Try our new research platform with insights from 80,000+ expert users

Security Onion vs VMware Aria Operations for Logs comparison

Security Onion Solutions, LLC and VMware are both solutions in the Log Management category. Security Onion Solutions, LLC is ranked #18 with an average rating of 7.7, while VMware is ranked #9 with an average rating of 8.6. Security Onion Solutions, LLC holds a 5.7% mindshare in Log Management, compared to VMware’s 1.2% mindshare. Additionally, 66% of Security Onion Solutions, LLC users are willing to recommend the solution, compared to 92% of VMware users who would recommend it.
Security Onion
Read 3 Security Onion reviews
  • 6,709 Views
  • 5,768 Comparison Views
66% willing to recommend
VMware Aria Operations for ...
Read 28 VMware Aria Operations for Logs reviews
  • 2,388 Views
  • 1,747 Comparison Views
92% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 9, 2024

VMware Aria Operations for Logs and Security Onion compete in the log management and security analysis category. User feedback suggests VMware Aria Operations for Logs has better customer support, while Security Onion offers robust features that are favored despite pricing concerns.

Features: VMware Aria Operations for Logs provides advanced analytics, seamless integration with VMware infrastructures, and enhanced troubleshooting capabilities. Security Onion offers comprehensive open-source security tools, extensive network monitoring, and flexible configurations for feature-rich security solutions.

Room for Improvement: VMware Aria Operations for Logs needs better scalability options and improved user interface customization. Enhancements in data integration processes are also suggested. Security Onion requires improved user documentation, a more intuitive interface, and streamlined update processes to ease the learning curve.

Ease of Deployment and Customer Service: VMware Aria Operations for Logs is known for its straightforward deployment within VMware environments, with responsive customer service. Security Onion offers customizable deployment due to its open-source nature, but the complexity varies, with mixed reviews on customer service capabilities.

Pricing and ROI: VMware Aria Operations for Logs has a higher setup cost but delivers a strong ROI through reduced troubleshooting time. Security Onion offers a lower initial cost being open-source, yet requires investment in skilled personnel for maximizing ROI. Users find Security Onion’s features justify the investment despite the cost.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Security Onion vs. VMware Aria Operations for Logs Report (Updated: April 2025).
Buyer's Guide
Security Onion vs. VMware Aria Operations for Logs
April 2025
Download the complete report
Helped 847,772 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Security Onion
Ranking in Log Management
18th
Average Rating
7.6
Reviews Sentiment
5.5
Number of Reviews
3
Ranking in other categories
AWS Marketplace (5th)
VMware Aria Operations for ...
Ranking in Log Management
9th
Average Rating
8.2
Reviews Sentiment
6.4
Number of Reviews
28
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Log Management category, the mindshare of Security Onion is 5.7%, up from 2.9% compared to the previous year. The mindshare of VMware Aria Operations for Logs is 1.2%, down from 1.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
 

Featured Reviews

Jörg Kippe - PeerSpot reviewer
A mature and affordable solution that is easy to install and easy to update
The product takes time to learn, it's not that easy. In the beginning we had a lot of questions. If you want to use such a tool in an real (industrial) environment, you have to ask how to get the network data. Can we do a full packet capture? Can we provide agents to our end systems? There are no simple solutions to these questions. It's a general problem when running such systems in an industrial environment.
Read full review
LarsChristensen - PeerSpot reviewer
Efficient troubleshooting with precise log filtering and an easy setup
The tool could benefit from improved filter settings and dashboarding. While there are dashboards available, they are often created by community members and may not work after updates. It would be beneficial to have a roadmap for these dashboards to ensure consistent functionality. It would also be advantageous if the tool could process even large amounts of data faster, though this may be more related to data movement challenges rather than the software itself.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We use Security Onion for internal vulnerability assessment."
"Security Onion is the most mature solution in the market."
"The most valuable feature of Security Onion for security monitoring is its ability to find infected ports."
"The events are notably more descriptive, aiding in security and event analysis. We've also integrated Sky Collector, providing valuable insights and solutions for troubleshooting."
"One of the things I like about it is its interface. When it comes to generating reports on VMs and stuff, it's very quick. This is very handy for the technical team, who need to generate reports quickly. So that's really good."
"It gives the customer a quick overview, so they don't have to dig. There's a clear dashboard with many sensors in a single space. He gets a helicopter view of his environment, but he can investigate further if there are serious issues. It's pretty user-friendly."
"The ability to narrow into a specific time to filter heavy hitters and anomalies is extremely valuable."
"The most valuable feature is server virtualization. It's been very useful."
"Overall, I would recommend VMware Aria Operations for Logs because it is a good tool with many valuable features."
"We use the on-premises version of this solution for log analysis and to find details about certain issues."
"The root cause analysis feature is very valuable."
More VMware Aria Operations for Logs pros
 

