AlienVault OSSIM Review

Great solution for checking vulnerabilities, and it's free to use, but the initial setup is a bit tricky


What is our primary use case?

We primarily use the solution just to check on devices. OSSIM does a lot of different things to help with this, including a bit of analytics, vulnerability testing, assessment, etc.

What is most valuable?

The open vault component and the checking of vulnerabilities are the most valuable features. The page management helps with this. If you know how your device is vulnerable, at least you can do something about it.

What needs improvement?

It's not easy to add a device that doesn't have a steady IP. Particularly when you're not putting a sensor on-site. When you have a sensor on-site, then that sensor speaks to the main sensor. We are trying to look for quality devices that give a dynamic IP, so it makes it practically impossible to add a new device.

If there was a way to do dynamic DNS, I think that would help.

For how long have I used the solution?

I've been using the solution for almost one year.

What do I think about the stability of the solution?

The stability of the solution is fine.

What do I think about the scalability of the solution?

Scalability can be a bit tricky, especially for network devices. We have about 150 devices on the solution right now that I am monitoring.

If you previously used a different solution, which one did you use and why did you switch?

We didn't previously use another solution.

How was the initial setup?

The initial setup was a bit complex. You've got to do a lot of reading. It's not an intuitive implementation. The deployment didn't take a long time, however.

What about the implementation team?

I handled the implementation myself.

What's my experience with pricing, setup cost, and licensing?

The solution is open-source, so it's free to use.

Which other solutions did I evaluate?

We did evaluate another solution.

What other advice do I have?

We use the cloud deployment model. I have a server that I subscribe people to.

I would advise others to consider, if they get more customers, to do the commercial version the OSSIM from AlienVault. It's now part of AT&T, so there's a lot of support.

I would rate the solution seven out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
Guest
Sign Up with Email