We performed a comparison between ArcSight Logger and Security Onion based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It's a brilliant log collection tool, and it can handle hundreds of thousands of servers in a single shot to ingest the data."
"I am impressed with the product's ability to pick up logs. It also has UEBA which has reduced the time to take charge of the events."
"The most valuable feature is the level of detail that you can see about certain events, even when they do not come up in the console."
"We have a trigger. So, Logger automatically blocks these IP addresses. We could have Logger put them on a blacklist."
"We check a lot of logs in ArcSight Logger because we're running a massive database platform."
"The solution provides information about the risk factors."
"The ESM use cases are the most valuable. It enables us to use the big data collection inside our company. We are able to create use cases for whatever it suits and I find that the most interesting part of any SIEM solution."
"ArcSight provides the basic information that we want."
"Security Onion is the most mature solution in the market."
"We use Security Onion for internal vulnerability assessment."
"The most valuable feature of Security Onion for security monitoring is its ability to find infected ports."
"The product's connectors should work better and the user manuals need an update."
"The solution should make it possible to integrate network analysis features."
"You have limited reporting capabilities and I wouldn't choose ArcSight Logger for this purpose."
"I had some latency issues for two months. I had to increase our storage capacity significantly to reduce the latency."
"I would like to see better scheduling in the next release of this solution."
"The speed of Logger indexing and searching for certain bugs for some queries that we provide could be improved. It can handle a huge number of logs but it can be improved."
"We have had problems with archiving."
"The solution must provide readymade connectors for different applications."
"The product is not easy to learn."
"The initial setup of the solution is a little bit difficult."
"Security Onion's user interface could be improved."
ArcSight Logger is ranked 28th in Log Management with 31 reviews while Security Onion is ranked 33rd in Log Management with 3 reviews. ArcSight Logger is rated 7.8, while Security Onion is rated 7.6. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of Security Onion writes "A mature and affordable solution that is easy to install and easy to update". ArcSight Logger is most compared with Splunk Enterprise Security, IBM Security QRadar, Elastic Security, Wazuh and LogRhythm SIEM, whereas Security Onion is most compared with Wazuh, Elastic Stack, TheHive, Splunk Enterprise Security and Graylog. See our ArcSight Logger vs. Security Onion report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.