Logpoint Reviews

We are using LogPoint for MSSP. 

The most valuable feature of LogPoint is that they have the SIEM and SOAR combined in one solution. They are not on a separate platform.

LogPoint can improve its dashboards. We are not able to customize the dashboard when creating them. They only have preset dashboards which do not have exactly what we are looking for.

I have been using LogPoint for approximately two months.

LogPoint has had a few bugs, the stability could improve.

We have six people using this solution.

The support is good for LogPoint, they are very responsive.

We did the Azure setup of LogPoint and it was very easy and straightforward. The process took us less than 15 minutes.

When we were evaluating other solutions LogPoint was the least expensive solution in the market.

We evaluated other options and it made sense for us to choose LogPoint because they have both the SIEM and SOAR together.

My recommendation would be for others to try LogPoint out before making a decision, because it's a fairly new company, and you'll want to give them a try before you decide to purchase.

I rate LogPoint a seven out of ten.

There are some bugs that need to be fixed. 

We use it for our network and security devices. We also use it for all the infrastructure services, such as Active Directory, domain controllers, Exchange servers, hypervisors, and antivirus servers. In general, it is more dedicated to security than to logs.

The search feature is valuable. The dashboards are also valuable for our bosses. Another valuable feature, which is the main feature of the product, is the centralization of all the logs.

It is a good product, but its interface or GUI could be better.

I have been using this solution for one and a half years to two years.

Its stability is good.

Its scalability is good.

Their support is good. They are very good, and they react quickly to our issues.

We had the vendor for the setup, but it wasn't very complicated. Even though our architecture is a little bit complicated, the setup was quite easy. 

We first started with the PoC, and then we kept the PoC and added two more services. So, it took a long time because we tested the solution very thoroughly before buying it. The vendor let us test it for a very long time. It took us about a year.

The vendor did the setup.

We did two PoCs. We had one for Rapid7 and one for LogPoint. We chose LogPoint in the end. A good point for LogPoint is that it is not based on the volume. It is based on the number of devices, whereas Rapid7 is based on the volume, which was why we chose LogPoint instead of Rapid7. We didn't know how much volume we would generate, and we were afraid that it would cost us a lot of money. So, we chose something that we can manage and monitor and is limited to the number of devices. It is much easier to manage the licenses than to manage the volume. For on-premises, it is the best solution.

I would rate it an eight out of ten. 

The most valuable features are the ones that we use the most, which are the search and report facilities.

There is room for improvement on both our side and on the side of LogPoint.

We could improve on what we decided to put into LogPoint for it to work on and LogPoint Is improving with its addition of the MITRE ATT&CK framework.

I know that they have user behavior analytics, but it's an extra cost for this feature. It would be nice if it was in with the standard products.

If there were one price that you paid and that included all of the features, instead of having to pay a bit more to get advanced features. It would make things simpler when you purchase.

I have been using LogPoint for approximately six years.

We're currently migrating from version 6.6 to 6.9.

It's a stable solution.

It's a scalable solution. We can add more LogPoint boxes, repositories, and sources.

We have 20 or 30 people who are using the information from it, in our organization.

Technical support is very good.

We used to use LogRhythm.

We made a significant investment in LogRhythm, and it didn't cope with the size of our estate, so we decided to go elsewhere.

The initial setup was quite straightforward.

It took us a couple of weeks to set up all of the log sources and to configure them.

To maintain this solution it's one person and half their time to work on it.

The implementation was very good from our point of view, but we had one of the top people come out and install it with us.

I think we were the first local authority and the council in the country to touch the LogPoint.

They came out and made sure that it was installed properly and that it worked properly with us, which I'm not sure everybody would get.

It's getting more expensive, which is one of the reasons we're looking around just to see if there's anything better value. It's still good, but it's I think it's becoming more expensive.

We are looking to see what else may be available. There might be something better that we are not aware of yet.

I would say that it's a good product. It's very stable, and the support is very good. We use it a lot. 

As I say, I'm looking to see whether or not it's still the product that we should be using or whether there's something out there now.

I would rate LogPoint an eight out of ten.

I use the product for my research and development to enhance my work. We are transitioning to a new technology, and Logpoint has proven valuable for my purposes.

The solution is user-friendly. 

Logpoint is not flexible. Its documentation is not user-friendly. 

I have been working with the product for six months. 

I rate Logpoint's stability a seven out of ten. 

I rate the tool's scalability a nine out of ten. 

I rate the tool's deployment an eight out of ten. 

I rate Logpoint an eight out of ten. 

We used the solution to help our clients protect their environment by identifying users and the tools they access. Multiple users in our client's admin and HR departments were accessing critical financial documents. Our clients could not stop them from accessing these documents. So they wanted data on which users were accessing the files.

The solution's user interface is quite simple, and the integration is better than other products. The product is easier to work with when compared to open-source tools like Wazuh. The solution’s dashboard is exceptional. LogPoint is much easier to use than LogRhythm. LogPoint is cost-efficient.

