• Home
  • Fortinet FortiSIEM vs. OmniPeek

Fortinet FortiSIEM vs OmniPeek comparison

Cancel
You must select at least 2 products to compare!
Microsoft Logo

Microsoft Sentinel

Read 85 Microsoft Sentinel reviews
32,763 views|18,195 comparisons
92% willing to recommend
Fortinet Logo

Fortinet FortiSIEM

Read 63 Fortinet FortiSIEM reviews
7,467 views|4,053 comparisons
81% willing to recommend
LiveAction Logo

OmniPeek

Read 6 OmniPeek reviews
387 views|202 comparisons
100% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Security Information and Event Management (SIEM)
April 2024
Executive Summary

We performed a comparison between Fortinet FortiSIEM and OmniPeek based on real PeerSpot user reviews.

Find out what your peers are saying about Microsoft, Splunk, Wazuh and others in Security Information and Event Management (SIEM).
To learn more, read our detailed Security Information and Event Management (SIEM) Report (Updated: April 2024).
Download the complete report
767,995 professionals have used our research since 2012.
Featured Review
Anonymous User
Easy to integrate, offers good documentation, and the setup is simple
The main benefit is the ease of integration. Having a cloud-based SIEM means scalability. We also received very good support and documentation from... Read more →
Marcelo Canedo
Integrates logs from different sources so that there is a common place to see and create dashboards
FortiSIEM helped us discover all the threats at the time that were attacking the IT services of the company. We now have multiple-level... Read more →
Venkat Lkmula
Easy to identify packets, beneficial color assigning, and responsive support
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The scalability is great. You can put unlimited logs in, as long as you can pay for it. There are commitment tiers, up to six terabytes per day, which is nowhere close to what any one of our customers is running.""The UI-based analytics are excellent.""The native integration of the Microsoft security solution has been essential because it helps reduce some false positives, especially with some of the impossible travel rules that may be configured in Microsoft 365. For some organizations, that might be benign because they're using VPNs, etc.""Mainly, this is a cloud-native product. So, there are zero concerns about managing the whole infrastructure on-premises.""The dashboard that allows me to view all the incidents is the most valuable feature.""The most valuable feature is the alert notifications, which are categorized by severity levels: informational, low, medium, and high.""Sentinel has an intuitive, user-friendly way to visualize the data properly. It gives me a solid overview of all the logs. We get a more detailed view that I can't get from the other SIEM tools. It has some IP and URL-specific allow listing""The main benefit is the ease of integration."

More Microsoft Sentinel Pros →

"It's easy to manage. There's a web interface and a command line, depending on what the user is comfortable with. There's a large knowledge base available, and the support is timely.""AccelOps can handle a lot of data and it's just so important to true monitoring. Also, I can create a lot of rules to detect anything I like.""The interface is very easy to use. The connector in the core has FortiSIEM support from the vendor.""Real-time monitoring makes life quite easy for me.""Its automated response feature has benefited our customer communication. Analysts feel more confident in providing timely responses.""We find the solution to be stable.""Fortinet FortiSIEM has its own validated and authentic IP database that marks malicious IP attacks against the firewall and generates an alert for the same.""The primary valuable feature is that it has replaced a whole lot of other products with one platform."

More Fortinet FortiSIEM Pros →

"The most valuable feature of OmniPeek was the ability it gave us to see the connection procedure.""The most valuable feature of OmniPeek is the ability to assign custom color codes to the different packets easily.""It's a solid piece of software. It's stable.""The most valuable features are the voice bot, which checks the quality of service for voice, and the expert view that gives me insight on what and where to troubleshoot.""The most valuable feature is OmniPeek is user-friendly.""I believe the most crucial feature of OmniPeek search is the ability to sniff packets based on channel switching."

