We performed a comparison between ESET PROTECT Enterprise and Wazuh based on real PeerSpot user reviews.
Find out in this report how the two Extended Detection and Response (XDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature is the network security."
"The common and advanced security policies for threat hunting and blocking attacks are valuable."
"Having a single pane of glass for all Microsoft security services makes everything much easier. A security analyst can go to a single portal and see everything in one view. The integration of everything into one portal is a huge benefit."
"It's a very scalable tool that can be used in a very small environment or in a very large environment. Everything can be managed from a simple dashboard and can be scaled up or down depending on the customer's environment."
"The attack simulation is excellent; initially, this feature wasn't very robust, but Microsoft improved what we could achieve with it. We can now customize our practice phishing emails and include our company logo, for example. Attack simulation also helps integrate with third-party solutions where applicable and provides an overview of our security architecture through testing. The summary includes areas for improvement in our protection and what steps we need to take to get there."
"We are connected to Microsoft and have every laptop enrolled. This acts as an endpoint. The tool helps me check security and compliance. I can also check what a device is doing."
"The most valuable feature of all is the full integration with the rest of the software in the operating system and Office 365, as well as Microsoft SCCM. It is quite easy for us to work with the whole instance of Microsoft products. This integration improves the benefits of the whole suite of products."
"The ability to isolate and address viruses is the most valuable feature of Microsoft Defender XDR."
"The solution provides EDR. You can customize how you prepare the endpoint for clients and the dashboard alerts."
"The most valuable features of ESET File Security are the performance and it doesn't take too many resources."
"ESET is better in some ways than other vendors because it fulfills many areas where we'd otherwise have to use different products."
"I like the dynamic groups feature. They give the ability to filter endpoint machines by any parameter, software, or hardware inventory, and that's a significant advantage when you need to, for example, automate a secondary firewall profile for endpoints outside your network. Or if you want to automatically isolate the computer from the rest of the network if the ransomware is found."
"ESET PROTECT Enterprise is reliable."
"It's helped us with restrictions and knowing which users we can provide permissions to and which users we need to restrict."
"We can easily manage resources, disable or enable clients and update them."
"The product enabled Zero-Day Protection for our environment. We never encountered any issues regarding threats."
"Integrates with various open-source and paid products, allowing for flexibility in customization based on use cases."
"Wazuh's best features are syscheck, its ability to immediately resolve vulnerabilities, and that it's open source."
"The most valuable feature of Wazuh is the ELK for doing an investigation."
"The configuration assessment and Pile integrity monitoring features are decent."
"I like the cloud-native infrastructure and that it's free. We didn't have to pay anything, and it has the capabilities of many premium solutions in the market. We could integrate all of our services and infrastructure in the cloud with Wazuh. From an integration point of view, Wazuh is pretty good. I had a good experience with this platform."
"I like Wazuh because it is a lot like ELK, which I was already comfortable with, so I didn't have to learn from scratch."
"Wazuh automatically scans the host for CIS benchmarks for the latest updates and vulnerabilities and gives a host score. It provides a percentage of perceived risk due to of non patches or any missing patches on that work."
"The MITRE ATT&CK correlation is most valuable."
"For some scenarios, it provides good visibility into threats, and for some scenarios, it doesn't. For example, sometimes the URLs within the emails have destinations, and you do get a screenshot and all further details, but it's not always the case. It would be good if they did a better job of enabling that for all the emails that they identified as malicious. When you get an email threat, you can go into the email and see more details, but the URL destination feature doesn't always show you a screenshot of the URL in that email. It also doesn't always give you the characteristics relating to that URL. It would be quite good if the information is complete where it says that we identified this URL, and this is what it looks like. There should be some threat intel about it. It should give you more details."
"At times, when we have an incident email and we click on the link for that incident, it opens a pop-up, but there is nothing. It has happened a couple of times."
"The tool gives inconsistent answers and crashes a lot."
"A simple dashboard without having to use MS Sentinel would be a welcome improvement."
"Advanced attacks could use an improvement."
"There is no common area where we can manage all the policies for the EDR, third-party solutions, devices, servers, Windows, Mac, etc., but it's on the road map, and we ware waiting for that feature."
"My client would like the solution to be more customizable without using code. You can only build on the default console, but we're not allowed to change it."
"The user interface of Microsoft 365 Defender could improve. They could make it simpler."
"In terms of management accounts, there's a lot of manuals that seem to be mixed up. Sometimes, it's a little bit confusing."
"I would like to see more in managing mobile devices in an on-premise solution. The latest news I've heard is that ESET drops mobile management module development for the on-prem version. It's moving to the cloud. Like in endpoint client protection, I would also like to see more of the vulnerability management features and additional app control functionality in ESET Protect."
"The solution can be quite technical and therefore is challenging for new users."
"I would like to see more features on the reporting side of things."
"The availability and sustainability could also be improved."
"Its automation can be improved."
"Sometimes, the connection to the machine requires troubleshooting."
"In the current version of ESET File Security, you cannot download a file, it always wants the real-time upload which you have to wait until the file is ready. This is annoying. In previous versions, you were able to use the downloaded engine."
"One area where Wazuh could use some improvement is in its reporting mechanism, especially for high-level management like CSOs and CEOs."
"Since it's an open-source tool, scalability is the main issue."
"Alerts should be specific rather than repeatedly triggered by integrating multiple factors. This issue needs improvement to create a more efficient alert system."
"The support team could be more responsive and provide quicker replies during our working hours in Indonesia, which would be a significant improvement."
"Wazuh is missing many things that a typical SIEM should have."
"Its user interface for sure can be improved. It is not so comfortable to use if you're looking for specific logs."
"The technical support can be improved. Wazuh has some bugs that need to be fixed. It would be good if we can have automation with respect to incidence responses."
"There could be a hardware monitoring tool for the solution."
ESET PROTECT Enterprise is ranked 16th in Extended Detection and Response (XDR) with 11 reviews while Wazuh is ranked 3rd in Extended Detection and Response (XDR) with 38 reviews. ESET PROTECT Enterprise is rated 9.0, while Wazuh is rated 7.4. The top reviewer of ESET PROTECT Enterprise writes "Constantly improving their online resources to make it easier for new users to work with it". On the other hand, the top reviewer of Wazuh writes "It integrates seamlessly with AWS cloud-native services". ESET PROTECT Enterprise is most compared with ESET Endpoint Protection Platform, Microsoft Defender for Endpoint, Avira Antivirus, F-Secure Total and Cybereason Next-Generation Antivirus, whereas Wazuh is most compared with Elastic Security, Security Onion, AlienVault OSSIM, Splunk Enterprise Security and SentinelOne Singularity Complete. See our ESET PROTECT Enterprise vs. Wazuh report.
See our list of best Extended Detection and Response (XDR) vendors.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.