Wazuh

Open-source unified XDR and SIEM platform

ToolOpen Source SIEMOpen SourceCloudSelf-hosted

Pricing: Free (Open Source)

Reviewed by the CyberSecTool editorial team against the public sources cited below · Last reviewed March 2026 · How we review listings

What is Wazuh?

Wazuh is a free, open-source security platform that provides unified XDR and SIEM protection. It offers log analysis, intrusion detection, file integrity monitoring, vulnerability detection, and compliance monitoring across on-premises and cloud workloads.

Best for: Organizations wanting a free, comprehensive SIEM/XDR platform with strong compliance capabilities
Pros
  • Completely free and open source
  • Unified SIEM + XDR in one platform
  • Active community with 20M+ annual downloads
  • Agent-based with multi-platform support
  • Strong compliance reporting (PCI DSS, HIPAA, GDPR)
Considerations
  • Requires significant infrastructure expertise to deploy
  • UI less polished than commercial alternatives
  • Community support only (paid support available)
  • Can be resource-intensive at scale

Reported in public reviews and vendor documentation. See sources below.

Key Features

Log data analysis
Intrusion detection
File integrity monitoring
Vulnerability detection
Configuration assessment
Incident response
Regulatory compliance
Cloud workload protection

Are you Wazuh? Improve this listing with screenshots, case studies and more.

Sources & references

Where the information on this listing comes from. Always verify pricing and capabilities against the vendor before a purchasing decision.

Spot an error, or do you represent Wazuh? Request a correction.