Capterra’s researchers use a mix of verified reviews, independent research and objective methodologies to bring you selection and ranking information you can trust. While we may earn a referral fee when you visit a provider through our links or speak to an advisor, this has no influence on our research or methodology.
Capterra carefully verified over 2 million reviews to bring you authentic software and services experiences from real users. Our human moderators verify that reviewers are real people and that reviews are authentic. They use leading tech to analyze text quality and to detect plagiarism and generative AI. Learn more.
Capterra lists all providers across its website—not just those that pay us—so that users can make informed purchase decisions. Capterra is free for users. Software and service providers pay us for sponsored profiles to receive web traffic and sales opportunities. Sponsored profiles include a link-out icon that takes users to the provider’s website. Learn more.
Unify SIEM, endpoint security, and cloud security Elastic Security modernizes security operations — enabling analytics across years of data, automating key processes, and bringing native endpoint security to every host. Elastic Security equips teams to prevent, detect, and respond to threats at cloud speed and scale — securing business operations with a unified, open platform.
Provider
Elastic
Located In
United States
Foundation
2012
Deployment
Cloud, SaaS, Web-Based, On-Premise Linux, On-Premise Windows
Training
In Person, Live Online, Webinars, Documentation, Videos
Support
Email/Help Desk, Phone Support, FAQs/Forum, Knowledge Base, 24/7 (Live rep), Chat
Elastic is built for relevance at scale, easily able to support small businesses, the largest multinationals, and everything in between.
Content Source: Elastic Security
Based on other buyer's searches, these are the products that could be a good fit for you.
A product’s price can vary greatly based on features needed, support or training required, and customization requests. Some vendors want a chance to talk to you before being ruled out for pricing. When you find a product that fits your needs, you should talk to the vendor to figure out what they can offer.
Elastic Security Reviews
Pros
It's a great tool for developers to examine app logs, and user activity, and fix issues. It's a great tool for data analysis and application management, among other things.
We wanted to go to the next step for compliance and security for our organization and we are totally satisfied. There is also o good customer support in our region.
This is an amazing tool for a developer to view application logs and analyse issues. The overall user experience is also really good which helps us read data with ease.
Awesome to use with SELK's tools, and a great tool to search information about a computer attack.
Cons
Building integration with any product is a difficult task. Unlike other commercial systems that employ profile integration, this one does not.
Ultimately we were able to build an automated alerting system when there is an error or unusual user activity in the network system.
We had lots of network-related log files with millions of records to be processed and identify errors, user activity, and many other pieces of information.
The documentation is poor. Not suitable for transactions.
"Superb search, logging, and analytics platform"
Overall: Searching a database of parameterized data to provide results to buyers. Ingesting millions of product updates on a daily basis from dozens of distributors. Logging and analyzing user activity for business metrics, system performance, and security. Elasticsearch has been a vital tool for all these use cases.
Pros: Search functionality is our basic need, and Elasticsearch nails it - scalable, fast, efficient. It is also good at logging, aggregation, and analytics when used in combination with the rest of the Elastic stack.
Cons: It's complex and can be a challenge to dial in performance unless you have a really vanilla use case. Docs are light on details and examples, so there is a fair amount of trial and error.
"Scale, Features, Functionality."
Overall: Excellent. The ELK stack is the foundation of our audit process, and it's held up really well. The installation can be automated, and archiving in the AWS environment works quite well. We have not yet had a problem in scaling resources to match our resource needs. The integrations with logstash, beats and kibana have been excellent, and used to great effect.
Pros: Scale: You can run this from a single server or even co-installed on a database or file server. I wouldn't recommend it, but let's just say it will run in a small box. On the top side, Elasticsearch will run in clusters managing multiple Terabytes of data. Features: Excellent flexibility to absorb multiple types of data sources, and great integration with Logstash and Kibana.
Cons: The upgrades in terms of archived data. This platform changes significantly on an annual basis. If you do a ton of customization, automation, or work with a lot of data, this can be an issue as you will need to update ALL of your data for every upgrade.
"A free alternative to paid juggernaughts"
Overall: I used this software to easily and quickly search SIEM logs.
Pros: The most appealing aspect of Elasticsearch is the price. It can perform well with a lot of tuning and can be tailored to your needs.
Cons: Ultimately, Elasticsearch needs a lot of tuning to perform well and a lot of care and feeding to be reliable. The money saved on running Elasticsearch is easily spent two and three fold on specialized labor to keep it running.
"Comprehensive Threat Detection"
Pros: It flagged suspicious login attempts, allowing me to secure my systems immediately.
Cons: I found it difficult to navigate through all the options and settings at first.
"Best way to process application log data"
Overall: We had lots of network-related log files with millions of records to be processed and identify errors, user activity, and many other pieces of information. If we didn't have Elasticsearch its a nightmare to process those. With the help of Elasticsearch, we were able to process those and even visualize them with nice graphs and charts. ultimately we were able to build an automated alerting system when there is an error or unusual user activity in the network system.
Pros: It's really easy to set up and there are not many configurations need to get started with. It comes with other supporting tools such as Filebeats to collect the logs from the files, Logstash to ship data to Elasticsearch, and Kibana to visualize the data. It processes millions of data within seconds. Elasticsearch can be clustered with multiple nodes and it guarantees higher data availability. Elasticsearch has lots of proper documentation and community support. It's easy to integrate with programming languages such as Java
Cons: Elasticsearch doesn't provide backward version compatibility. We have to use the same version of Elasticsearch, Logstash, and Kibana. Data is getting saved as files inside Elasticsearch and those can get deleted. There is no easy way to edit the data.