AlienVault OSSIM vs Sentinel comparison

AT&T and OpenText are both solutions in the Security Information and Event Management (SIEM) category. AT&T is ranked #11 with an average rating of 7.3, while OpenText is ranked #16 with an average rating of 8.2. AT&T holds a 5.0% mindshare in SIEM, compared to OpenText’s 3.3% mindshare. Additionally, 80% of AT&T users are willing to recommend the solution, compared to 81% of OpenText users who would recommend it.

AlienVault OSSIM

Read 30 AlienVault OSSIM reviews

6,061 Views
3,812 Comparison Views

80% willing to recommend

Sentinel

Read 16 Sentinel reviews

1,901 Views
2,067 Comparison Views

81% willing to recommend

AlienVault OSSIM

Sentinel

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

Sentinel and AlienVault OSSIM compete in the cybersecurity sector. Sentinel has the upper hand in pricing and customer service, while AlienVault OSSIM is preferred for its robust features.

Features: Sentinel users like its real-time threat detection, comprehensive reporting tools, and user-friendly interface. AlienVault OSSIM users value its integration capabilities with various security tools, extensive threat intelligence, and advanced monitoring features.

Room for Improvement: Users suggest Sentinel improve scalability, alert management, and user interface intuitiveness. AlienVault OSSIM users highlight the need for a more intuitive interface, faster processing speeds, and better user documentation.

Ease of Deployment and Customer Service: Sentinel is praised for its straightforward deployment process and responsive customer service. AlienVault OSSIM users find the setup more complex but recognize the comprehensive support provided post-deployment.

Pricing and ROI: Sentinel is generally seen as cost-effective with a quicker ROI. Users find AlienVault OSSIM pricier with a longer ROI period, but its advanced capabilities justify the investment.

To learn more, read our detailed AlienVault OSSIM vs. Sentinel Report (Updated: December 2024).

Buyer's Guide

AlienVault OSSIM vs. Sentinel

December 2024

Download the complete report

Helped 824,053 peers since 2012

Categories and Ranking

AlienVault OSSIM

Ranking in Security Information and Event Management (SIEM)

11th

Average Rating

7.4

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

No ranking in other categories

Sentinel

Ranking in Security Information and Event Management (SIEM)

16th

Average Rating

7.6

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of December 2024, in the Security Information and Event Management (SIEM) category, the mindshare of AlienVault OSSIM is 5.0%, up from 3.0% compared to the previous year. The mindshare of Sentinel is 3.3%, up from 1.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

HarshBhardiya

SOC Engineer at Just Dial Limited

An open-source solution that provide good detection and more visibility

The solution is not scalable. It impacts so hard. In the initial stages, AlienVault OSSIM can be suitable for small environments. There may be limitations if the customer expresses a desire to expand and add more devices. In such cases, we would need to either explore additional solutions or work within the constraints of the existing setup. We have set up alerts and configured everything in AlienVault OSSIM. It actively monitors for any security incidents. It provides us with regular updates and notifications about any ongoing activities. Only one person is using the solution. It is the perfect solution for small businesses. I rate the solution’s scalability a three out of ten.

Read full review

JaideepSingh

Technology Specialist at a government with 51-200 employees

An automated solution that helped me detect threats in less than half the time it used to take

Sentinel gave us logs to tell us what's going right and wrong in your environment so we could secure the network. We also got multiple kinds of logs. By running some queries from the logs, we could find and fix the anomalies in the environment. Sentinel's threat visibility was great at telling us if we had something going on in our environment. We had to set up alerts in our environment based on the logs. If we had the right alerts set up, we got notified about threats and where security was lacking, so we could also take care of that. Sentinel's threat intelligence helped us prepare and take proactive steps for potential threats before they hit. Having preparation before a threat has helped our security operations. When I was using it, I used to keep going into my dashboards and looking for any threats on a weekly basis, or maybe two or three times a week. Based on that, we would recommend certain changes to the server and infrastructure teams to block or allow some ports. Sentinel's threat intelligence helped plan security against risks.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The threat alerts it gives me from time to time on harmful code within the network, or if they are generating any network traffic, are very useful."

"The solution has a very good open source community, and whenever we have problems, we are always able to resolve it online."

"You pay monthly for the solution. I think it's one of the best products. If you compare with other companies, like LogRhythm, etc., the top 8 or 10 CMs, I think Alien Vault has the best price-performance ratio."

"The most valuable features of AlienVault OSSIM are case management, ease of configuration, and investigation."

"Asset discovery is good."

"The initial setup is straightforward."

"You can customize the dashboards as well as the reporting."

"OSSIM is the only solution that includes the large number of modules that we need: a vulnerability scanner, a network IDS system, a host IDS system."

More AlienVault OSSIM pros

"The most valuable feature of this solution is that it provides a central locking system for many event sources."

"We can do advanced hunting queries and modify SQL queries to get desired results based on the rules triggering over the console."

"The most valuable feature is the flexible log for identifying security threats inside an application. Sentinel is very good at this."

"The stability is phenomenal and we never had any issues with downtime or even had to restart."

"The native integration with out-of-the box format is hassle free and allows data to be used advantageously."

"The solution lets us get all the logs properly and regularly monitor customer infrastructure."

"The tool is simple to use."

"Sentinel gave us logs to tell us what's going right and wrong in your environment so we could secure the network."

More Sentinel pros

Cons

"The documentation could be improved."

"The user interface could be improved."

"The incidence reporting could be better."

"The initial setup was a bit complex. You've got to do a lot of reading. It's not an intuitive implementation."

"We need more dashboards and we need more customization for dashboards."

"AlienVault OSSIM is costly."