More OmniPeek Pros →

Cons
"We have been working with multiple customers, and every time we onboard a customer, we are missing an essential feature that surprisingly doesn't exist in Sentinel. We searched the forums and knowledge bases but couldn't find a solution. When you onboard new customers, you need to enable the data connectors. That part is easy, but you must create rules from scratch for every associated connector. You click "next," "next," "next," and it requires five clicks for each analytical rule. Imagine we have a customer with 150 rules.""We do have in-built or out-of-the-box metrics that are shown on the dashboard, but it doesn't give the kind of metrics that we need from our environment whereby we need to check the meantime to detect and meantime to resolve an incident. I have to do it manually. I have to pull all the logs or all the alerts that are fed into Sentinel over a certain period. We do this on a monthly basis, so I go into Microsoft Sentinel and pull all the alerts or incidents we closed over a period of thirty days.""I believe one of the challenges I encountered was the absence of live training sessions, even with the option to pay for them.""It has been a challenge with Azure Sentinel to onboard the Syslog server from FortiGate. Azure Sentinel can work better on that shift between the Syslog server and a firewall.""The interface could be more user-friendly. It''s a small improvement that they could make if they wanted to.""Microsoft Sentinel is relatively expensive, and its cost should be improved.""In terms of features I would like to see in future releases, I'm interested in a few more use cases around automation. I do believe a lot of automation is available, and more is in progress, but that would be my area of interest.""The playbook is a bit difficult and could be improved."

More Microsoft Sentinel Cons →

"The policy editing should be easier. Right now, it's too hard.""Fortinet FortiSIEM could improve by having better integration and extensions. This would benefit by allowing us to give more rules.""There is no proper guide for integration or configuration.""Not very good on non-API features, lacks that functionality.""Fortinet FortiSIEM is a little out of sight and needs more marketing efforts to be popular in the market.""The nodes on our network did not comply with the SIEM solution. They use a different format parking log.""Fortinet FortiSIEM could improve by having a signature update.""Fortinet FortiSIEM could improve to extend to several locations or sites."

More Fortinet FortiSIEM Cons →

"Making it more clear on how to configure the filters, or really automating them, would be an improvement.""The solution's automation has room for improvement.""I am not using OmniPeek for automation, we only do manual testing. Automation testing is tedious to do. The automation should be more user-friendly. I have exposed some APIs but the usage is not user-friendly.""I don't see a clear roadmap in the future for improving this software.""I would like to see the saving feature improved. We have had issues if you do not save your progress then you have to start from the beginning.""I would like to see the tool work in an open environment the same as how it does in a closed environment."

More OmniPeek Cons →

Pricing and Cost Advice
  • "It comes with a Microsoft subscription which the customer has, so they don't have to invest somewhere else."
  • "It is a consumption-based license model. bands at 100, 200, 400 GB per day etc. Azure Sentinel Pricing | Microsoft Azure"
  • "Good monthly operational cost model for the detection and response outcomes delivered, M365 logs don't count toward the limits which is a good benefit."
  • "I have had mixed feedback. At one point, I heard a client say that it sometimes seems more expensive. Most of the clients are on Office 365 or M365, and they are forced to take Azure SIEM because of the integration."
  • "It is kind of like a sliding scale. There are different tiers of pricing that go from $100 per day up to $3,500 per day. So, it just kind of depends on how much data is being stored. There can be additional costs to the standard license other than the additional data. It just kind of depends on what other services you're spinning up in Azure, or if you're using something like Azure log analytics."
  • "I am just paying for the log space with Azure Sentinel. It costs us about $2,000 a month. Most of the logs are free. We are only paying money for Azure Firewall logs because email logs or Azure AD logs are free to use for us."
  • "Sentinel is a bit expensive. If you can figure a way of configuring it to meet your needs, then you can find a way around the cost."
  • "Azure Sentinel is very costly, or at least it appears to be very costly. The costs vary based on your ingestion and your retention charges."

    • More Microsoft Sentinel Pricing and Cost Advice →

  • "Please be cheaper and more simplified."
  • "We bought the perpetual license, so we own the product, but there is a three-year support renewal fee for that."
  • "Pricing is acceptable for more than 90% of our customers, as they normally get discounts."
  • "Its price can be better. We are Fortinet partners, so we can get discounts, but its price can be an issue at the beginning for others. There is a licensing scheme for every case. There are three licensing schemes that we can choose from."
  • "The price of Fortinet FortiSIEM is a lot less when compared to other solutions."
  • "They have a yearly subscription."
  • "The solution is available for both, perpetual and subscription licenses."
  • "Manageable, however would be better as pay as you go versus CapEX."

