No more typing reviews! Try our Samantha, our new voice AI agent.

Cribl vs Seceon Open Threat Management Platform comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cribl
Ranking in Security Information and Event Management (SIEM)
6th
Average Rating
8.6
Reviews Sentiment
6.8
Number of Reviews
64
Ranking in other categories
Application Performance Monitoring (APM) and Observability (6th), Log Management (3rd), Observability Pipeline Software (1st)
Seceon Open Threat Manageme...
Ranking in Security Information and Event Management (SIEM)
45th
Average Rating
7.8
Reviews Sentiment
7.5
Number of Reviews
13
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Security Information and Event Management (SIEM) category, the mindshare of Cribl is 1.3%, up from 0.9% compared to the previous year. The mindshare of Seceon Open Threat Management Platform is 0.8%, up from 0.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
Cribl1.3%
Seceon Open Threat Management Platform0.8%
Other97.9%
Security Information and Event Management (SIEM)
 

Featured Reviews

Aman Verma - PeerSpot reviewer
Senior Software Engineer at a retailer with 1,001-5,000 employees
Has helped reduce daily log volume significantly and streamline data routing across multiple destinations
Regarding complexity, as I mentioned before, Cribl is very simple to use. When I started 2.5 years ago, it was very easy to learn. I learned Cribl within a week, and even though I was a fresher at the time, it was easy to understand and not complex enough that someone would need to spend money on labs. It's not that complex to learn. Regarding cost efficiency, it's very good because nowadays the SIEM tools we use are too expensive on license, and SIEM tools base their license on how many logs get ingested. The unwanted logs, particularly firewall logs, represent a significant portion of unnecessary ingestion. Cribl saves our license by filtering out half of the firewall logs that are unwanted. Our main purpose for using Cribl is to save our license and save money. Currently, everyone is moving toward AI agents. We currently use regex, and AI agents could help us create those regex patterns to drop events or add raw data to events. Currently, we sit down, review the logs, and create regex patterns manually, which can be time-consuming. An AI agent could reduce this time. I read some articles indicating that Cribl Cloud has started using AI and considering MCPs and model context, but I'm not certain how far along they are. If Cribl asked me what they could improve, that would be my suggestion. The support is very good, and I had a few issues with Cribl where I raised support cases and received good responses, which is better than the quick response I didn't get from other SIEM tools and vendor tools I use. Compared to other SIEM tools, Cribl is cheaper than Splunk and DataDogs. However, it's still a bit expensive from my point of view, though I won't call it expensive. Overall, I think 99% of companies use Cribl before their SIEM tools, and compared to SIEM tools, Cribl is cheaper. Companies can use any SIEM tool such as Google, Splunk, or Cisco, and Cribl is cheaper than those SIEM tools. They might have a slight chance to reduce costs further, but I'm not the correct person to evaluate that since I'm more focused on the operational side. Regarding training, it was quite easy to grasp. It took me almost a week to understand the basic functionalities and what Cribl does. Getting more expertise took additional time, but basic functionalities and understanding what Cribl does took around four to five days. One point I want to mention is that Cribl could improve their labs or training materials in their Cribl Cloud or whatever portal they have.
Vaibhav Patkar - PeerSpot reviewer
CISO at Orient Technologies Pvt. Ltd.
Offers remediation capabilities and provides a bird's-eye view of events happening in your environment, summarizing critical events that need attention
One drawback is that it becomes so easy to use that users may lose the habit of manual checks and balances. As a security person, you should always worry about potential threats. If you have a very useful and easy tool, you might lose the ability to think differently and critically. For example, in a group of ten people, if nine think the same way and one thinks differently, you should consider the tenth person's perspective because they might have valuable insights. Having a great product is not always beneficial because you may become too dependent on it, which can be problematic in the long term. If you lose your critical thinking skills, you might not recognize when something abnormal is happening. While the system will notice, systems can have their own challenges and issues. I'm not criticizing the product itself but emphasizing the importance of not being overly dependent on machines. Similar to what we see with Tesla cars, no matter how advanced, there is always a chance things may not work as expected. So, the users need to prepare for that eventuality. Seceon Open Threat Management Platform has some add-ons that they sell as part of the whole suite, but not individually. If they sold them individually, they could potentially get more business.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The support team was very helpful and managed to get everything production-ready."
"Enhancing those events to optimize, to add new fields or to remove the extra fields that are of no use helps us in log reduction by dumping the raw logs and only ingesting the interested fields, which helps us in 50 to 60% volume reduction."
"Cribl feels a lot easier to use and more intuitive, gives you more capability, and you don't have to work as hard to set things up."
"What I appreciate the most about Cribl is the free training, the free access to all the training, and how easy it is to learn it."
"Cribl brings significant benefits like cost-effectiveness, reducing CM costs, and making our data vendor-agnostic since data flows through Cribl."
"I'd rate the solution ten out of ten."
"Cribl is one of the best data pipelining platforms, and with all the features that have been upgraded over the past three years, it has been seamless."
"Cribl has been instrumental in containing our data costs, especially as we use leading log aggregation and SIEM tools known for their heavy licensing costs by ingest."
"If we compare the solution with other SIEM solutions that are also turning to artificial intelligence, this will be the number one choice."
"The solution is very cost-effective compared to Splunk and LogRhythm."
"The pricing of Seceon Open Threat Management Platform is very reasonable."
"The algorithm used in Seceon OTM is clear and logical, categorizing events as needed. This helps us identify and respond to threats effectively."
"It is effective because it has threat intelligence from across the world and constantly checks and updates for new threats."
"Seceon Open Threat Management Platform provides a more straightforward implementation that is better than Splunk and offers an AI-based platform with machine learning and deep learning capabilities."
"The main thing is the value proposition. It is one of the most sophisticated yet affordable solutions that I've come across. It is also one of the easiest-to-manage yet comprehensive solutions for a SOC analyst. Its customizations are really good, and it has a lot of integrations. It is multi-tenant and very fast to onboard. Its stability is 100%. We've never had an outage with it. It doesn't require extensive hardware resources. Its level of support is also very good. They have a very responsive technical team."
"The most valuable feature of this solution is its artificial intelligence."
 

