Try our new research platform with insights from 80,000+ expert users

AlienVault OSSIM vs Logsign Next-Gen SIEM comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 18, 2024
 

Categories and Ranking

AlienVault OSSIM
Ranking in Security Information and Event Management (SIEM)
13th
Average Rating
7.2
Number of Reviews
29
Ranking in other categories
No ranking in other categories
Logsign Next-Gen SIEM
Ranking in Security Information and Event Management (SIEM)
42nd
Average Rating
7.6
Number of Reviews
4
Ranking in other categories
Log Management (46th)
 

Mindshare comparison

As of November 2024, in the Security Information and Event Management (SIEM) category, the mindshare of AlienVault OSSIM is 4.5%, up from 2.6% compared to the previous year. The mindshare of Logsign Next-Gen SIEM is 0.3%, down from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
 

Featured Reviews

Aman Aijaz - PeerSpot reviewer
Jun 28, 2023
An easy-to-scale open-source solution used for monitoring events on devices
The area for improvement is a lot. When I started using it on our enterprise side, the issue we faced was, for example, if we were running at that time on AlienVault OSSIM v5.7.4. So, for some orders, we had to install some packages, and when we tried installing that package, some dependencies got upgraded to a new version. Now once that dependency got upgraded, the SQL, since you might be aware that OSSIM uses SQL database, now SQL and all the dependency in everything was not on the same version, and that caused the database to crash. The aforementioned area should be eased out by upgrading the patches and upgrading dependencies. This kind of thing is a disadvantage of OSSIM, and I would like them to work on this. But I have also raised service requests many times and gave it a push on the community section too. However, since it is a local source, they don't reply much over there. That is why I don't like to work on OSSIM because it is unpredictable. Once the storage goes above 50 percent, it starts behaving unpredictably. If you get stuck with a situation, then you need to drill a lockdown into that. Sometimes you get no luck. Then you have to just reimage the server with the new fresh OS of AlienVault. As for additional features, not much because if you move to the newer version, it is kind of getting more stable. But, to make my life easier, then I would say try to give more features. I know it's open source, so they also cannot provide me with more features. But still, if they can provide me with more features because right now it's becoming old. Right now, we are even moving from SIEM to Security Data Lake. So when we move to it, this will be literally outdated. No one can even expect anything out of it. The way security is moving, it will be outdated very soon. They have to also provide something new to keep this going for the future also.
Ayaz Ahmed - PeerSpot reviewer
Apr 25, 2024
Works well for threat detection and security
We use Logsign SIEM for various tasks in our daily operations. One key use case is for forensic analysis. We also use it to monitor critical servers and generate security alerts for actions like logins, logoffs, or reboots. Additionally, we can search for specific information using the interface or…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The product is majorly used for threat detection of the agents on servers and endpoints."
"Its user-friendliness is the most valuable. It is very easy to use and explore. The dashboard is very well packaged and integrated. You don't have to spend a lot of time in configuring it and checking out the RPM etc. It is also free and very powerful."
"The open vault component and the checking of vulnerabilities are the most valuable features. The page management helps with this. If you know how your device is vulnerable at least you can do something about it."
"OSSIM is the only solution that includes the large number of modules that we need: a vulnerability scanner, a network IDS system, a host IDS system."
"There are a lot of people you will find using OSSIM since they are also offering OTX as a service"
"You can customize the dashboards as well as the reporting."
"The initial setup was straightforward. I didn't have any problems."
"The most valuable features of AlienVault OSSIM are case management, ease of configuration, and investigation."
"It has full automation and automated SIEM responses."
"The most valuable features of Logsign SIEM are its cloud capabilities, alerting functionality, integration with Elastic Search, and configuration options."
"Logsign provides sample logs within the product, allowing users to see how logs will appear before integration, which is a valuable feature for testing and understanding log formats."
 