    • More Fortinet FortiSIEM Pricing and Cost Advice →

  • "The pricing for this solution could be improved, as it is a very expensive product."
  • "There are different types of licenses available."
  • "We have only purchased the add-on once and have not paid for any subsequent versions as it was too costly for us."

    • More OmniPeek Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
    See Recommendations
    767,995 professionals have used our research since 2012.
    Questions from the Community
    Is there a common threat intelligence tool that aggregates multiple threa...
    Top Answer:Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel and… more »
    Read all 10 answers   →
    What is a better choice, Splunk or Azure Sentinel?
    Top Answer:It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for… more »
    Which is better - Azure Sentinel or AWS Security Hub?
    Top Answer:We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is… more »
    Read all 2 answers   →
    What do you like most about Fortinet FortiSIEM?
    Top Answer:Real-time monitoring makes life quite easy for me.
    Read all 36 answers   →
    What is your experience regarding pricing and costs for Fortinet FortiSIEM?
    Top Answer:The price is competitive. We can scale based on the licensing. It is an annual CapEx.
    Read all 23 answers   →
    What needs improvement with Fortinet FortiSIEM?
    Top Answer:Network detection and response is a separate product. That's how I ended up with Wazuh. I'm looking for something to… more »
    Read all 36 answers   →
    What do you like most about OmniPeek?
    Top Answer:It's a solid piece of software. It's stable.
    Read all 5 answers   →
    What needs improvement with OmniPeek?
    Top Answer:There's likely not a future for OmniPeek in LiveAction. LiveAction acquired OmniPeek. I don't see a clear roadmap in the… more »
    Read all 5 answers   →
    What is your primary use case for OmniPeek?
    Top Answer:Our company is an ODM manufacturer for wireless products like routers and WiFi access points. As an RD and QA… more »
    Read all 5 answers   →
    Comparisons
    Also Known As
    Azure Sentinel
    FortiSIEM, AccelOps
    Savvius OmniPeek
    Learn More
    Microsoft
    Fortinet
    LiveAction
    Video Not Available
    Overview

    Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

    - Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

    - Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

    - Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

    - Respond to incidents rapidly with built-in orchestration and automation of common tasks

    To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

    FortiSIEM (formerly AccelOps 4) provides an actionable security intelligence platform to monitor security, performance and compliance through a single pane of glass.

    Companies around the world use FortiSIEM for the following use cases:

    • Threat management and intelligence that provide situational awareness and anomaly detection
    • Alleviating compliance mandate concerns for PCI, HIPAA and SOX
    • Managing “alert overload”
    • Handling the “too many tools” reporting issue
    • Addressing the MSPs/MSSPs pain of meeting service level agreements

    Omnipeek is a top-rated suite of network analytics software that offers full transparency and trusted forensics for immediate resolution of application and network performance anomalies and security issues. Omnipeek is part of the LiveAction family of quality trusted products. They specialize in packet intelligence with adaptable workflows and complete visibility throughout numerous network segments to facilitate a better understanding of network performance and dependability concerns in real time.

    Omnipeek combines intuitive geolocation, usability, security, and performance to deliver a robust user experience that facilitates immediate discovery and problem-solving of wireless and wired networks.

    Omnipeek is user friendly and offers many different intuitive dashboards, display options, graphs, peer maps, and packets. There are several different capture options, such as TCP dump, multiple adapters, local captures, and Capture Assistant. Omnipeek integrates well with Snort and Suricata intrusion and detection prevention solutions, allowing users to import events easily. The comprehensive analysis tools, such as Expert Flow Analysis, Web Traffic Analysis, Multi-Segment Analysis, and Local File Analysis combine to make Omnipeek a solid, complete solution.

    Omnipeek is effective for small offices to large enterprise data centers.

    Omnipeek Benefits

    • Omnipeek delivers unmatched transparency into applications, networks, and classification of layer 7 workflows.

    • Intuitive GUI presents a clear, intuitive view of packet-based analytics by conversation pairs.

    • Ability to capture and dissect 802.11n and 802.11ac wireless traffic from currently deployed points from third-party vendors such as Aruba, Cisco, and others.

    • Investigate traffic from all remote network segments, such as voice and video over IP, 802.11,1/10/40/100 Gigabit, Ethernet using the LiveCapture features and appliances.

