• Home
  • AlienVault OSSIM vs. Elastic Security

AlienVault OSSIM vs Elastic Security comparison

Cancel
You must select at least 2 products to compare!
AT&T Logo
AlienVault OSSIM
Read 28 AlienVault OSSIM reviews
7,387 views|4,012 comparisons
78% willing to recommend
Elastic Logo
Elastic Security
Read 59 Elastic Security reviews
14,976 views|12,423 comparisons
86% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
AlienVault OSSIM vs. Elastic Security
May 2024
Executive Summary

We performed a comparison between AlienVault OSSIM and Elastic Security based on real PeerSpot user reviews.

Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed AlienVault OSSIM vs. Elastic Security Report (Updated: May 2024).
Download the complete report
772,649 professionals have used our research since 2012.
Featured Review
Aman Aijaz
An easy-to-scale open-source solution used for monitoring events on devices
This may not be a feature. It is something like how you configure and how you analyze it. But since it's open-source, I'm talking more about this.... Read more →
Anonymous User
Efficiently handle millions of loads simultaneously
It helps us detect errors and keep an eye on the application in both the development and production environments.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable features of this solution are the data correlation and vulnerability assessment.""There are a lot of people you will find using OSSIM since they are also offering OTX as a service""It has helped us remediate threats in the past by providing significant events that assisted in identifying suspicious activities, such as logins from multiple countries.""You pay monthly for the solution. I think it's one of the best products. If you compare with other companies, like LogRhythm, etc., the top 8 or 10 CMs, I think Alien Vault has the best price-performance ratio.""Better than other SIEM solutions because almost everything can be integrated.""The initial setup is straightforward.""The most valuable features of AlienVault OSSIM are vulnerability assessment, network intrusion detection system, response to critical events, and awareness of the whole network.""You can customize the dashboards as well as the reporting."

More AlienVault OSSIM Pros →

"Its flexibility is most valuable. We can have a number of scenarios, and we can get logs from anything. If we know how to use Logstash, we can tweak it in many ways. This makes the logging search on Elastic very easy.""We've found the initial setup to be quite straightforward.""The most valuable features of Elastic Security are it is open-source and provides a high level of security.""The most valuable feature is the ability to collect authentication information from service providers.""ELK documentation is very good, so never needed to contact technical support.""I like the indexing of the logs.""The most valuable feature for me is Discover.""We like Elastic Security because it's a REST API-based solution. That's the primary reason we use it."

More Elastic Security Pros →

Cons
"The price of this solution is very high and it could be cheaper.""It's so hard to configure and explore something new on it.""I would like the solution to be able to integrate with my firewall, my IDS and my Honeypot solutions so that it can provide real-time reporting as things occur and then have alert sent to me on my phone when suspicious activity is happening.""The user interface needs to be friendlier across the board.""AlienVault OSSIM gives unwanted notifications.""When comparing AlienVault OSSIM to other solutions it looks a bit outdated. Additionally, they need to improve their integration.""The incidence reporting could be better.""AlienVault OSSIM is costly."

More AlienVault OSSIM Cons →

"Authentication is not a default in Kibana. We need to have another tool to have authentication and authorization. These two should be part of Kibana.""We're using the open-source edition, for now, I think maybe they can allow their OLED plugin to be open source, as at the moment it is commercialised.""With Elastic, you have to build the use cases for the specific requirement. Other products have a simple integration and more use cases to integrate out-of-the-box solutions for SIEM.""Sometimes, the solution isn't the easiest to use.""The price of this product could be improved, especially the additional costs. I would also like to see better-quality graphics.""Elastic has one problem. In the past, Elastic Security was free. Now, they currently only offer the basic license or a certain period of time.""Elastic Security could improve the documentation. It would help if they were more simple and clean.""We'd like better premium support."

More Elastic Security Cons →

Pricing and Cost Advice
  • "AlienVault pricing is the best. Whatever cost you are paying, you are getting a return on every penny... It's not like your IBM, your QRadar, or Splunk, where the cost is too high."
  • "The solution is open source, so it's free to use."
  • "OSSIM is free."
  • "The licensing fees for the non-community edition are paid on an annual basis, and there are no costs in addition to this."
  • "AlienVault OSSIM is free."
  • "We are using the community version, which can be used for free."
  • "We are using a free version of the solution. If you purchase a license there are more features available but the price is a little high. The solution should be cheaper to allow more customers to be able to afford it."
  • "The price of AlienVault OSSIM is too high sometimes for us to present to our customers. The price should be lower. We are on a three-year license to use the solution. We had to pay extra for the support."

