VMware Aria Operations for Logs and Wazuh both compete in the log management category. VMware often holds an edge due to its enterprise-grade integration capabilities, while Wazuh is preferred for its open-source flexibility and cost-effectiveness.
Features: VMware Aria Operations for Logs provides robust integration with various VMware products, detailed analytics, and strong enterprise-level support. Wazuh, on the other hand, offers open-source flexibility, comprehensive security features, and adaptability to different environments.
Room for Improvement: VMware Aria Operations for Logs could benefit from enhanced documentation, more intuitive navigation, and refined setup options. Wazuh, while feature-rich, could improve its alert management system, update processes, and community support resources.
Ease of Deployment and Customer Service: VMware Aria Operations for Logs can be complex to deploy in specialized environments but offers responsive professional customer support. Wazuh allows easier deployment for smaller setups but relies on community-driven support, which may lack the depth of VMware’s services.
Pricing and ROI: VMware Aria Operations for Logs comes with a high initial setup cost but delivers good ROI for larger enterprises. Wazuh's open-source nature provides low upfront costs and strong ROI, especially for mid-sized operations, due to its minimal licensing expenses and flexible features.
I have seen value in security cost savings with Wazuh, as using proprietary EDR versions could save us substantial money.
While support staff is knowledgeable, getting access to specialists can be challenging when dealing with the limits of a product.
Customer service and support have declined.
I did not need technical support because I am a professional with VMware.
They responded quickly, which was crucial as I was on a time constraint.
We use the open-source version of Wazuh, which does not provide paid support.
The documentation is good and provides clear instructions, though it's targeted at those with technical backgrounds.
Since payment is based on hardware, scalability impacts are managed more effectively than with other tools paid by data volume.
It's relatively easy to find individuals with the skills to work with VMware because it is a widely spread tool.
It can accommodate thousands of endpoints on one instance, and multiple instances can run for different clients.
Currently, I don't see any limitations in terms of scalability as Wazuh can still connect many endpoints.
Scalability depends on the configuration and the infrastructure resources like compute and memory we allocate.
Managing a lot of data involves reliance on hardware and network performance, which are external factors that can affect stability.
It has been very stable, and every time I needed it, it was available and working.
VMware as a whole provides very stable tools.
The stability of Wazuh is strong, with no issues stemming from the solution itself.
The stability of Wazuh is largely dependent on maintenance.
The indexer frequently times out, requiring system restarts.
It would be beneficial to have a roadmap for these dashboards to ensure consistent functionality.
There is also dissatisfaction with Broadcom's broader attitude, which is prompting me to search for alternatives.
VMware Aria Operations for Logs is not a cost-effective tool.
The integration modules are insufficiently developed, necessitating the creation of custom integration solutions using tools like Logstash and PubSub.
I think Wazuh should improve by introducing AI functionalities, as it would be beneficial to see AI incorporated in the threat hunting and detection functionalities.
Wazuh could improve by creating videos on YouTube covering installation, use cases, and integration of third-party APIs for different scenarios that other SAAS services provide.
Splunk, often paid by the terabytes, becomes expensive quickly if not managed carefully.
The price has risen significantly, and for smaller customers, the cost can be up to ten times more than before.
VMware comes with a lot of packages, however, it remains too expensive.
Wazuh is completely free of charge.
Totaling around two lakh Indian rupees per month.
Wazuh is free to use, but there are licensing fees for third parties.
This tool also provides greater insight when integrated with VMware infrastructure, making it more precise than other tools.
The most valuable features are log centralization and long-term retention for logs.
A valuable feature of VMware Aria Operations for Logs is its ability to allow personalization of dashboards and requests.
Wazuh is a SIEM tool that is highly customizable and versatile.
The system allows us to monitor endpoints effectively and collect security data that can be utilized across other platforms such as SOAR.
With this open source tool, organizations can establish their own customized setup.
Wazuh is an enterprise-ready platform used for security monitoring. It is a free and open-source platform that is used for threat detection, incident response and compliance, and integrity monitoring. Wazuh is capable of protecting workloads across virtualized, on-premises, containerized, and cloud-based environments.
It consists of an endpoint security agent and a management server. Additionally, Wazuh is fully integrated with the Elastic Stack, allowing users the ability to navigate through security alerts via a data visualization tool.
Wazuh Capabilities
Some of Wazuh’s most notable capabilities include:
Wazuh Benefits
Some of the most valued benefits of Wazuh include:
Wazuh Offers
Reviews From Real Users
"It's very easy to integrate Wazuh with other environments, cloud applications, and on-prem applications. So, the advantage is that it's easy to implement and integrate with other solutions." - Robert C., IT Security Consultant at Microlan Kenya Limited
“The MITRE ATT&CK correlation is most valuable.” - Chief Information Security Officer at a financial services firm
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
