Try our new research platform with insights from 80,000+ expert users

Sentinel vs Wazuh comparison

OpenText and Wazuh are both solutions in the Security Information and Event Management (SIEM) category. OpenText is ranked #21 with an average rating of 7.3, while Wazuh is ranked #2 with an average rating of 7.7. OpenText holds a 3.8% mindshare in SIEM, compared to Wazuh’s 10.9% mindshare. Additionally, 82% of OpenText users are willing to recommend the solution, compared to 80% of Wazuh users who would recommend it.
Sentinel
Read 17 Sentinel reviews
  • 3,118 Views
  • 3,056 Comparison Views
82% willing to recommend
Wazuh
Read 48 Wazuh reviews
  • 43,564 Views
  • 19,604 Comparison Views
80% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Aug 25, 2025

Sentinel and Wazuh compete in the security solutions market, specializing in threat detection and management. Sentinel holds an advantage with its advanced threat detection through smart analysis and automation, while Wazuh's strengths are in flexibility and cost-effectiveness from being open-source.

Features: Sentinel's key features include advanced threat detection with smart analysis, seamless integration with Microsoft tools, and robust automation capabilities. Wazuh offers flexibility and scalability due to its open-source nature, excellent compliance monitoring, particularly with PCI DSS and CIS benchmarks, and integration points with Kubernetes and cloud services like AWS.

Room for Improvement: Sentinel may need to improve its correlation engine and expand device support for smoother cloud integration. Wazuh could benefit from enhancing its threat intelligence capabilities, simplifying usage with more out-of-the-box features and templates, and refining its web interface for improved user experience.

Ease of Deployment and Customer Service: Sentinel adapts well to various deployment environments, offering strong customer support, although experiences may vary. Wazuh supports versatile deployment across cloud and on-premises setups but relies heavily on community-driven support, which can be a limitation for enterprise needs.

Pricing and ROI: Sentinel is a subscription-based service with premium security features justifying its cost, catering primarily to larger organizations. Wazuh, being free and open-source, attracts smaller organizations seeking low operational costs; however, users should consider potential additional costs for support and infrastructure.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Sentinel vs. Wazuh Report (Updated: July 2025).
Buyer's Guide
Sentinel vs. Wazuh
July 2025
Download the complete report
Helped 867,341 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
6.0
Sentinel tracks user behavior to prevent security issues, offering financial gain typically within a three-year lease period.
Sentiment score
5.6
Wazuh offers significant ROI through reduced detection times and cost-effectiveness, benefiting small and medium businesses financially.
No quotes available
For more quotes and insights, download the Sentinel report
I have seen value in security cost savings with Wazuh, as using proprietary EDR versions could save us substantial money.
For more quotes and insights, download the Wazuh report
 

Customer Service

Sentiment score
4.5
Clients find Sentinel service excellent overall, but some face delays and difficulties, especially with low-priority issues.
Sentiment score
6.0
Wazuh support is effective for paid users, but open-source users face variability in community responsiveness and documentation use.
No quotes available
For more quotes and insights, download the Sentinel report
They responded quickly, which was crucial as I was on a time constraint.
We use the open-source version of Wazuh, which does not provide paid support.
The documentation is good and provides clear instructions, though it's targeted at those with technical backgrounds.
For more quotes and insights, download the Wazuh report
reviewer2711757 - PeerSpot reviewerreviewer2590542 - PeerSpot reviewerSandip_Patel - PeerSpot reviewer
 

Scalability Issues

Sentiment score
8.0
Sentinel efficiently scales and integrates with systems, favored by large organizations for enterprise-grade performance in extensive environments.
Sentiment score
7.5
Wazuh offers adaptable scaling, effective for most, despite challenges, excelling in compliance and endpoint management with varied scalability scores.
No quotes available
For more quotes and insights, download the Sentinel report
It can accommodate thousands of endpoints on one instance, and multiple instances can run for different clients.
Currently, I don't see any limitations in terms of scalability as Wazuh can still connect many endpoints.
Scalability depends on the configuration and the infrastructure resources like compute and memory we allocate.
For more quotes and insights, download the Wazuh report
SC
EO
reviewer2590542 - PeerSpot reviewer
 

Stability Issues

Sentiment score
8.0
Sentinel is generally stable, with some users noting Java-related issues and region-specific outages, but high ratings overall.
Sentiment score
6.6
Wazuh's stability generally ranges from moderate to high, contingent on proper maintenance, updates, and user-specific technical environments.
No quotes available
For more quotes and insights, download the Sentinel report
The indexer frequently times out, requiring system restarts.
The stability of Wazuh is largely dependent on maintenance.
The stability of Wazuh is strong, with no issues stemming from the solution itself.
For more quotes and insights, download the Wazuh report
reviewer2711757 - PeerSpot reviewer
SC
reviewer2590542 - PeerSpot reviewer
 

