ELK Logstash Competitors and Alternatives

Read reviews of ELK Logstash competitors and alternatives
AlienVault
Real User
Technical Writer at a tech services company with 11-50 employees
Jul 04 2017

What do you think of AlienVault?

Valuable Features I have worked with a Managed Security Team that uses AlienVault USM for the past two years. The user interface is as good as it gets. The setup is greatly simplified with intensive documentation and a great tech support. • Improvements to My Organization The USM has been instrumental in the discovery and tracking down of emerging threats which has helped us instantly evaluate and resolve security incidents for our clients. • Room for Improvement I would say the menus could use some tweaking and custom rule creation could be made simpler. • Use of Solution 2 years. • Deployment Issues No. I did not face any deployment issues. • Stability Issues No. I did not face any stability issues. • Scalability Issues No. I did not face any...
Consultant
Security Consultant at a tech services company with 11-50 employees
Mar 30 2017

What is most valuable?

The most valuable features are: * Auto update: QRadar will download new logs from the database on the supported security device, so that it will automatically normalize the new log format and you will not need to rewrite all your... more»

How has it helped my organization?

You will learn something that you don't know on the user/machine behaviour.

What needs improvement?

The dashboards and reports may need to improve. We need to export the CSV results to create a report by Excel.
LogRhythm
Real User
Junior Information Security Analyst at a financial services firm with 51-200 employees
Nov 07 2017

What is most valuable?

The fact that I can quickly determine if there is a threat actor from internal to external. That's our primary goal. We have a lot of traders and a lot of developers, internal, so that's generally where our presence is. We don't have a whole... more»

How has it helped my organization?

We've got two facilities. We pretty much have one setup, the DX. We don't have any failover, just because it doesn't work for us. Our key challenge is weeding out who is actually trying to be a threat. Now, LogRhythm certainly helps us, but... more»

What needs improvement?

There is a Group-By field that they're breaking out, which stopped me from being able to have certain events. They're breaking it out in 7.3, so they've already got it. That was the one thing that bothered me, so I'm happy about that.

Sign Up with Email