Cons

"The initial setup of the solution is a little bit difficult."
"The product is not easy to learn."
"Security Onion's user interface could be improved."
"I don't use the solution on a day to day basis, so I'm not sure what specifically can be improved."
"The solution is a very good tool, but it has a lot of limitations. One of the main issues is around how you define your retention policy, for instance, in Log Insight. It doesn't have it. You can't define a log retention policy. You also can't define the destination or location for your logs. All of the logs are in one index or one bucket."
"Documentation is lacking, including some guide as to how to use the expressions. It is not clear how to look for a log, for example. Some examples in the documentation might be helpful. I think that VMware had good documentation, but it's no longer hosted. The documentation is not as easy to understand as it was before."
"The solution isn't user-friendly for admins."
"The dashboard needs to be improved because this is what I need to monitor my infrastructure."
"I think that it should be able to integrate with other third-party backup and recovery solutions, more that it does now."
"What I'd like to improve in vRealize Log Insight is the licensing model. VMware provides vRealize Log Insight along with the VMware Cloud Foundation, but customers who would like to go for the native VMware would have to procure vRealize Log Insight separately. Today, vRealize Log Insight is offered on two different licenses, one is based on the number of VMs, and the other is based on the number of physical codes on the machine. If VMware can provide a bundle offer for customers who procure more than ten licenses, where you can have an option to run, for example, three hundred machines on vRealize Log Insight with no extra cost, this would encourage more people to adopt the solution. What I'd like to see in the next release of vRealize Log Insight is for a cloud option to be available, which would be a pay-as-you-go licensing model that would allow me to pick and choose what I'll monitor. For example, I have one thousand and three hundred critical servers, and the seven hundred servers for basic development, I don't want to monitor on vRealize Log Insight today, so I should be able to pick what I need to monitor on the solution and only pay for that specific instance. If VMware can apply these changes, it would help VMware customers to procure more or adopt more of vRealize Log Insight even in smaller projects."
"They should improve their web interface to make it more user-friendly."
More VMware Aria Operations for Logs cons
 

Pricing and Cost Advice

"It is an open-source solution."
"Security Onion is a free solution."
"Security Onion is an open-source solution."
"The product's price is reasonable, but when it comes to SQL licensing, it's a bit expensive."
"It is not cheap. But it is worth it."
"The pricing has been updated recently."
"Pricing is good because it is part of the suite package. It comes in a bundle for us."
"Pricing could always be lower. If it were free, I would be more satisfied."
"The licensing cost for vRealize Log Insight is a little higher, so in terms of cost, it all depends upon what kind of environment you have. If you have a complete virtualized environment, or at least you're using a ninety-five percent virtualized environment, then vRealize Log Insight will play a very good role because it is a VMware component, so it has very tight integration with other VMware components and systems. This means you don't have to procure any other monitoring and management tool, and you don't need a separate automation tool. vRealize Log Insight will have an upper hand if your environment is purely virtualized on VMware. If you're using a mix of physical and virtual components, for example, a 50:50 ratio, then you need to have a third-party component to manage overall monitoring."
"I am not sure what the exact cost is. However, I believe the vRealize suite costs $2,500.00 per year."
"The license cost for any other monitoring tool is too high compared to this product."
More VMware Aria Operations for Logs pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
See recommendations
847,772 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
12%
University
11%
Government
11%
Comms Service Provider
11%
Computer Software Company
16%
Government
13%
Financial Services Firm
11%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Security Onion?
The most valuable feature of Security Onion for security monitoring is its ability to find infected ports.
See all answers
What is your experience regarding pricing and costs for Security Onion?
Security Onion is an open-source solution. On a scale from one to ten, where ten is expensive and one is cheap, I rate the solution's pricing a six out of ten.
See all answers
What needs improvement with Security Onion?
The initial setup of the solution is a little bit difficult.
See all answers
What do you like most about vRealize Log Insight?
The events are notably more descriptive, aiding in security and event analysis. We've also integrated Sky Collector, providing valuable insights and solutions for troubleshooting.
See all answers
What is your experience regarding pricing and costs for vRealize Log Insight?
Pricing for VMware Aria Operations for Logs can depend on several variables, including the workload and the customer. The price has risen significantly, and for smaller customers, the cost can be u...
See all answers
What needs improvement with vRealize Log Insight?
It is not the main tool in my stack. I can do similar tasks using solutions like Grafana ( /products/grafana-reviews ). My focus is mainly on finding alternatives for hypervisor and automation purp...
See all answers
 

