17 years of helping Indian businesses
choose better software
AlienVault OSSIM
What Is AlienVault OSSIM?
OSSIM is an open-source security information and event management (SIEM) platform that provides capabilities like asset discovery, vulnerability assessment, intrusion detection, behavioral monitoring, and SIEM event correlation. Developed by AlienVault, OSSIM leverages real-time threat intelligence from the AlienVault Open Threat Exchange (OTX) to help security teams detect and respond to cyber threats across their environments.
Who Uses AlienVault OSSIM?
Small to midsize businesses, MSSPs, IT security teams, researchers
Not sure about AlienVault OSSIM?
Compare with a popular alternative
AlienVault OSSIM
Other great alternatives to AlienVault OSSIM
AlienVault OSSIM Reviews for Indian Users
Alternatives Considered:
An affordable and powerful open-source security solution
Comments: We have a limited security budget so AlienVault OSSIM works for us well.
Pros:
Our business is a medium-sized one with restricted security resources so I like that AlienVault OSSIM is free to download and use.
Cons:
Setup and configuration was a challenge for us because we were not familiar with it so we had to get an expert to help us and there is limited support options for the software.
Alternatives Considered:
lightweight SIEM tool for complete security operations
Comments: OSSIM platform cover-up security operations for SMB customers with all the features available in leading SIEM solutions. It had as many correlation rules that were most sufficient to correlate with leading vendors to make analyst jobs easy. simple deployment and user-friendly architecture make complex things too easy with OSSIM except the fact that build with freeware tools and depends patches on it.
Pros:
OSSIM SIEM platform is very unique compared to other leading SIEM platforms. As part of security operations adding assets, correlation rules on logs, and performing Vulnerability Assessments, etc.. are simple and more effective because of their simple architecture it was easy to work around and create workflows.
Cons:
OSSIM lacks when it comes to normalizing raw logs into SIEM events. It lacks in new emerging device logs as there needs to be a plugin. It is built on most of the freeware tools so it was always a challenge for enterprise customers.
A very good security monitoring tool
Pros:
Easy to use and fast integration with the existing network devices
Cons:
Havent done that deep technical dive into the product, but overall its a very good product
One of the best Open source SIEM I have ever used
Comments: It made my work easy compared to earlier, where I used to put lot of effort and time. It si a user friendyl software. All in all I would recommend alientvault OSSIM to my colleagues and anyone who is looking for a open source security information and event management system.
Pros:
Easy to access is what makes the software worth trying. It can be accessed by web, any devices, workstations and so on. It makes easy to identify issues like network vulnerabilities, attacks and user behaviors.
Cons:
Free version doesn't seems to have all the capabilities and has limitations with the access .
OSSIM -for all
Comments: Overall product is great .
Pros:
The OSSIM is one of the most user friendly platform with great use cases for all organization.
Cons:
Creating some rules may be little difficult and may have some conflict issues.
AlienVault gives me more comfort and ease of use as a SIEM solution
Pros:
Ease to use and integration with multiple vendors is easy
Cons:
Database overloading is much concern, need to have a gui function in much more simple way to identify and resolve this issue