"There are somewhat more false positives with the user behavior analytics, which could benefit from an additional machine learning model to detect user patterns more rapidly."

"I would like the solution to be able to integrate with my firewall, my IDS and my Honeypot solutions so that it can provide real-time reporting as things occur and then have alert sent to me on my phone when suspicious activity is happening."

More AlienVault OSSIM cons

"There are still a few vendor-specific devices for which Sentinel needs to work on integration, such as Netskope devices."

"It is an ancient product."

"Creating a drag-and-drop dashboard or workbook in Sentinel is a little more complex compared to other tools like LogRhythm and IBM QRadar."

"I would like to see a better reporting work structure on the dashboard."

"There is a need for more flexibility in customization, especially when working with different vendors and platforms."

"There is no integration in the web-side of the tool."

"I rate Sentinel a six out of ten for scalability."

"The dashboard and customer view should be improved"

More Sentinel cons

Pricing and Cost Advice

"OSSIM is open source, and USM is the paid license. So, if you want, you can switch to USM. There you will have to buy a license, and they have a support team that helps you out on issues you face."

"AlienVault OSSIM is expensive compared to its competitors."

"The solution is open source, so it's free to use."

"OSSIM is free."

"The price of AlienVault OSSIM is too high sometimes for us to present to our customers. The price should be lower. We are on a three-year license to use the solution. We had to pay extra for the support."

"We are using a free version of the solution. If you purchase a license there are more features available but the price is a little high. The solution should be cheaper to allow more customers to be able to afford it."

"We are using the community version, which can be used for free."

"When comparing AlienVault OSSIM to Microsoft Sentinel, AlienVault OSSIM incurs additional costs due to its licensing price structure. If you are using AlienVault for security purposes at a certain level it can have a higher price point than the current pricing of Microsoft Sentinel."

More AlienVault OSSIM pricing and cost advice

"We receive a pricing discount because of our ongoing partnership with Micro Focus."

"Sentinel is moderately priced."

"Sentinel's slightly on the expensive side."

"We inquired about getting support from the vendor, Micro Focus, but the cost was very high."

"Sentinel is a subscription-based solution."

"The solution’s pricing is aligned with its competitors."

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

824,053 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

Comms Service Provider

Educational Organization

Computer Software Company

16%

Financial Services Firm

11%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about AlienVault OSSIM?

Asset discovery is good.

See all answers

What is your experience regarding pricing and costs for AlienVault OSSIM?

I used the paid version of the tool and found it to be expensive. It has been a while since I changed to Securonix. I will have to check whether AlienVault charges per device, user, or log.

See all answers

What needs improvement with AlienVault OSSIM?

There are somewhat more false positives with the user behavior analytics, which could benefit from an additional machine learning model to detect user patterns more rapidly. The integration capabil...

See all answers

What do you like most about NetIQ Sentinel?

The solution lets us get all the logs properly and regularly monitor customer infrastructure.

See all answers

What is your experience regarding pricing and costs for NetIQ Sentinel?

Sentinel is moderately priced.

See all answers

What needs improvement with NetIQ Sentinel?

There are still a few vendor-specific devices for which Sentinel needs to work on integration, such as Netskope devices. Also, we often face region-wise outages during operation due to product team...

See all answers

Comparisons

Wazuh vs AlienVault OSSIM

Compared 82% of the time

Elastic Security vs AlienVault OSSIM

Compared 5% of the time

USM Anywhere vs AlienVault OSSIM

Compared 4% of the time

Splunk Enterprise Security vs AlienVault OSSIM

Compared 2% of the time

Rapid7 InsightIDR vs AlienVault OSSIM

Compared 1% of the time

More AlienVault OSSIM Competitors

IBM Security QRadar vs Sentinel

Compared 24% of the time

Splunk Enterprise Security vs Sentinel

Compared 24% of the time

Google Chronicle Suite vs Sentinel

Compared 20% of the time

Wazuh vs Sentinel

Compared 18% of the time

Rapid7 InsightIDR vs Sentinel

Compared 2% of the time

More Sentinel Competitors

Product Reports

Buyer's Guide

AlienVault OSSIM

December 2024

Download AlienVault OSSIM product report

Buyer's Guide

Sentinel

November 2024

Download Sentinel product report

Also Known As

OSSIM

NetIQ Sentinel, Novell SIEM

Learn More

Video not available

AT&T

OpenText

Overview

AlienVault OSSIM, Open Source Security Information and Event Management (SIEM), provides you with a feature-rich open source SIEM complete with event collection, normalization and correlation. Launched by security engineers because of the lack of available open source products, AlienVault OSSIM was created specifically to address the reality many security professionals face: A SIEM, whether it is open source or commercial, is virtually useless without the basic security controls necessary for security visibility.

Sentinel is a full-featured Security Information and Event Management (SIEM) solution that simplifies the deployment, management and day-to-day use of SIEM, readily adapts to dynamic enterprise environments and delivers the true "actionable intelligence" security professionals need to quickly understand their threat posture and prioritize response.

Sample Customers

Council Rock School District

Faysal Bank, GaVI, Handelsbanken, ISC Mªnster, Lambeth Council, Swisscard, The Municipality of Siena, Tukes, University of Dayton, University of the Sunshine Coast

Buyer's Guide

AlienVault OSSIM vs. Sentinel

December 2024

Free Report: AlienVault OSSIM vs. Sentinel

Find out what your peers are saying about AlienVault OSSIM vs. Sentinel and other solutions. Updated: December 2024.

DOWNLOAD NOW

824,053 professionals have used our research since 2012.

See our AlienVault OSSIM vs. Sentinel report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.