We need Snare to ingest the data into our SIEM solution. We do the mappings, and then we configure the rules on top of the data we receive from Snare.
The easiest route - we'll conduct a 15 minute phone interview and write up the review for you.
Use our online form to submit your review. It's quick and you can post anonymously.
We need Snare to ingest the data into our SIEM solution. We do the mappings, and then we configure the rules on top of the data we receive from Snare.
The best thing about Snare is its format and consistency. There are different standards of logs, but Snare's format is consistent from the beginning and doesn't change.
Users will initially find it difficult to identify the event types and installation in Snare.
I have been using Snare for three years.
The solution's basic functions work smoothly, but some complex functions take some time to load on GUI.
The solution has good scalability. I work with more than 600 customers, and most of them are using the Snare solution.
The solution's initial setup is very easy and just takes some clicks.
Snare is a cheap solution because a lot of customers are using it.
We are an MSSP, and we have different customers. I'm not working on Snare directly, but I'm working on the actual data. We collect the data and create the rules on top of the data and Snare events. I am happy with the solution's GUI. I would recommend Snare to other users because it is better for sending data, installing, and forwarding the data.
Users will initially find it difficult to identify the event types and installation, but it gets easier as you use it. Snare is a well-known format, and most SIEM solutions are utilizing it. So, it's very easy to configure on their end as well. Snare sends data into a specific format, including security data and non-security data.
Overall, I rate the solution an eight out of ten.
We use Snare for picking up Windows logs, and we used to use it for SQL as well. We had used it for Linux once or twice. We're mainly using it for Windows and Windows flat files.
The most valuable feature of Snare is flexibility or the ability to filter all things you don't want and don't have security value.
Snare should modernize its GUI a little bit. The solution's GPO support is kludgy and could be more straightforward.
I have been using Snare for seven to eight years.
Years back, when they did upgrades, the solution failed to remove the previous one and install the new one completely. However, the newer versions have not had that problem.
I rate Snare a nine out of ten for stability.
The solution is deployed on 2,000 machines, and four users use it in our organization.
I rate Snare ten out of ten for scalability.
Our experience with the solution's technical support was good. I rate Snare's technical support a four or five out of ten.
Neutral
I previously used IBM AL. I switched to Snare because IBM AL was being deprecated.
Snare’s initial setup is super easy. I rate Snare an eight out of ten for the ease of its initial setup.
We implemented Snare through an in-house team. The solution’s deployment takes a couple of weeks.
Snare is competing with solutions like Splunk, LogRhythm, QRadar, and WinCollect, and those are free. Snare has a pretty reasonable cost. Years back, the solution cost $10 to $15 a node. The SQL agent is not cheap.
On a scale from one to ten, where one is cheap, and ten is expensive, I rate Snare's pricing a four out of ten.
Snare is a great product that is easy to roll out and manage.
Overall, I rate Snare an eight out of ten.