Wazuh - The Open Source Security Platform Reviews & Product Details

Wazuh is a free and open source security platform that unifies XDR and SIEM capabilities. It protects workloads across on-premises, virtualized, containerized, and cloud-based environments. Wazuh, with over 30 million downloads per year, has one of the largest open-source security communities in the world. Wazuh helps organizations of all sizes protect their data assets against security threats. Learn more about the project at wazuh.com

Seller

Wazuh Inc.

Discussions

Wazuh - The Open Source Security Platform Community

Languages Supported

English

Overview by

Victor Mansilla (Sr. Digital Marketing Specialist)

Value at a Glance

Averages based on real user reviews.

Time to Implement

2 months

Return on Investment

15 months

View More Pricing Information

Top-Rated Alternatives

CrowdStrike Falcon Endpoint Protection Platform

SentinelOne Singularity Endpoint

4.7/5

(192)

View All Alternatives

Wazuh - The Open Source Security Platform Integrations

(7)

Integration information sourced from real user reviews.

Wazuh - The Open Source Security Platform Media

Wazuh - The Open Source Security Platform Demo - Security Analytics

Wazuh is used to collect, aggregate, index and analyze security data, helping organizations detect intrusions, threats and behavioral anomalies. As cyber threats are becoming more sophisticated, real-time monitoring and security analysis are needed for fast threat detection and remediation. Th...

Wazuh - The Open Source Security Platform Demo - Intrusion Detection

Wazuh agents scan the monitored systems looking for malware, rootkits and suspicious anomalies. They can detect hidden files, cloaked processes or unregistered network listeners, as well as inconsistencies in system call responses.

Wazuh - The Open Source Security Platform Demo - Incident Response

Wazuh provides out-of-the-box active responses to perform various countermeasures to address active threats, such as blocking access to a system from the threat source when certain criteria are met. In addition, Wazuh can be used to remotely run commands or system queries, identifying indicato...

G2 reviews are authentic and verified.

Here's how.

Yogesh G.

Linux Administrator

Information Technology and Services

Mid-Market (51-1000 emp.)

1/27/2026

Business partner of the seller or seller's competitor, not included in G2 scores.

"Powerful Open-Source On-Prem Security Monitoring with Easy Integration"

4.5/5

What do you like best about Wazuh - The Open Source Security Platform?

It’s an open-source platform that’s easy to install in an on-prem environment. I can easily create rules and decoders for custom logs, and the integrations are straightforward to set up. It also provides excellent tools for log analysis, vulnerability detection, FIM, threat detection, compliance management, and incident management. Deploying the agent across multiple hosts is simple via the command line. Wazuh supports real-time monitoring of system logs and configuration, with automated alerts and VM detection. The documentation is also well maintained. Review collected by and hosted on G2.com.

What do you dislike about Wazuh - The Open Source Security Platform?

It’s very difficult for new users to learn and get started with. It also uses a lot of resources when working with large data. Sometimes, it causes problems when upgrading to a newer version. Review collected by and hosted on G2.com.

What problems is Wazuh - The Open Source Security Platform solving and how is that benefiting you?

We are using Wazuh for file integrity monitoring, and the results for this purpose have been exceptional. You don’t need to spend any money if you want to try it. It also comes with many dashboards where you can view the number of vulnerabilities on the agents, agent syslogs, and other useful insights, and you can create a custom dashboard as well. Review collected by and hosted on G2.com.

Verified User in Computer Networking

Small-Business (50 or fewer emp.)

3/12/2026

"Wazuh: FREE - Powerful, Customizable Security Monitoring with Smart Alerts"

5/5

What do you like best about Wazuh - The Open Source Security Platform?

Wazuh helps keep all your computers and servers safe by watching for bad behavior, checking for weaknesses, and sending alerts when something suspicious happens. It’s free, open, and can be customized to fit any setup, from small networks to large companies. Review collected by and hosted on G2.com.

What do you dislike about Wazuh - The Open Source Security Platform?

Some common drawbacks of Wazuh are that it can be complex to set up and configure, especially for large environments, and managing rules, alerts, and integrations can require significant time and expertise. Additionally, its UI and reporting features are less polished compared to some commercial alternatives, which can make monitoring at scale more cumbersome. Review collected by and hosted on G2.com.

What problems is Wazuh - The Open Source Security Platform solving and how is that benefiting you?

Wazuh detects security threats, monitors system activity, and checks for vulnerabilities, helping prevent breaches and maintain compliance. This benefits you by giving real-time alerts, centralized visibility, and actionable insights, so you can respond quickly to issues and keep your environment secure without manually checking each system. Review collected by and hosted on G2.com.

Ayush G.

Customer Success Engineer

Computer & Network Security

Small-Business (50 or fewer emp.)

1/29/2026

"Open-Source Security Platform with Strong Visibility and Control"

5/5

What do you like best about Wazuh - The Open Source Security Platform?

Wazuh is the level of visibility and control it provides over security events across the entire infrastructure. The real-time threat detection, log analysis, and compliance monitoring are very powerful for an open-source platform. It delivers enterprise-level security capabilities without high licensing costs. Review collected by and hosted on G2.com.

What do you dislike about Wazuh - The Open Source Security Platform?

The main drawback is the steep learning curve, especially for new users during initial setup and tuning. Some configurations and rule customizations can be time-consuming, and the UI could be more intuitive. Better guided setup and clearer documentation for advanced use cases would help a lot. Review collected by and hosted on G2.com.

naty d.

Security Engineer

Small-Business (50 or fewer emp.)

2/26/2026

"Free, Open-Source, and User-Friendly SIEM for SMB"

4.5/5

What do you like best about Wazuh - The Open Source Security Platform?

