Anomali Threat Platform vs Splunk Light

Anomali Threat Platform

Being the best threat intelligence platform/tool on the market, it is fantastic in terms of performance and it has taken a lot of burden of curating and weeding through false positives off of our team freeing them up to focus on manual threat hunting and content building.

Read full review

Verified User

Engineer in Information Technology

Non-Profit Organization Management Company, 501-1000 employees

View all 1 answers on this topic

Splunk Light

Splunk light is awesome for anyone wanting to do proactive monitoring. It is also really well suited for insights into data with dashboards. Splunk light might not be a great choice if you do not want to manage the infrastructure on your own.

Read full review

Pooja Gada

Engineering Tech Lead

Qventus, IncHospital & Health Care, 51-200 employees

View all 2 answers on this topic

Feature Rating Comparison

Anomali Threat Platform

—

Splunk Light

7.8

Centralized event and log data collection

—

8.5

Correlation

—

7.5

Event and log normalization

—

9.0

Deployment flexibility

—

8.0

Integration with Identity and Access Management Tools

—

6.5

Custom dashboards and views

—

7.5

Host and network-based intrusion detection

—

7.5

Pros

Fantastic UI
STAXXX for sharing intelligence
Threat Intelligence feeds
Automation and collaboration cuts work down for the analysts

Read full review

Verified User

Engineer in Information Technology

Non-Profit Organization Management Company, 501-1000 employees

View all 1 answers on this topic

Real-time + Scheduled alerts - i-e you can set up alerts which are actively monitoring your logs
Pretty good response time for search results. With our key/value logging, Splunk makes it blazing fast to query the data.
Dashboards provide insights into historical data
Love how Splunk indexes all of the data and provides keys to search on

Read full review

Pooja Gada

Engineering Tech Lead

Qventus, IncHospital & Health Care, 51-200 employees

View all 2 answers on this topic

Cons

No answers on this topic

Ask the community to sound off

Splunk light limits number of users to 5. Wish there was a flexible license, where one could add more users.
Splunk light does not let you add > few realtime alerts. Wish there was a flexible license, where one could add as many realtime alerts as wanted.
Better insight into daily ingestion values

Read full review

Pooja Gada

Engineering Tech Lead

Qventus, IncHospital & Health Care, 51-200 employees

View all 2 answers on this topic

Alternatives Considered

No answers on this topic

Ask the community to sound off

ELK stack required too much infrastructure/configuration, NewRelic was expensive.

Read full review

Pooja Gada

Engineering Tech Lead

Qventus, IncHospital & Health Care, 51-200 employees

View all 2 answers on this topic

Return on Investment

After the Initial startup cost, it has overall had a positive impact by increasing efficiency of the team and freeing up analysts to do manual threat hunting

Read full review

Verified User

Engineer in Information Technology

Non-Profit Organization Management Company, 501-1000 employees

View all 1 answers on this topic

Helped us be more proactive about issues
Helped us understand our system usage
Helped us invest in areas we previously did not think of

Read full review

Pooja Gada

Engineering Tech Lead

Qventus, IncHospital & Health Care, 51-200 employees

View all 2 answers on this topic

Pricing Details

Anomali Threat Platform

General

Free Trial

—

Free/Freemium Version

—

Premium Consulting/Integration Services

—

Entry-level set up fee?

No

Additional Pricing Details

—

Splunk Light

General

Free Trial

—

Free/Freemium Version

—

Premium Consulting/Integration Services

—

Entry-level set up fee?

No

Additional Pricing Details

—

Rating Summary

Anomali Threat Platform

9.0

Splunk Light

7.0

Anomali Threat Platform vs Splunk Light