• Home
  • AlienVault OSSIM vs. Rapid7 InsightIDR

AlienVault OSSIM vs Rapid7 InsightIDR comparison

Cancel
You must select at least 2 products to compare!
AT&T Logo
AlienVault OSSIM
Read 28 AlienVault OSSIM reviews
7,280 views|3,997 comparisons
78% willing to recommend
Rapid7 Logo
Rapid7 InsightIDR
Read 30 Rapid7 InsightIDR reviews
6,420 views|3,425 comparisons
95% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
AlienVault OSSIM vs. Rapid7 InsightIDR
May 2024
Executive Summary

We performed a comparison between AlienVault OSSIM and Rapid7 InsightIDR based on real PeerSpot user reviews.

Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed AlienVault OSSIM vs. Rapid7 InsightIDR Report (Updated: May 2024).
Download the complete report
772,679 professionals have used our research since 2012.
Featured Review
Aman Aijaz
An easy-to-scale open-source solution used for monitoring events on devices
This may not be a feature. It is something like how you configure and how you analyze it. But since it's open-source, I'm talking more about this.... Read more →
Anonymous User
Quick to deploy and helpful in detecting and responding to security incidents before there is a big outage
Previously, when something happened, such as when a hacker was attacking one of our customers, we were always behind, or we didn't know that we... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"AlienVault OSSIM is an enterprise solution that sells easily. It is rated highly by organizations.""With AlienVault you get everything in one box.""The initial setup was straightforward. I didn't have any problems.""Asset discovery is good.""There are a lot of people you will find using OSSIM since they are also offering OTX as a service""The solution is very stable. Compared to Qradar and Splunk, it's very stable.""Better than other SIEM solutions because almost everything can be integrated.""The most valuable features of this solution are the data correlation and vulnerability assessment."

More AlienVault OSSIM Pros →

"The web interface is great — very useful and user-friendly.""The solution is easy to use, and the interface is intuitive.""Rapid7's reporting is more robust than Tenable's.""Simple configuration and automatically syncs to the cloud platform.""The alerting to drive investigations and remediation has been its most valuable feature.​""InsightIDR has allowed us to find potential security issues that we did not know existed, and get remediation quickly.""Intelligent alerting to avoid the common problem of alert fatigue associated with traditional SIEMs.""It is a very stable solution."

More Rapid7 InsightIDR Pros →

Cons
"I suggest more in-built rules based on modern threats and environments to make it a more competitive solution.""The solution needs more integration with cyber intelligence systems.""Sometimes technical issues take very long to get resolved.""It takes some time. It does not give me a prompt response for any such [malicious] traffic. It takes time to get that alert from the AlienVault system.""AlienVault OSSIM is costly.""AlienVault OSSIM should improve the deployment and make it unified like the USM.""The documentation could be improved.""AlienVault OSSIM gives unwanted notifications."

More AlienVault OSSIM Cons →

"The main problem lies in the processes within the client's operating systems.""I feel it would greatly benefit from more supported log sources.""It takes time for the product's support team to resolve issues, making it an area of concern where improvements are required.""The searching feature in Rapid7 InsightIDR needs to evolve""The interface for doing investigation needs to be enhanced with minor improvements that would make it more useful.""Lacks a mobile application.""InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment.""InsightIDR's integration with other solutions could be improved. Also, I'd like more control from the portal over what's happening on the endpoint side. For example, when I see an attack on an endpoint, I want to be able to stop it from the portal."

More Rapid7 InsightIDR Cons →

Pricing and Cost Advice
  • "AlienVault pricing is the best. Whatever cost you are paying, you are getting a return on every penny... It's not like your IBM, your QRadar, or Splunk, where the cost is too high."
  • "The solution is open source, so it's free to use."
  • "OSSIM is free."
  • "The licensing fees for the non-community edition are paid on an annual basis, and there are no costs in addition to this."
  • "AlienVault OSSIM is free."
  • "We are using the community version, which can be used for free."
  • "We are using a free version of the solution. If you purchase a license there are more features available but the price is a little high. The solution should be cheaper to allow more customers to be able to afford it."
  • "The price of AlienVault OSSIM is too high sometimes for us to present to our customers. The price should be lower. We are on a three-year license to use the solution. We had to pay extra for the support."

    • More AlienVault OSSIM Pricing and Cost Advice →

  • "​I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability.​"
  • "The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help.​"
  • "Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."
  • "​Accurately predict your licensing counts as this is a subscription based product.​"
  • "The pricing and licensing are competitive."
  • "Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."
  • "It is a reasonably priced solution."
  • "It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."