The main reasons that i like about wazuh is being free and opensouce, having simpler learning curve and ease of use, it is user friendly and best choice for small scale companies Review collected by and hosted on G2.com.

What do you dislike about Wazuh - The Open Source Security Platform?

In my openion the down side of wazuh is it is difficult to integrate it with 3rd party solutions, and don't have built in plugins to do so compared to other SIEMs in the ecosystem. Review collected by and hosted on G2.com.

Matthew C.

Information Security Manager

Mid-Market (51-1000 emp.)

7/29/2025

"It is an inexpensive tool that has a lot of capabilities."

4.5/5

What do you like best about Wazuh - The Open Source Security Platform?

It does not cost me anything. The agents that are installed are preconfigured to look at specific details of my end points. It can ID out of date patches on all major applications. It identifies certain items that have CVE's associated with them. I can custom query anything. It was pretty easy to roll out. My organization does not use PowerShell on typical endpoints, so we have to use kind of a modified .msi to roll out updates. Review collected by and hosted on G2.com.

What do you dislike about Wazuh - The Open Source Security Platform?

It cannot push end point agent updates without a paid subscription. Setting up the user roles is a little tough - it is very convoluted and hard to follow the process. Review collected by and hosted on G2.com.

Bartłomiej P.

System Engineer

Small-Business (50 or fewer emp.)

1/23/2026

"Cost-Saving Open Source, Easy to Implement—But Comes with Risk"

3.5/5

What do you like best about Wazuh - The Open Source Security Platform?

Reduce costs with open source product. Popularity - a lot informations and big KB.

Easy to management. Review collected by and hosted on G2.com.

What do you dislike about Wazuh - The Open Source Security Platform?

Opensource is always a risk. Complicated implementation on-prem console. Review collected by and hosted on G2.com.

Mohd Bilal K.

Security Engineer

Mid-Market (51-1000 emp.)

6/24/2024

"Efficient and Comprehensive Security Monitoring with Wazuh SIEM"

4.5/5

What do you like best about Wazuh - The Open Source Security Platform?

Wazuh SIEM stands out as an exceptional security solution that combines powerful threat detection with extensive monitoring capabilities. As a user, I am particularly impressed by its ability to integrate seamlessly with various data sources, providing a holistic view of our security posture. The platform’s ability to process and analyze large volumes of data in real-time has significantly enhanced our incident response capabilities Review collected by and hosted on G2.com.

What do you dislike about Wazuh - The Open Source Security Platform?

While Wazuh SIEM is robust, the initial setup and configuration can be somewhat complex, especially for users without extensive SIEM experience. The documentation is detailed but could benefit from more examples and clearer step-by-step instructions for common use cases. Additionally, the learning curve can be steep for new users, and more interactive tutorials or guided setups would be beneficial. Review collected by and hosted on G2.com.

What problems is Wazuh - The Open Source Security Platform solving and how is that benefiting you?

Wazuh SIEM has significantly bolstered our security operations by providing real-time visibility and automated threat detection across our infrastructure. Its ability to correlate events from various sources and provide actionable insights has been invaluable. Review collected by and hosted on G2.com.

Yuri K.

CEO

Small-Business (50 or fewer emp.)

5/29/2024

"Great product with a lot to Offer"

5/5

What do you like best about Wazuh - The Open Source Security Platform?

Great open source, free Security Operation Center for small and mid-size businesses. Very easy and fast deployment. Real-time monitoring of the connected endpoints. It integrates very well on the Windows and Linux platforms. If you need to make sure that your organization is HIPAA compliant, this tool will help you to verify your compliance in a few fast clicks Review collected by and hosted on G2.com.

What do you dislike about Wazuh - The Open Source Security Platform?

The main dashboard is a little incomplete. Wazuh would greatly benefit from the implementation of aggregation issues (per issue). Currently, admin has to hope from endpoint to endpoint screen to see problematic areas Review collected by and hosted on G2.com.

Yash U.

Small-Business (50 or fewer emp.)

3/19/2024

"Wazuh is the Best open source security platform."

5/5

What do you like best about Wazuh - The Open Source Security Platform?

"Wazuh - The Open Source Security Platform" is an impressive tool that offers comprehensive security solutions for both small-scale and enterprise-level environments. As an open-source platform, it provides users with the flexibility to tailor security measures according to their specific needs without the constraints of proprietary software.

Wazuh stands out as a powerful open-source security platform that effectively addresses modern cybersecurity challenges. Its comprehensive features, scalability, and active community support make it a valuable asset for organizations seeking robust protection against evolving threats. Review collected by and hosted on G2.com.

What do you dislike about Wazuh - The Open Source Security Platform?

At this point of time i dont find any downside of wazuh. Review collected by and hosted on G2.com.

What problems is Wazuh - The Open Source Security Platform solving and how is that benefiting you?

•File Integrity Monitoring: Wazuh monitors file integrity on endpoints, continuously verifying the integrity of critical system files and configurations. Any unauthorized modifications or tampering attempts trigger alerts, allowing administrators to investigate and remediate potential security breaches promptly.

• Log Analysis and Correlation: Wazuh aggregates and correlates endpoint logs with data from other sources, such as network traffic and system events. This holistic view of security data enables comprehensive threat detection and enhances the accuracy of incident analysis, helping organizations identify sophisticated threats that may span multiple endpoints.

• Active Response: Wazuh’s active response capabilities allow for automated responses to security incidents at the endpoint level. In addition to alerting administrators, Wazuh can execute predefined response actions, such as isolating compromised endpoints, blocking malicious processes, or quarantining suspicious⬤ Review collected by and hosted on G2.com.