The solution must improve its agent installation method, in which we must manually update IP addresses and codes. Most of our employees must install agents to integrate their systems into LogPoint. LogPoint must find a way to integrate the servers without agents.

The solution must improve its user and installation guides so anyone with basic knowledge can install and configure it.

I have been using the solution for three years.

The stability is quite good. I didn’t notice any issues with the solution. I rate the stability a seven out of ten.

I rate the scalability of the solution an eight out of ten. We have two large enterprise and two medium enterprise customers.

The support provided by the solution for Asia is marvelous. The support is always active, and they respond within an hour.

Positive

The initial setup was a little bit complex. However, it is not complex for users with experience using the solution. I rate the initial setup a six out of ten.

It takes us six to seven days to deploy around 500 nodes. The deployment process depends on the logs of the employees.

The solution’s pricing is competitive. I rate the pricing a seven out of ten.

Integrations can be done using CSV files. My team is currently working on LogRhythm. The integration of LogRhythm is quite complicated. Most of the issues we faced while working on the solution were due to the customer’s system. Overall, I rate the solution a seven out of ten.

The main use cases were triage and log collection and security analysis of any logs.

I didn't fully work on the SIEM and used it to its full potential so my experience was quite limited.

The version I used was 7.13.

The integration is very user-friendly. There are not many CLI commands. Everything is directly accessible from the web interface. The query language and the query engine are very powerful.

Recently, a new version seemed to have come out, and it has a new graphical user interface. When I was integrating it, it was usable, but the GUI needed improvement.

I used it for three months.

There were some problems, but they already provided a solution. Adding more RAM or CPUs solved the problem. It was quite stable and less demanding than other solutions.

It's quite scalable, but I'm not sure to which extent. We already had all our devices integrated, so I don't know about scaling it up and down.

I'd rate it an eight out of ten in terms of the ease of setup. We implemented it in a few weeks, but it took time to normalize and pass all the logs. It took a few weeks to set up things. In a few months, we had a fully exploitable solution.

It's less expensive than the competitors. The LogPoint marketing team is very accommodating and client-friendly. They offer very good reductions in price. They are pretty good in this aspect. They are transparent in their licensing and pricing.

I'd rate LogPoint a seven out of ten. I haven't used many SIEM solutions, so I can't compare it with them, but it was good.

We're a health care organization and we had a specific case where LogPoint was able to help develop a special collector for an earlier version of our storage system, where we had issues with migration. Some files were missing when we migrated to the new system, and we had trouble finding out why. LogPoint was very helpful in designing some drivers which could collect the log data, so we could identify the problem. We're customers of LogPoint and I'm a security consultant.

The most valuable features for us have been the log collection, dashboards, and reporting.

My issues with the product are mainly with regard to how it handles collecting logs. I'm currently thinking about implementing a new lever feature.

Additional features I'd like to see would be standard help features in developing dashboards and reports, and some of the alerts you can setup.

I've been using this solution for 10 years. 

This is a stable solution. 

This is a scalable solution and we're currently expanding. We have 10 users but hoping to expand to 100. 

The technical support is comprehensive, but you have the same issues as every company that uses India as a support center. 

I believe the initial setup was straightforward but there have been some issues with some of the vendors we are using such as Dell EMC Isilon storage systems. They have a very cool setup for sending logs to a log management system.

I would advise people to be aware of their needs, and test some specific use cases, so that you get the benefits from the start, because you don't gain anything out of a SIEM system, if you don't have the right amount of data, from the right sources.

I would rate this product an eight out of 10. I'm Danish so nobody gets a 10! There's always room for improvement. 

Logpoint works as a SIEM system. It provides SOAR functionality as well. It helps clients with users' endpoint behavior analysis.

The product's pricing is based on the number of devices instead of the Event Per Second model like other competitors. It has in-built SOAR functionality; we don't buy a separate solution. The main advantage of Logpoint is the support service. They reply within ten minutes to an hour to our queries. They provide free-of-cost service for routing and other processes, whereas other vendors charge extra costs for it.

We encounter difficulties for the product's micro deployment regarding integration with other systems. It is complicated to collect daily logs from other systems like QRadar and LogRhythm. Our customers are unable to install agents on the endpoint to send the logs. 

We have been reselling Logpoint for more than five years. At present, we are providing the latest version.

I rate Logpoint's stability an eight. We face disruptions while collecting insights.

It is a very modular system. We can quickly scale it horizontally and vertically. It has high availability. Around 70% of customers for the product are small businesses.

The product is straightforward to install as we already have a system snapshot. We downloaded the VMware template and changed the server's admin passwords, time zone, and hostname. It requires an hour to complete. I rate the process a ten out of ten.

Logpoint's pricing is mid-ranged and depends on the number of devices. There are extra costs included if you want to buy additional modules. Also, you can purchase a subscription for 24/7 support services apart from standard 12-hour support services.

LogPoint should provide comprehensive comparison tables similar to QRadar. It shows very general insights.

I rate Logpoint an eight out of ten.