    • More Rapid7 InsightIDR Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
    See Recommendations
    772,679 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about AlienVault OSSIM?
    Top Answer:Asset discovery is good.
    Read all 26 answers   →
    What is your experience regarding pricing and costs for AlienVault OSSIM?
    Top Answer:The solution is free.
    Read all 21 answers   →
    What needs improvement with AlienVault OSSIM?
    Top Answer:The log management could be improved because of the open source. In the configuration of AlienVault OSSIM, users can determine backup frequency, retention policies, and other settings. There is a… more »
    Read all 26 answers   →
    What SOC product do you recommend?
    Top Answer:For tools I’d recommend:  -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also,… more »
    Read all 12 answers   →
    What do you like most about Rapid7 InsightIDR?
    Top Answer:During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an application… more »
    Read all 20 answers   →
    What is your experience regarding pricing and costs for Rapid7 InsightIDR?
    Top Answer:We chose Rapid7 because of its price. IBM QRadar charges us based on data storage. Rapid7 InsightIDR charges us based on the endpoints we connect to. We are satisfied with the product’s price.
    Read all 17 answers   →
    Ranking
    11th
    out of 80 in Security Information and Event Management (SIEM)
    Views
    7,280
    Comparisons
    3,997
    Reviews
    10
    Average Words per Review
    406
    Rating
    7.3
    9th
    out of 80 in Security Information and Event Management (SIEM)
    Views
    6,420
    Comparisons
    3,425
    Reviews
    11
    Average Words per Review
    441
    Rating
    8.2
    Comparisons
    Also Known As
    OSSIM
    InsightIDR
    Learn More
    AT&T
    Rapid7
    Overview

    AlienVault OSSIM, Open Source Security Information and Event Management (SIEM), provides you with a feature-rich open source SIEM complete with event collection, normalization and correlation. Launched by security engineers because of the lack of available open source products, AlienVault OSSIM was created specifically to address the reality many security professionals face: A SIEM, whether it is open source or commercial, is virtually useless without the basic security controls necessary for security visibility.

    Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

    Sample Customers
    Council Rock School District
    Liberty Wines, Pioneer Telephone, Visier
    Top Industries
    REVIEWERS
    Insurance Company14%
    Computer Software Company14%
    Recruiting/Hr Firm7%
    Transportation Company7%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Financial Services Firm8%
    Government8%
    Comms Service Provider8%
    REVIEWERS
    Comms Service Provider27%
    Computer Software Company20%
    Security Firm13%
    Non Tech Company13%
    VISITORS READING REVIEWS
    Computer Software Company15%
    Manufacturing Company8%
    Financial Services Firm8%
    Government6%
    Company Size
    REVIEWERS
    Small Business53%
    Midsize Enterprise28%
    Large Enterprise19%
    VISITORS READING REVIEWS
    Small Business29%
    Midsize Enterprise20%
    Large Enterprise51%
    REVIEWERS
    Small Business63%
    Midsize Enterprise20%
    Large Enterprise17%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise20%
    Large Enterprise53%
    Buyer's Guide
    AlienVault OSSIM vs. Rapid7 InsightIDR
    May 2024
    Free Report: AlienVault OSSIM vs. Rapid7 InsightIDR
    Find out what your peers are saying about AlienVault OSSIM vs. Rapid7 InsightIDR and other solutions. Updated: May 2024.
    DOWNLOAD NOW
    772,679 professionals have used our research since 2012.

    AlienVault OSSIM is ranked 11th in Security Information and Event Management (SIEM) with 28 reviews while Rapid7 InsightIDR is ranked 9th in Security Information and Event Management (SIEM) with 30 reviews. AlienVault OSSIM is rated 7.4, while Rapid7 InsightIDR is rated 8.4. The top reviewer of AlienVault OSSIM writes "An easy-to-scale open-source solution used for monitoring events on devices ". On the other hand, the top reviewer of Rapid7 InsightIDR writes "Helps in the management of compliance, secret events and information". AlienVault OSSIM is most compared with Wazuh, Elastic Security, USM Anywhere, Splunk Enterprise Security and AWS Security Hub, whereas Rapid7 InsightIDR is most compared with Darktrace, Microsoft Sentinel, Splunk Enterprise Security, Rapid7 InsightVM and IBM Security QRadar. See our AlienVault OSSIM vs. Rapid7 InsightIDR report.

    See our list of best Security Information and Event Management (SIEM) vendors.

    We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.