The tool's security detection is good. It helps us with login tracking and generating reports. We aim to identify potential issues, such as brute-force attacks on user accounts or server-level anomalies. For instance, if I receive a report indicating a server is at an abnormal level, I investigate and address the issue.
The most valuable features of AlienVault OSSIM are vulnerability assessment, network intrusion detection system, response to critical events, and awareness of the whole network.
Its user-friendliness is the most valuable. It is very easy to use and explore. The dashboard is very well packaged and integrated. You don't have to spend a lot of time in configuring it and checking out the RPM etc.
Co-Founder and Director - Information Technology at Techneow
Real User
2020-07-28T06:50:19Z
Jul 28, 2020
The threat policies of the solution are always very advanced and the best in the market. They are very persistent in terms of keeping up with security protocols.
The dashboard is the solution's most valuable aspect. It brings everything into one central point where I can actually look at it and go, "Okay, I understand what's going on."
Owner & Cyber Security Consultant at Sekurisor
Consultant
2019-09-03T08:57:00Z
Sep 3, 2019
The open vault component and the checking of vulnerabilities are the most valuable features. The page management helps with this. If you know how your device is vulnerable at least you can do something about it.
Information Security Manager at a financial services firm with 201-500 employees
Real User
2019-08-28T09:52:00Z
Aug 28, 2019
You pay monthly for the solution. I think it's one of the best products. If you compare with other companies, like LogRhythm, etc., the top 8 or 10 CMs, I think Alien Vault has the best price-performance ratio.
AlienVault OSSIM, Open Source Security Information and Event Management (SIEM), provides you with a feature-rich open source SIEM complete with event collection, normalization and correlation. Launched by security engineers because of the lack of available open source products, AlienVault OSSIM was created specifically to address the reality many security professionals face: A SIEM, whether it is open source or commercial, is virtually useless without the basic security controls necessary for...
Asset discovery is good.
The tool's security detection is good. It helps us with login tracking and generating reports. We aim to identify potential issues, such as brute-force attacks on user accounts or server-level anomalies. For instance, if I receive a report indicating a server is at an abnormal level, I investigate and address the issue.
The product is easy to use.
AlienVault OSSIM is an enterprise solution that sells easily. It is rated highly by organizations.
AlienVault OSSIM's GUI is very user-friendly.
There are a lot of people you will find using OSSIM since they are also offering OTX as a service
The most valuable features of AlienVault OSSIM are case management, ease of configuration, and investigation.
The most valuable features of AlienVault OSSIM are vulnerability assessment, network intrusion detection system, response to critical events, and awareness of the whole network.
The initial setup is straightforward.
The paid version of the solution has reporting and better scalability options.
The most valuable feature is the logging capability.
Its user-friendliness is the most valuable. It is very easy to use and explore. The dashboard is very well packaged and integrated. You don't have to spend a lot of time in configuring it and checking out the RPM etc.
It is also free and very powerful.
You can customize the dashboards as well as the reporting.
The threat policies of the solution are always very advanced and the best in the market. They are very persistent in terms of keeping up with security protocols.
Inbuilt IDS, inbuilt integration with threat intelligence platform and with vulnerability assessment modules.
Better than other SIEM solutions because almost everything can be integrated.
The dashboard is the solution's most valuable aspect. It brings everything into one central point where I can actually look at it and go, "Okay, I understand what's going on."
OSSIM is the only solution that includes the large number of modules that we need: a vulnerability scanner, a network IDS system, a host IDS system.
The most valuable features of this solution are the data correlation and vulnerability assessment.
The open vault component and the checking of vulnerabilities are the most valuable features. The page management helps with this. If you know how your device is vulnerable at least you can do something about it.
You pay monthly for the solution. I think it's one of the best products. If you compare with other companies, like LogRhythm, etc., the top 8 or 10 CMs, I think Alien Vault has the best price-performance ratio.
The initial setup was straightforward. I didn't have any problems.
With AlienVault you get everything in one box.
The solution is very stable. Compared to Qradar and Splunk, it's very stable.
The solution has a very good open source community, and whenever we have problems, we are always able to resolve it online.
The threat alerts it gives me from time to time on harmful code within the network, or if they are generating any network traffic, are very useful.