We performed a comparison between Elastic Stack and Security Onion based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution's technical support is good...Elastic Stack offers good value for value for money based on the product's features and what they offer."
"I think the ecosystem is well supported, and for logs, it was faster compared to our previous previous log management."
"Prior to the latest updates, data lake management was a standout feature. The hybrid capability for on-premise and cloud integration was also crucial. Now, with Elastic Defense, the agent simplifies security monitoring, making it a key asset."
"Elastic Stack is mainly used to monitor servers and APIs. It helps ensure the software's availability and sends notifications at the right time so the system is not down for a long time. The tool's stability and advanced features, such as anomaly detection, are the most valuable features. The benefit of using it is real-time monitoring."
"The biggest strength of Elastic Stack is its brilliant archiving capabilities."
"It is a very scalable solution...I didn't face any problem with this scalability part of the solution since we only have a few pieces of equipment in our company."
"The machine learning capabilities are valuable."
"The tool is huge, and it performs brilliantly. I tested it for malware, and within two weeks of launching, the product alerted me about a network intrusion. This was a tough test for it, but it performed admirably. The alerting system is excellent, and searching through logs is incredibly efficient. What's impressive is that all three products or options are integrated into one solution. This means I don't need separate logging, monitoring, or antivirus solutions."
"Security Onion is the most mature solution in the market."
"The most valuable feature of Security Onion for security monitoring is its ability to find infected ports."
"We use Security Onion for internal vulnerability assessment."
"It lacks a clear NDR (Network Detection and Response) feature. If Elastic could enhance this aspect, it would significantly boost its capabilities."
"The main issue related to Elastic Stack is in the area of its licensing."
"Agent deployment is a little tough in the on-premise version."
"Improvements are needed in the solution in areas like SOAR and TIP, where there are certain shortcomings."
"Elastic Stack's search capabilities can be challenging, especially when searching for precise data from past years, such as two or ten years ago. Its indexing performance for exact data retrieval may decrease as the data volume grows. Therefore, I believe there is room for improvement in the product's search functionality. It needs to improve its pricing as well."
"The implementation of dashboards in the solution needs to be made easier...I had some issues with the ports and configuration since it was kind of complex to implement with Docker."
"The tool's pricing can be improved."
"When people try to move the data from another source to Elastic Stack for visualization, they face challenges when connecting to Elastic Stack from such different sources."
"The initial setup of the solution is a little bit difficult."
"Security Onion's user interface could be improved."
"The product is not easy to learn."
Elastic Stack is ranked 16th in Log Management with 11 reviews while Security Onion is ranked 33rd in Log Management with 3 reviews. Elastic Stack is rated 8.4, while Security Onion is rated 7.6. The top reviewer of Elastic Stack writes "A stable product that can be fine-tuned easily". On the other hand, the top reviewer of Security Onion writes "A mature and affordable solution that is easy to install and easy to update". Elastic Stack is most compared with Wazuh, Falcon LogScale, Grafana Loki, syslog-ng and Seq, whereas Security Onion is most compared with Wazuh, TheHive, Splunk Enterprise Security, Graylog and Kali Linux. See our Elastic Stack vs. Security Onion report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.