The best part about this solution is that it is open-source and free to use. The performance is good and it is faster than IBM QRadar.
What needs improvement?
The interface could be more user friendly because it is sometimes hard to deal with. The initial setup can be made easier.
What's my experience with pricing, setup cost, and licensing?
There is no charge for using the open-source version.
Which solution did I use previously and why did I switch?
I have used other SIEM solutions but this one is open-source, unlike some of the others. It is also faster than IBM QRadar.
What other advice do I have?
This solution is complex and cannot be used by just anybody. That said, for people who don't want to buy a product or who want to do everything themselves, I would recommend it. The real problem is that its complexity means that it takes a… more»