We performed a comparison between IBM Security QRadar and syslog-ng based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."IBM QRadar User Behavior Analytics has easy architecture, has a good portfolio and integration."
"We've found the solution to be scalable."
"It is a pretty solid product for the type that it is representing. It is a CM solution as compared to Splunk or ArcSight from HP. It is also user friendly. It comes with some internal AI as well, in which it automatically maps multiple lots from unrelated devices and makes a smart decision to link them back and create an offense based on that. It is a smart tool."
"It can analyze event logs, event security, and give a good consult."
"This is a distributed application, meaning that a customer can stack small and then scale it so that they can expand pretty effectively. You can use, basically, the same product in an SMB or a large enterprise."
"It has very rich functionality."
"Blocks of predefined conditions can be used to configure detection rules without having to write complicated script."
"Flexible and valuable product that is modular, so you can easily set up a roadmap for your clients."
"Syslog-ng has a separate config file in addition to the core configuration."
"For us, the most valuable feature is the use of compound search for searching logs at a specific time, by a specific user, or specific behavior."
"Syslog-ng provides easy access to all my logs. It helps me show managers and other clients precisely where an incident occurred. I also like it because you can integrate syslog-ng with multiple solutions to allow real-time monitoring."
"Syslog-ng has built-in features that we can use to create alerts for a SIEM solution. It isn't a true SIEM solution, but it's sufficient for the time being."
"The ability to extract and store the logs is the most valuable feature of syslog-ng."
"The interface is very old. IBM should remake it into a more modern interface."
"Dashboards and reports could provide better visualization of SIEM activity."
"The technical support is poor. Mostly because when I open a PMR for IBM, I am stuck with Level 1 staff. As an engineer, nothing that I am bringing them does not require Level 2 or Level 3 support."
"I need a solution which will send alerts in the event of any behavior."
"The pricing of the solution is a bit high. If they could lower it, that would be ideal."
"The dashboard is pathetic and it takes a long time to perform a search."
"QRadar needs to be improved on the storage side, particularly when the disc exceeded the maximum threshold."
"Whenever we are upgrading or installing any type of patch, at that time we have some delays."
"There is room for improvement in terms of observability."
"The filtering has room for improvement."
"Syslog-ng has built-in features that we can use to create alerts for a SIEM solution. It isn't a true SIEM solution, but it's sufficient for the time being."
"There is always the potential for additional integration and protocol extensions."
"It's hard to find people who know how to use syslog-ng. I often find problems with configurations, and solutions aren't integrated correctly with syslog-ng. For example, there might be data with extra decimals, or the collector agents are incorrectly named. It isn't a problem with the solution; it's a lack of professionals."
IBM Security QRadar is ranked 6th in Log Management with 198 reviews while syslog-ng is ranked 17th in Log Management with 5 reviews. IBM Security QRadar is rated 8.0, while syslog-ng is rated 8.6. The top reviewer of IBM Security QRadar writes "A highly stable and scalable solution that provides good technical support". On the other hand, the top reviewer of syslog-ng writes "It's a user-friendly open-source solution that can replace or augment a commercial product in some cases". IBM Security QRadar is most compared with Microsoft Sentinel, Splunk Enterprise Security, Wazuh, LogRhythm SIEM and Elastic Security, whereas syslog-ng is most compared with SolarWinds Kiwi Syslog Server, Graylog, Grafana Loki, Logstash and Nagios Log Server. See our IBM Security QRadar vs. syslog-ng report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.