Room For Improvement

Sentinel requires improved web integration, user interface, customization, documentation, and dashboard simplicity, while addressing regional outages and cost concerns.
Wazuh requires enhanced interface usability, scalability, AI integration, and easier deployment, with improved reporting and native system integration.
Price is always a consideration, so the price would be nice if it were lower.
For more quotes and insights, download the Sentinel report
Wazuh could improve by creating videos on YouTube covering installation, use cases, and integration of third-party APIs for different scenarios that other SAAS services provide.
I think Wazuh should improve by introducing AI functionalities, as it would be beneficial to see AI incorporated in the threat hunting and detection functionalities.
The integration modules are insufficiently developed, necessitating the creation of custom integration solutions using tools like Logstash and PubSub.
For more quotes and insights, download the Wazuh report
Simon Johnston - PeerSpot reviewerreviewer2711757 - PeerSpot reviewer
EO
reviewer2590542 - PeerSpot reviewer
 

Setup Cost

Sentinel is a subscription-based enterprise solution with competitive pricing, offering discounts and regular updates, requiring a support contract.
Wazuh is cost-effective for enterprises with open-source availability but incurs costs for infrastructure, support, and managed hosting.
They nearly always bill it in dollars, so if it can be billed in our currency, that would be helpful and fixed in our currency.
For more quotes and insights, download the Sentinel report
Wazuh is completely free of charge.
Totaling around two lakh Indian rupees per month.
Wazuh is free to use, but there are licensing fees for third parties.
For more quotes and insights, download the Wazuh report
Simon Johnston - PeerSpot reviewer
EO
reviewer2590542 - PeerSpot reviewerreviewer2711757 - PeerSpot reviewer
 

Valuable Features

Sentinel excels with its scalable, user-friendly design, integrating advanced threat detection and automated incident response, enhancing security management.
Wazuh offers customizable open-source security solutions with SIEM, MITRE, and compliance tools for cloud-native, Kubernetes, and Azure environments.
Sentinel's best features include that it's a very easy product to use.
For more quotes and insights, download the Sentinel report
The system allows us to monitor endpoints effectively and collect security data that can be utilized across other platforms such as SOAR.
With this open source tool, organizations can establish their own customized setup.
Wazuh is a SIEM tool that is highly customizable and versatile.
For more quotes and insights, download the Wazuh report
Simon Johnston - PeerSpot reviewer
EO
reviewer2711757 - PeerSpot reviewer
SC
 

Categories and Ranking

Sentinel
Ranking in Security Information and Event Management (SIEM)
21st
Average Rating
7.4
Reviews Sentiment
6.7
Number of Reviews
17
Ranking in other categories
No ranking in other categories
Wazuh
Ranking in Security Information and Event Management (SIEM)
2nd
Average Rating
7.4
Reviews Sentiment
6.7
Number of Reviews
48
Ranking in other categories
Log Management (1st), Extended Detection and Response (XDR) (5th)
 

Mindshare comparison

As of September 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Sentinel is 3.8%, up from 2.3% compared to the previous year. The mindshare of Wazuh is 10.9%, down from 16.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Market Share Distribution
ProductMarket Share (%)
Wazuh10.9%
Sentinel3.8%
Other85.3%
Security Information and Event Management (SIEM)
 

Featured Reviews

Simon Johnston - PeerSpot reviewer
Simple antivirus solution integrates well but could improve pricing and currency options
I don't really have experience working with these solutions. I promote them for our clients, but I don't work with them. I can't share my experience with these tools as I make assumptions about that. For both Adlumin and CrowdStrike, both confirm that they're scalable and enterprise-ready and all those kinds of things. We haven't had any specific problem with either of those. We just have a preference for which one we would prefer. If somebody says they want to use a different one from the one that we prefer, then we have to find reasons why they aren't. But scalability is not one of the reasons that one is better over the other. I don't really have advice for people that are looking into using Sentinel; just do your research across what is available. On a scale of one to ten, I rate Sentinel a seven.
Read full review
Sandip_Patel - PeerSpot reviewer
Evaluating robust file monitoring with insights for community support improvements
Wazuh's most valuable features include file monitoring and compliance reporting, which do not require excessive costs. These aspects are vital as they provide alerts for changes and facilitate the monitoring of compliance. The platform is also relatively easy to set up and operate. Reports are straightforward to extract and prove useful for compliance requirements.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
867,341 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
13%
Financial Services Firm
9%
Manufacturing Company
8%
Government
7%
Computer Software Company
15%
Comms Service Provider
9%
University
8%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise3
Large Enterprise7
By reviewers
Company SizeCount
Small Business25
Midsize Enterprise15
Large Enterprise8
 

