Compare ArcSight Logger vs. ELK Logstash
ArcSight Logger is ranked 8th in Log Management with 8 reviews while ELK Logstash is ranked 13th in Log Management with 4 reviews. ArcSight Logger is rated 8.4, while ELK Logstash is rated 7.2. The top reviewer of ArcSight Logger writes "Passes compliance thresholds and standard requirements and has good performance ". On the other hand, the top reviewer of ELK Logstash writes "Easy to update and maintain with a simple query language". ArcSight Logger is most compared with ELK Logstash, Splunk and Graylog, whereas ELK Logstash is most compared with Graylog, IBM QRadar and Splunk. See our ArcSight Logger vs. ELK Logstash report.
Most Helpful Review | |||
Use ArcSight Logger? Share your opinion. |
| ||
 Find out what your peers are saying about ArcSight Logger vs. ELK Logstash and other solutions. Updated: January 2020. 398,259 professionals have used our research since 2012. | |||
Quotes From Members
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
Pros | |
It's a robust, mature product and you can do some really complex operations and analytics. In terms of ArcSight Logger's most valuable feature, it is their scalability. ArcSight's real advantage is its scalability because they have two layers, including the logger layer. It's an efficient solution. We haven't had any crashes or bugs. It is stable. The ability to customize the solution in great detail is its most valuable features. We can customize the use cases and also have the ability to do scripting. We can personalize our dashboard as well. The scalability the solution offers is quite impressive. The most valuable feature is the level of detail that you can see about certain events, even when they do not come up in the console. In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating. The ESM use cases are the most valuable. It enables us to use the big data collection inside our company. We are able to create use cases for whatever it suits and I find that the most interesting part of any SIEM solution. | The feature that helps us to create a report for the login testing of Logstash is the most valuable aspect of the solution. The visualization is very good. It is the best open-source product for people working in SO, managing and analyzing logs. ELK documentation is very good, so never needed to contact technical support. |
Cons | |
You have limited reporting capabilities and I wouldn't choose ArcSight Logger for this purpose. I would rate the technical support only 5 out of 10. The technical support is not satisfactory. The console in older versions is not user-friendly. In the next release, I want to see more intelligence. The solution should make it possible to integrate network analysis features. I would like to see better scheduling in the next release of this solution. I think the ArcSight team should try to simplify legacy products for the customers, because that product is not easy to use or to work with. It needs more more competency or appeal to use. We hope Micro Focus is trying to resolve this. The speed of Logger indexing and searching for certain bugs for some queries that we provide could be improved. It can handle a huge number of logs but it can be improved. | The machine learning is not included in the free version. It is only included in the Platinum or Gold versions. It would be helpful if the machine learning features were available even on the free version of the solution. RSA and IBM are other solutions that also offer machine learning, which is interesting for us, but they cost money. There are connectors to gather logs for Windows PCs and Linux PCs, but if we have to get the logs from Syslog then we have to do it manually, and this should be automated. If the documentation were improved and made more clear for beginners, or even professionals, then we would be more attracted to this solution. Email notification should be done the same way as Logentries does it. We set up a cron job to delete old logs so that we wouldn't hit a disk space issue. Such a feature should be available in the UI, where old logs can be deleted automatically. (Don’t know if this feature is already there). They don't provide user authentication and authorisation features (Shield) as a part of their open-source version. |
Pricing and Cost Advice | |
ArcSight Logger is very expensive compared to their competitors, but when we talk to the customer and explain what the features are and how we can scale, they understand. Still, ArcSight is more expensive than the competition. | We are using the free, open-source version of this solution. We use the open-source version, so there is no charge for this solution. |
 Use our free recommendation engine to learn which Log Management solutions are best for your needs. 398,259 professionals have used our research since 2012. | |
Ranking  | |
Views 2,415 Comparisons 1,910 Reviews 6 Average Words per Review 506 Avg. Rating 8.8 | Views 20,597 Comparisons 18,634 Reviews 3 Average Words per Review 415 Avg. Rating 7.0 |
Top Comparisons | |
 Compared 43% of the time.  Compared 11% of the time.  Compared 11% of the time. | Compared 23% of the time.  Compared 13% of the time. Compared 11% of the time. |
Also Known As | |
| Micro Focus Arcsight Logger, HPE Arcsight Logger | Elastic Stack, ELK Stack |
Learn | |
| Micro Focus | Elastic |
Overview | |
| HPE ArcSight Data Platform (ADP) offers a future-ready data solution that enriches data in real time and supports open standards for better threat detection. Using security data connectors, ADP collects data and enriches it in real-time to give analysts organized information that can be acted upon instantly. | Logstash is an open source, server-side data processing pipeline that ingests data from a multitude of sources simultaneously, transforms it, and then sends it to your favorite “stash.” |
Offer | |
Learn more about ArcSight Logger | Learn more about ELK Logstash |
Sample Customers | |
| China Merchants Bank, Bank AlJazira, Banca Intesa | Sprint, Grab, Autopilot, Just Eat, Verizon Wireless, Green Man Gaming, Compare Group, Tango, Perceivant, Quizlet |
Top Industries | |
Government25% Security Firm13% Retailer13% Recruiting/Hr Firm13% | Software R&D Company42% Manufacturing Company12% Comms Service Provider10% Government5% |
Find out what your peers are saying about ArcSight Logger vs. ELK Logstash and other solutions. Updated: January 2020.
398,259 professionals have used our research since 2012.
See also ArcSight Logger Reviews, ELK Logstash Reviews, and our list of Best Log Management Companies.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post
reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference
with LinkedIn, and personal follow-up with the reviewer when necessary.