Comparisons

Wazuh vs Security Onion Logo
Wazuh vs Security Onion
Compared 62% of the time
Elastic Stack vs Security Onion Logo
Elastic Stack vs Security Onion
Compared 11% of the time
Splunk Enterprise Security vs Security Onion Logo
Splunk Enterprise Security vs Security Onion
Compared 8% of the time
Graylog vs Security Onion Logo
Graylog vs Security Onion
Compared 6% of the time
Kali Linux vs Security Onion Logo
Kali Linux vs Security Onion
Compared 4% of the time
More Security Onion Competitors
Splunk Enterprise Security vs VMware Aria Operations for Logs Logo
Splunk Enterprise Security vs VMware Aria Operations for Logs
Compared 18% of the time
Elastic Stack vs VMware Aria Operations for Logs Logo
Elastic Stack vs VMware Aria Operations for Logs
Compared 13% of the time
Elastic Security vs VMware Aria Operations for Logs Logo
Elastic Security vs VMware Aria Operations for Logs
Compared 10% of the time
Grafana Loki vs VMware Aria Operations for Logs Logo
Grafana Loki vs VMware Aria Operations for Logs
Compared 10% of the time
LogRhythm SIEM vs VMware Aria Operations for Logs Logo
LogRhythm SIEM vs VMware Aria Operations for Logs
Compared 9% of the time
More VMware Aria Operations for Logs Competitors
 

Product Reports

Buyer's Guide
Log Management
March 2025
Security Onion reportDownload Security Onion product report
Buyer's Guide
VMware Aria Operations for Logs
March 2025
VMware Aria Operations for Logs reportDownload VMware Aria Operations for Logs product report
 

Also Known As

No data available
vRealize Log Insight
 

Overview

Security Onion is an open-source Linux distribution for intrusion detection, network security monitoring, and log management. It offers comprehensive solutions for enterprises seeking to enhance their cybersecurity infrastructure.

Security Onion provides a full suite of tools to detect and respond to cybersecurity threats efficiently. As a robust and versatile distribution, it includes capabilities for real-time analysis, network visibility, and threat detection, making it indispensable for security operations centers. Users value this tool for its integration of open-source software with advanced analytics, affording professionals a detailed overview of network traffic and potential intrusions.

What are Security Onion’s most important features?
  • Intrusion Detection: Utilizes Suricata or Zeek for effective threat monitoring.
  • Network Security Monitoring: Offers powerful visualization tools for network analysis.
  • Log Management: Centralizes log collection and analysis.
  • Comprehensive Dashboards: Provides integrated dashboards for threat visibility.
What benefits or ROI should you look for in reviews?
  • Cost Efficiency: Reduced cybersecurity costs due to its open-source nature.
  • Improved Threat Detection: Enhanced ability to identify and respond to threats quickly.
  • Integration Capability: Seamless integration with existing security infrastructures.
  • Scalability: Support for scaling network security operations as needed.

Security Onion finds extensive application in industries such as finance, healthcare, and government sectors, where robust network monitoring is critical. Its ability to integrate with existing security tools makes it a preferred choice for organizations looking to strengthen their cybersecurity posture.

Security Onion Solutions, LLC
Manage data at scale with centralized log management, deep operational visibility and intelligent analytics for troubleshooting and auditing across private, hybrid and multi-cloud environments.
VMware
 

Sample Customers

Information Not Available
Wildlands Adventure Zoo, Medic Mobile, IBM, Seventy Seven Energy, Baystate Health, Osis, Oxford University, Columbia University, Siemens, Cardinal Health, Ashdod Port, Vasakronan, Sydney Adventist Hospital, University of Derby
Buyer's Guide
Security Onion vs. VMware Aria Operations for Logs
April 2025
Free Report: Security Onion vs. VMware Aria Operations for Logs
Find out what your peers are saying about Security Onion vs. VMware Aria Operations for Logs and other solutions. Updated: April 2025.
DOWNLOAD NOW
847,772 professionals have used our research since 2012.
See our Security Onion vs. VMware Aria Operations for Logs report.
See our list of best Log Management vendors.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.