Questions from the Community

What do you like most about NetIQ Sentinel?
The solution lets us get all the logs properly and regularly monitor customer infrastructure.
See all answers
What is your experience regarding pricing and costs for NetIQ Sentinel?
I don't have too many comments overall about pricing as we're in South Africa, so it makes more sense if it's billed in rand. They nearly always bill it in dollars, so if it can be billed in our cu...
See all answers
What needs improvement with NetIQ Sentinel?
I'm not sure what the room for improvement is for Sentinel. It needs to stay current, and it does, so I suppose that's fine. I don't have a high demand for what it should do. Price is always a cons...
See all answers
What do you like most about Wazuh?
Wazuh is its flexibility and open-source nature, which allows us to tailor threat detection and response across diverse client environments. Its integration capabilities with SOAR, cloud platforms,...
See all answers
What needs improvement with Wazuh?
That would require me to discuss with the Wazuh team regarding areas that could be improved, as I have numerous ideas. From a developer's perspective, this is a Linux system with an active communit...
See all answers
What is your primary use case for Wazuh?
Wazuh is a SIEM platform with various applications in today's environment. Compliance checks have helped with regulatory requirements. I pulled in PCI DSS to check for file integrity monitoring. I ...
See all answers
 

Comparisons

IBM Security QRadar vs Sentinel Logo
IBM Security QRadar vs Sentinel
Compared 15% of the time
Splunk Enterprise Security vs Sentinel Logo
Splunk Enterprise Security vs Sentinel
Compared 15% of the time
Google Chronicle Suite vs Sentinel Logo
Google Chronicle Suite vs Sentinel
Compared 11% of the time
Cortex XSIAM vs Sentinel Logo
Cortex XSIAM vs Sentinel
Compared 7% of the time
Rapid7 InsightIDR vs Sentinel Logo
Rapid7 InsightIDR vs Sentinel
Compared 4% of the time
More Sentinel Competitors
Security Onion vs Wazuh Logo
Security Onion vs Wazuh
Compared 13% of the time
Elastic Stack vs Wazuh Logo
Elastic Stack vs Wazuh
Compared 12% of the time
Graylog Enterprise vs Wazuh Logo
Graylog Enterprise vs Wazuh
Compared 8% of the time
AlienVault OSSIM vs Wazuh Logo
AlienVault OSSIM vs Wazuh
Compared 6% of the time
IBM Security QRadar vs Wazuh Logo
IBM Security QRadar vs Wazuh
Compared 2% of the time
More Wazuh Competitors
 

Product Reports

Buyer's Guide
Sentinel
August 2025
Sentinel reportDownload Sentinel product report
Buyer's Guide
Wazuh
August 2025
Wazuh reportDownload Wazuh product report
 

Also Known As

NetIQ Sentinel, Novell SIEM
Wazuh All-In-One Deployment
 

Overview

Sentinel is a full-featured Security Information and Event Management (SIEM) solution that simplifies the deployment, management and day-to-day use of SIEM, readily adapts to dynamic enterprise environments and delivers the true "actionable intelligence" security professionals need to quickly understand their threat posture and prioritize response.

OpenText

Wazuh offers comprehensive security features like MITRE ATT&CK correlation, log monitoring, and cloud-native infrastructure. It ensures compliance and provides intrusion detection with high scalability and open-source flexibility, ideal for businesses seeking robust SIEM capabilities.

Wazuh stands out in security information and event management by providing efficient log aggregation, vulnerability scanning, and event correlation against MITRE ATT&CK. Its capability to integrate seamlessly with environments, manage compliance, and monitor files makes it suitable for cloud-native infrastructures and financial sectors. Despite its technical support needing enhancement and opportunities for improving AI integration and threat intelligence, its open-source nature and cost-effectiveness make it appealing. Users can leverage custom dashboards powered by Elasticsearch for precise data analysis, even though there is a desire for a more user-friendly interface and better enterprise solution integration. Deployment may be complex, but its features contribute significantly to fortified security postures.

What are the essential features of Wazuh?
  • MITRE ATT&CK Correlation: Aligns events with recognized adversary tactics and techniques.
  • Log Monitoring: Collects and analyzes logs for threat detection.
  • Cloud-Native Infrastructure: Supports modern cloud environments.
  • Vulnerability Scanning: Identifies potential security weaknesses.
  • File Integrity Monitoring: Ensures the integrity of sensitive files.
  • Open-Source Flexibility: Customizable and adaptable code base.
What benefits should users consider?
  • Cost-Effectiveness: Offers a budget-friendly security solution.
  • Ease of Use: Simplified setup and management.
  • Comprehensive Compliance Management: Aids in meeting regulatory requirements.
  • High Scalability: Grows with businesses and adapts to different environments.
  • Extensive Third-Party Integrations: Connects to various existing systems.

Industries like finance and cloud infrastructure heavily utilize Wazuh for its security strengths. By monitoring endpoints and ensuring compliance with frameworks, companies can improve security posture and swiftly detect anomalies. The platform's focus on event correlation and alerts for security incidents is particularly beneficial.

Wazuh
 

Sample Customers

Faysal Bank, GaVI, Handelsbanken, ISC Mªnster, Lambeth Council, Swisscard, The Municipality of Siena, Tukes, University of Dayton, University of the Sunshine Coast
Information Not Available
Buyer's Guide
Sentinel vs. Wazuh
July 2025
Free Report: Sentinel vs. Wazuh
Find out what your peers are saying about Sentinel vs. Wazuh and other solutions. Updated: July 2025.
DOWNLOAD NOW
867,341 professionals have used our research since 2012.
See our Sentinel vs. Wazuh report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.