    • More AlienVault OSSIM Pricing and Cost Advice →

  • "We use the open-source version, so there is no charge for this solution."
  • "We are using the free, open-source version of this solution."
  • "Elastic Stack is an open-source tool. You don't have to pay anything for the components."
  • "There is no charge for using the open-source version."
  • "This is an open-source product, so there are no costs."
  • "It's a monthly cost with Elastic SIEM, but I am not sure of the exact cost."
  • "It is easy to deploy, easy to use, and you get everything you need to become operational with it, and have nothing further to pay unless you want the OLED plugin."
  • "Compared to other products such as Dynatrace, this is one of the cheaper options."

    • More Elastic Security Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
    See Recommendations
    772,649 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about AlienVault OSSIM?
    Top Answer:Asset discovery is good.
    Read all 26 answers   →
    What is your experience regarding pricing and costs for AlienVault OSSIM?
    Top Answer:The solution is free.
    Read all 21 answers   →
    What needs improvement with AlienVault OSSIM?
    Top Answer:The log management could be improved because of the open source. In the configuration of AlienVault OSSIM, users can determine backup frequency, retention policies, and other settings. There is a… more »
    Read all 26 answers   →
    Datadog vs ELK: which one is good in terms of performance, cost and effic...
    Top Answer:With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good core… more »
    Read all 7 answers   →
    What do you like most about Elastic Security?
    Top Answer:Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because of… more »
    Read all 27 answers   →
    What is your experience regarding pricing and costs for Elastic Security?
    Top Answer:Elastic Security is open-source. Unlike many older solutions where you must pay for data ingestion, Elastic allows you to ingest data freely. Being open source, you can set up a Kafka front door layer… more »
    Read all 19 answers   →
    Ranking
    14th
    out of 80 in Security Information and Event Management (SIEM)
    Views
    7,387
    Comparisons
    4,012
    Reviews
    9
    Average Words per Review
    426
    Rating
    7.2
    5th
    out of 80 in Security Information and Event Management (SIEM)
    Views
    14,976
    Comparisons
    12,423
    Reviews
    25
    Average Words per Review
    488
    Rating
    7.7
    Comparisons
    Also Known As
    OSSIM
    Elastic SIEM, ELK Logstash
    Learn More
    AT&T
    Elastic
    Overview

    AlienVault OSSIM, Open Source Security Information and Event Management (SIEM), provides you with a feature-rich open source SIEM complete with event collection, normalization and correlation. Launched by security engineers because of the lack of available open source products, AlienVault OSSIM was created specifically to address the reality many security professionals face: A SIEM, whether it is open source or commercial, is virtually useless without the basic security controls necessary for security visibility.

    Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.


    Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

    Additional offerings and benefits:

    • The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
    • It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
    • With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

    Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

    Sample Customers
    Council Rock School District
    Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care
    Top Industries
    REVIEWERS
    Insurance Company14%
    Computer Software Company14%
    Manufacturing Company7%
    Financial Services Firm7%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Financial Services Firm8%
    Government8%
    Comms Service Provider8%
    REVIEWERS
    Financial Services Firm29%
    Computer Software Company25%
    Healthcare Company13%
    Comms Service Provider8%
    VISITORS READING REVIEWS
    Computer Software Company17%
    Financial Services Firm10%
    Government9%
    Comms Service Provider7%
    Company Size
    REVIEWERS
    Small Business53%
    Midsize Enterprise28%
    Large Enterprise19%
    VISITORS READING REVIEWS
    Small Business29%
    Midsize Enterprise20%
    Large Enterprise51%
    REVIEWERS
    Small Business59%
    Midsize Enterprise19%
    Large Enterprise22%
    VISITORS READING REVIEWS
    Small Business26%
    Midsize Enterprise18%
    Large Enterprise56%
    Buyer's Guide
    AlienVault OSSIM vs. Elastic Security
    May 2024
    Free Report: AlienVault OSSIM vs. Elastic Security
    Find out what your peers are saying about AlienVault OSSIM vs. Elastic Security and other solutions. Updated: May 2024.
    DOWNLOAD NOW
    772,649 professionals have used our research since 2012.

    AlienVault OSSIM is ranked 14th in Security Information and Event Management (SIEM) with 28 reviews while Elastic Security is ranked 5th in Security Information and Event Management (SIEM) with 59 reviews. AlienVault OSSIM is rated 7.4, while Elastic Security is rated 7.6. The top reviewer of AlienVault OSSIM writes "An easy-to-scale open-source solution used for monitoring events on devices ". On the other hand, the top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". AlienVault OSSIM is most compared with Wazuh, USM Anywhere, Splunk Enterprise Security, Microsoft Sentinel and Fortinet FortiSIEM, whereas Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, IBM Security QRadar and Graylog. See our AlienVault OSSIM vs. Elastic Security report.

    See our list of best Security Information and Event Management (SIEM) vendors.

    We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.