Cons

"AlienVault OSSIM is costly."
"The initial setup was a bit complex. You've got to do a lot of reading. It's not an intuitive implementation."
"AlienVault OSSIM on-premise version is more difficult to implement than the cloud version. Additionally, they should add integration between several different environments at once and improve their online knowledge base."
"Sometimes technical issues take very long to get resolved."
"The correlation engine needs to be improved."
"When comparing AlienVault OSSIM to other solutions it looks a bit outdated. Additionally, they need to improve their integration."
"The solution is not scalable."
"The documentation could be improved."
"AI and machine learning need to be developed. If they develop those features, I think everything will be fine."
"I hope they address the pricing model for Logsign Next-Gen SIEM, especially regarding regional variations. The pricing should not differ based on the country of operation as it can lead to dissatisfaction among customers. A fixed pricing structure would be more favorable for us. I would also suggest enhancing the GUI interface and adding features similar to xFi Exchange from IBM Pure. This would streamline operations and save time for analysts."
"Improvements needed in Logsign SIEM are providing specific security alerts that can be filtered and configured more effectively."
 

Pricing and Cost Advice

"AlienVault pricing is the best. Whatever cost you are paying, you are getting a return on every penny... It's not like your IBM, your QRadar, or Splunk, where the cost is too high."
"The tool's licensing costs are yearly."
"The price of AlienVault OSSIM is too high sometimes for us to present to our customers. The price should be lower. We are on a three-year license to use the solution. We had to pay extra for the support."
"OSSIM is open source, and USM is the paid license. So, if you want, you can switch to USM. There you will have to buy a license, and they have a support team that helps you out on issues you face."
"OSSIM is free."
"AlienVault OSSIM is free."
"We are using the community version, which can be used for free."
"We are using a free version of the solution. If you purchase a license there are more features available but the price is a little high. The solution should be cheaper to allow more customers to be able to afford it."
"Compared to other SIEMs, it has low pricing."
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
814,649 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
18%
Financial Services Firm
9%
Educational Organization
8%
Comms Service Provider
7%
Government
14%
Financial Services Firm
12%
Computer Software Company
11%
Comms Service Provider
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for AlienVault OSSIM?
I used the paid version of the tool and found it to be expensive. It has been a while since I changed to Securonix. I will have to check whether AlienVault charges per device, user, or log.
What needs improvement with AlienVault OSSIM?
Honestly, I don't know what can be improved in the product. I am trying to get a comparison between AlienVault OSSIM and the other solutions in the market. AlienVault OSSIM failed to provide our co...
What needs improvement with Logsign Next-Gen SIEM?
It does not have much AI and machine learning features yet. They are developing them and will be releasing them in a few months.
What is your primary use case for Logsign Next-Gen SIEM?
We use Logsign SIEM for various tasks in our daily operations. One key use case is for forensic analysis. We also use it to monitor critical servers and generate security alerts for actions like lo...
What advice do you have for others considering Logsign Next-Gen SIEM?
Overall, I would rate it an eight out of ten. AI and machine learning need to be developed. If they develop those features, I think everything will be fine. I can recommend it. Not for large enterp...
 

Also Known As

OSSIM
No data available
 

Learn More

Video not available
 

Overview

 

Sample Customers

Council Rock School District
Turkish Petroleum, Tırsan, DP World, SAC American Colleges, Robert College, Unlu&Co, UniCo Insurance Company, ETSTur, CK Energy, UEDAS Energy, Wilo, Eurocross Assistance, Deloitte Turkey, Incı GS Yuasa, Pappara, Bilgi University, Anadolu University, İstanbul University, The Ministry of Energy and Natural Resources, TRT, Anadolu Media Agency, Ministry of Family, Labour and Social Services, Ispark, Spor AS and wide range of enterprises in different industries. 
Find out what your peers are saying about AlienVault OSSIM vs. Logsign Next-Gen SIEM and other solutions. Updated: October 2024.
814,649 professionals have used our research since 2012.