include its robust log management capabilities, which allow us to efficiently handle and retain logs for extended periods as needed."
"We use the on-premises version of this solution for log analysis and to find details about certain issues."
"The solution is quite user-friendly."
"I like the interface."
"One of the things I like about it is its interface. When it comes to generating reports on VMs and stuff, it's very quick. This is very handy for the technical team, who need to generate reports quickly. So that's really good."
"The virtualization solution supports data center virtualization, network and security."
"It allows us to gain a comprehensive overview of our infrastructure."
"It gives the customer a quick overview, so they don't have to dig. There's a clear dashboard with many sensors in a single space. He gets a helicopter view of his environment, but he can investigate further if there are serious issues. It's pretty user-friendly."
"The events are notably more descriptive, aiding in security and event analysis. We've also integrated Sky Collector, providing valuable insights and solutions for troubleshooting."
"It needs to have better reporting. "
"It was very complex. There was poor native correlation. "
"The pricing can be better."
"The solution could improve by increasing the performance. We have run into problems when large amounts of data are processed."
"It needs integration with a configuration management solution."
"I would like additional features in different programming models with the support for writing queries in SQL or other languages, such as C#, Java, or some other type of query definitions."
"There are limitations with Splunk not detecting all user activity, especially on mainframes and network devices."
"Splunk is query-based, which is not the case with most cybersecurity tools. It is based on search queries and can be difficult to use. It would be good if they can make it easier to understand how to create search queries. They can improve the knowledge base for better understanding. To create your dashboard, you need to have a search query. We have multiple firewalls in our company, and we need a dashboard for them. It would be helpful if a default firewall dashboard is included in Splunk to make monitoring easier. If a dashboard is available for a security device, the operation part will be more efficient. We won't have to follow a manual process for this."
"The solution could improve by giving more email details."
"Splunk can improve its third-party device application plugins."
"I don't use the solution on a day to day basis, so I'm not sure what specifically can be improved."
"The solution isn't user-friendly for admins."
"Integration with other vendors is something that could be improved, they could add more vendors."
"It needs better integration with third-party analytics tools."
"The solution is a very good tool, but it has a lot of limitations. One of the main issues is around how you define your retention policy, for instance, in Log Insight. It doesn't have it. You can't define a log retention policy. You also can't define the destination or location for your logs. All of the logs are in one index or one bucket."
"The product's price falls on the higher end of the spectrum, making it an area of concern."
"I would like to see more tutorials or at least an introduction video from the supplier, so you can become proficient and get the most out of the solution. You might not get the full benefit from a logging or reporting solution because you might not have a particular tool enabled. You could leave something out of your analysis because you aren't aware of it or you don't know how to set it up."
"The tool is expensive."
More VMware Aria Operations for Logs Pricing and Cost Advice →
Earn 20 points