Cons

"The reason I would not give it a ten is mainly due to the learning curve and initial complexity, especially for new users."
"There are opportunities for AI to be incorporated more tightly into Cribl to help build out those pipelines and apply some more complex logic to those transformations could be useful."
"I do not think that if the pricing is on the higher side, it could be suitable for all types of users, such as small or medium ones."
"What I dislike about Cribl is that it represents my direct pain point."
"If I say one negative thing, the setup is a little bit trickier because observability setups are generally trickier."
"Cribl should consider adding more features that are applicable to smaller firms, allowing broader access to their data migration through Cribl."
"Cribl could have developed some version that can give backward compatibility."
"The user interface of Cribl Search can be more simplified because for non-technical users, it is quite difficult to grasp."
"It needs more compatibility for co-managed solutions."
"For small to medium-sized customers, Seceon Open Threat Management Platform is good. However, for large enterprises, it is not as effective."
"The product could be improved by including sandboxing capabilities in the next release."
"We are at the client’s end, offering services. They don’t know about security rules and benchmarks. We are working on the discovery and remediation but we don’t really have the intelligence that was available while working with other tools. Human working is also very essential for the solution. The automatic session is impossible to play since it needs to touch Redfin for further analysis. No one has breached our clients."
"The dashboard has always been an issue."
"It would be ideal with the processing was more manageable."
"The management console could use some enhancements."
"For future releases, integrating incident response tools and improving communication on incident reporting could be beneficial."
 

Pricing and Cost Advice

"I would not say it is a cheaply priced tool as it has been doing wonders in the market. The tool has been budget-friendly for organizations."
"The product pricing is reasonable compared to other solutions."
"It has a per-asset model instead of an ingestion-based model, which gives predictable pricing. In terms of price, it is in the middle to lower range of SIEMs that it competes against. It is the most affordable solution that we have implemented so far. It was much more affordable than anything else I've implemented."
"The solution is cheap and very competitive. It offers good tuning in terms of the pricing. Other solutions like Palo Alto and IBM are more expensive."
"We used the solution's trial version for two months and later purchased it."
"The pricing is very competitive. It's not expensive."
"Seceon Open Threat Management Platform is cost-effective because it's a comprehensive platform that offers high availability."
"I find Seceon OTM's pricing to be reasonable, not too high or low, just okay for the market standards. I can't disclose specific figures, we pay on a quarterly basis under a service model. I would rate it eight out of ten. As a customer, I always hope for better pricing options."
"The price is quite reasonable."
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
19%
Manufacturing Company
12%
Healthcare Company
6%
Government
5%
Manufacturing Company
12%
Computer Software Company
10%
Financial Services Firm
9%
Outsourcing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise8
Large Enterprise34
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise5
Large Enterprise1
 

Questions from the Community

What is your experience regarding pricing and costs for Cribl?
I find the pricing of Cribl to be cost-efficient because it has helped us save costs for data storage by removing unwanted logs.
What needs improvement with Cribl?
One improvement Cribl could work on is Cribl's Git integration. If I want to integrate my private repository, I can do this, but there is a specific format required in Git. If I commit something to...
What is your primary use case for Cribl?
We started using Cribl one year ago for data optimization. Currently, we are using Cribl for its one terabyte ingestion that is free, which is one significant advantage. We are using it for that pu...
What is your experience regarding pricing and costs for Seceon Open Threat Management Platform?
The pricing of Seceon Open Threat Management Platform is very reasonable.
What needs improvement with Seceon Open Threat Management Platform?
There are areas for improvement in the customization options. Every ( /products/every-reviews ) quarter, they are developing the platform with new updates based on feedback provided.
What is your primary use case for Seceon Open Threat Management Platform?
We are a Managed Security Service Provider (MSSP ( /categories/managed-security-services-providers-mssp )), and we provide services to our customers.
 

Also Known As

No data available
Seceon OTM, Seceon aiSIEM, aiSIEM, Seceon Open Threat Management
 

Overview

 

Sample Customers

Information Not Available
Caduceus, SUNY
Find out what your peers are saying about Cribl vs. Seceon Open Threat Management Platform and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.