    • Audit voice and video over IP traffic in real time using call back play, thorough signaling and media analyses, and high-level multi-media summary statistics.

    • Improve the average time to resolve failure with super fast intuition and interconnection with packet data, metadata, flows, and files.

    Omnipeek Features

    • WiFi monitoring: Using Omnipeek LiveCapture 1100, users are able to thoroughly monitor wired packet traffic and gather wireless traffic from WLAN controllers. Users can easily monitor, dissect, log, and diagnose multi-Gigabit speed 802.11ac traffic.

    • Improved LiveAction appliance support: LiveAction update appliances and software uses the innovative Del architectures and Intel capabilities to improve network packet capture-to-disk to 20Gbps in a 2RU system, with up to 128 TB of storage.

    • Improved VOIP processes: Now offering updates to performance and in synthesizing DTMF audio tones, Stream Control Transmission Protocol (SCTP), and Asserted Identity (caller ID), makes Omnipeek a very robust, complete solution.

    • Improved financial transaction support: The solution provides updated support for ISO8583 protocol necessary for financial and banking organizations. Users have the ability to dissect critical data more thoroughly than with previous iterations.

    • Expert improvements: Users have access to several more Expert events, enhanced latency calculations, and many other improvements to the Expert views in Omnipeek.

    • 3rd party authentication improvements: Efficient workflow for 3rd party authentication results in enhanced performance for Access Control Lists (ACL).

    Sample Customers
    Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.
    FortiSIEM has hundreds of customers worldwide in markets including managed services, technology, financial services, healthcare, and government. Customers include Aruba Networks, Compushare, Port of San Diego, Cleveland Indians, Infoblox, Healthways, and Referentia.
    Apcon, Aruba Networks, Avaya Inc., Cisco Systems, Ekahau, Gigamon Systems, HP, IBM, IXIA, Meru Networks, Napatech, NextComputing, Procera Networks, Qualcomm Atheros, Ralink Technology Corporation, Telchemy
    Top Industries
    REVIEWERS
    Financial Services Firm22%
    Computer Software Company11%
    Comms Service Provider8%
    Manufacturing Company8%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Financial Services Firm10%
    Government9%
    Manufacturing Company7%
    REVIEWERS
    Comms Service Provider22%
    Financial Services Firm12%
    Computer Software Company10%
    Media Company10%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Comms Service Provider10%
    Government9%
    Financial Services Firm6%
    VISITORS READING REVIEWS
    Computer Software Company16%
    Retailer10%
    Educational Organization8%
    Financial Services Firm8%
    Company Size
    REVIEWERS
    Small Business33%
    Midsize Enterprise21%
    Large Enterprise47%
    VISITORS READING REVIEWS
    Small Business25%
    Midsize Enterprise16%
    Large Enterprise59%
    REVIEWERS
    Small Business41%
    Midsize Enterprise26%
    Large Enterprise33%
    VISITORS READING REVIEWS
    Small Business30%
    Midsize Enterprise17%
    Large Enterprise53%
    VISITORS READING REVIEWS
    Small Business32%
    Midsize Enterprise16%
    Large Enterprise52%
    Buyer's Guide
    Security Information and Event Management (SIEM)
    April 2024
    Download Free Report
    Find out what your peers are saying about Microsoft, Splunk, Wazuh and others in Security Information and Event Management (SIEM). Updated: April 2024.
    DOWNLOAD NOW
    767,995 professionals have used our research since 2012.

    Fortinet FortiSIEM is ranked 8th in Security Information and Event Management (SIEM) with 63 reviews while OmniPeek is ranked 29th in Application Performance Monitoring (APM) and Observability with 6 reviews. Fortinet FortiSIEM is rated 7.6, while OmniPeek is rated 7.8. The top reviewer of Fortinet FortiSIEM writes "It's cheaper than other solutions with the same features but lacks integration with many third-party vendors". On the other hand, the top reviewer of OmniPeek writes "Easy to identify packets, beneficial color assigning, and responsive support". Fortinet FortiSIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM, Wazuh and ThousandEyes, whereas OmniPeek is most compared with LiveAction LiveNX, Colasoft Capsa, LogicMonitor, SolarWinds NPM and NETSCOUT nGeniusONE.

    We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.