Compare Arcsight Logger vs. ELK Logstash
Arcsight Logger is ranked 9th in Log Management with 5 reviews while ELK Logstash is ranked 10th in Log Management with 4 reviews. Arcsight Logger is rated 8.8, while ELK Logstash is rated 7.2. The top reviewer of Arcsight Logger writes "Can handle a huge amount of logs and we are able to create use cases to fit our needs". On the other hand, the top reviewer of ELK Logstash writes "Helps us with application behavioral analysis and tuning". Arcsight Logger is most compared with ELK Logstash, Splunk and IBM QRadar, whereas ELK Logstash is most compared with Graylog, IBM QRadar and Splunk. See our Arcsight Logger vs. ELK Logstash report.
Most Helpful Review | |||
Use Arcsight Logger? Share your opinion. |
| ||
 Find out what your peers are saying about Arcsight Logger vs. ELK Logstash and other solutions. Updated: November 2019. 376,585 professionals have used our research since 2012. | |||
Quotes From Members
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
Pros | |
We haven't had any crashes or bugs. It is stable. The ability to customize the solution in great detail is its most valuable features. We can customize the use cases and also have the ability to do scripting. We can personalize our dashboard as well. The scalability the solution offers is quite impressive. The most valuable feature is the level of detail that you can see about certain events, even when they do not come up in the console. In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating. The ESM use cases are the most valuable. It enables us to use the big data collection inside our company. We are able to create use cases for whatever it suits and I find that the most interesting part of any SIEM solution. | The visualization is very good. It is the best open-source product for people working in SO, managing and analyzing logs. ELK documentation is very good, so never needed to contact technical support. |
Cons | |
In the next release, I want to see more intelligence. The solution should make it possible to integrate network analysis features. I would like to see better scheduling in the next release of this solution. I think the ArcSight team should try to simplify legacy products for the customers, because that product is not easy to use or to work with. It needs more more competency or appeal to use. We hope Micro Focus is trying to resolve this. The speed of Logger indexing and searching for certain bugs for some queries that we provide could be improved. It can handle a huge number of logs but it can be improved. | There are connectors to gather logs for Windows PCs and Linux PCs, but if we have to get the logs from Syslog then we have to do it manually, and this should be automated. If the documentation were improved and made more clear for beginners, or even professionals, then we would be more attracted to this solution. Email notification should be done the same way as Logentries does it. We set up a cron job to delete old logs so that we wouldn't hit a disk space issue. Such a feature should be available in the UI, where old logs can be deleted automatically. (Don’t know if this feature is already there). They don't provide user authentication and authorisation features (Shield) as a part of their open-source version. Authentication is not a default in Kibana. We need to have another tool to have authentication and authorization. These two should be part of Kibana. We had issues with scalability. Logstash was not scaling and aggregation was getting delayed. We moved to Fluentd making our stack from ELK to EFK. |
Pricing and Cost Advice | |
ArcSight Logger is very expensive compared to their competitors, but when we talk to the customer and explain what the features are and how we can scale, they understand. Still, ArcSight is more expensive than the competition. | We are using the free, open-source version of this solution. We use the open-source version, so there is no charge for this solution. |
 Use our free recommendation engine to learn which Log Management solutions are best for your needs. 376,585 professionals have used our research since 2012. | |
Ranking  | |
Views 2,292 Comparisons 1,794 Reviews 5 Average Words per Review 448 Avg. Rating 8.8 | Views 19,343 Comparisons 17,684 Reviews 4 Average Words per Review 365 Avg. Rating 7.3 |
Top Comparisons | |
 Compared 42% of the time.  Compared 12% of the time.  Compared 11% of the time. |  Compared 26% of the time. Compared 13% of the time. Compared 10% of the time. |
Also Known As | |
| Micro Focus Arcsight Logger, HPE Arcsight Logger | Elastic Stack, ELK Stack |
Learn | |
| Micro Focus | Elastic |
Overview | |
| HPE ArcSight Data Platform (ADP) offers a future-ready data solution that enriches data in real time and supports open standards for better threat detection. Using security data connectors, ADP collects data and enriches it in real-time to give analysts organized information that can be acted upon instantly. | Logstash is an open source, server-side data processing pipeline that ingests data from a multitude of sources simultaneously, transforms it, and then sends it to your favorite “stash.” |
Offer | |
Learn more about Arcsight Logger | Learn more about ELK Logstash |
Sample Customers | |
| China Merchants Bank, Bank AlJazira, Banca Intesa | Sprint, Grab, Autopilot, Just Eat, Verizon Wireless, Green Man Gaming, Compare Group, Tango, Perceivant, Quizlet |
Top Industries | |
No Data Available | Software R&D Company39% Manufacturing Company15% Comms Service Provider6% Media Company6% |
Find out what your peers are saying about Arcsight Logger vs. ELK Logstash and other solutions. Updated: November 2019.
376,585 professionals have used our research since 2012.
See also Arcsight Logger Reviews, ELK Logstash Reviews, and our list of Best Log Management Companies.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post
reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference
with LinkedIn, and personal follow-up with the reviewer when necessary.
Sign in to see all reviews and comparisons. It's free!
By clicking Sign in with LinkedIn™ you agree to let IT Central Station use your LinkedIn profile
and email address in accordance with our Privacy Policy and agree to the Terms of Service.
- Unlimited access to 30000+ reviews from real users
- Your own page to promote your professional skills
- Join a community of experts to call upon for support
Already a member? Sign in.
By registering, you agree to our Terms of Service and Privacy Policy.
- Unlimited access to 30000+ reviews from real users
- Your own page to promote your professional skills
- Join a community of experts to call upon for support
Already a member? Sign In.