• Home
  • Security Onion vs. syslog-ng

Security Onion vs syslog-ng comparison

Cancel
You must select at least 2 products to compare!
Security Onion Solutions, LLC Logo
Security Onion
Read 3 Security Onion reviews
3,263 views|2,753 comparisons
66% willing to recommend
One Identity Logo
syslog-ng
Read 5 syslog-ng reviews
4,321 views|3,466 comparisons
100% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Security Onion vs. syslog-ng
April 2024
Executive Summary

We performed a comparison between Security Onion and syslog-ng based on real PeerSpot user reviews.

Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Security Onion vs. syslog-ng Report (Updated: April 2024).
Download the complete report
770,924 professionals have used our research since 2012.
Featured Review
Jörg Kippe
A mature and affordable solution that is easy to install and easy to update
ShabbeerNasrudeen
Consistent in delivering data, stable, and scalable
I normally use custom ports so that I can segregate logs on the Syslog level and avoid polluting Splunk. This allows me to classify and segregate... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Security Onion is the most mature solution in the market.""The most valuable feature of Security Onion for security monitoring is its ability to find infected ports.""We use Security Onion for internal vulnerability assessment."

More Security Onion Pros →

"Syslog-ng has a separate config file in addition to the core configuration.""For us, the most valuable feature is the use of compound search for searching logs at a specific time, by a specific user, or specific behavior.""Syslog-ng has built-in features that we can use to create alerts for a SIEM solution. It isn't a true SIEM solution, but it's sufficient for the time being.""Syslog-ng provides easy access to all my logs. It helps me show managers and other clients precisely where an incident occurred. I also like it because you can integrate syslog-ng with multiple solutions to allow real-time monitoring.""The ability to extract and store the logs is the most valuable feature of syslog-ng."

More syslog-ng Pros →

Cons
"Security Onion's user interface could be improved.""The initial setup of the solution is a little bit difficult.""The product is not easy to learn."

More Security Onion Cons →

"Syslog-ng has built-in features that we can use to create alerts for a SIEM solution. It isn't a true SIEM solution, but it's sufficient for the time being.""It's hard to find people who know how to use syslog-ng. I often find problems with configurations, and solutions aren't integrated correctly with syslog-ng. For example, there might be data with extra decimals, or the collector agents are incorrectly named. It isn't a problem with the solution; it's a lack of professionals.""The filtering has room for improvement.""There is always the potential for additional integration and protocol extensions.""There is room for improvement in terms of observability."

More syslog-ng Cons →

Pricing and Cost Advice
  • "Security Onion is a free solution."
  • "It is an open-source solution."
  • "Security Onion is an open-source solution."

    • More Security Onion Pricing and Cost Advice →

  • "Syslog-ng is a free open-source solution."
  • "Syslog-ng is open-source."

    • More syslog-ng Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Log Management solutions are best for your needs.
    See Recommendations
    770,924 professionals have used our research since 2012.
    Questions from the Community
    What do you like most about Security Onion?
    Top Answer:The most valuable feature of Security Onion for security monitoring is its ability to find infected ports.
    Read all 3 answers   →
    What is your experience regarding pricing and costs for Security Onion?
    Top Answer:Security Onion is an open-source solution. On a scale from one to ten, where ten is expensive and one is cheap, I rate the solution's pricing a six out of ten.
    Read all 3 answers   →
    What needs improvement with Security Onion?
    Top Answer:The initial setup of the solution is a little bit difficult.
    Read all 3 answers   →
    What do you like most about syslog-ng?
    Top Answer:For us, the most valuable feature is the use of compound search for searching logs at a specific time, by a specific user, or specific behavior.
    Read all 3 answers   →
    What is your experience regarding pricing and costs for syslog-ng?
    Top Answer:The pricing is in the middle. I would rate the pricing a six out of ten, with one being expensive and ten being cheap.
    Read all 3 answers   →
    What needs improvement with syslog-ng?
    Top Answer:There is room for improvement in terms of observability. Additionally, a possible new feature could be Kafka integration.
    Read all 3 answers   →
    Ranking
    33rd
    out of 95 in Log Management
    Views
    3,263
    Comparisons
    2,753
    Reviews
    3
    Average Words per Review
    330
    Rating
    7.7
    18th
    out of 95 in Log Management
    Views
    4,321
    Comparisons
    3,466
    Reviews
    5
    Average Words per Review
    378
    Rating
    8.6
    Comparisons
    Wazuh logo
    Wazuh vs. Security Onion
    Compared 65% of the time.
    Elastic Stack logo
    Elastic Stack vs. Security Onion
    Compared 13% of the time.
    TheHive logo
    TheHive vs. Security Onion
    Compared 6% of the time.
    Graylog logo
    Graylog vs. Security Onion
    Compared 3% of the time.
    More Security Onion Competitors   →
    Graylog logo
    Graylog vs. syslog-ng
    Compared 21% of the time.
    Grafana Loki logo
    Grafana Loki vs. syslog-ng
    Compared 13% of the time.
    Logstash logo
    Logstash vs. syslog-ng
    Compared 6% of the time.
    Elastic Security logo
    Elastic Security vs. syslog-ng
    Compared 3% of the time.
    More syslog-ng Competitors   →
    Learn More
    Security Onion Solutions, LLC
    One Identity
    Overview

    Security Onion is a free and open Linux distribution for threat hunting, enterprise security monitoring, and log management. The easy-to-use Setup wizard allows you to build an army of distributed sensors for your enterprise in minutes!
    Security Onion includes a native web interface with built-in tools analysts use to respond to alerts, hunt for evil, catalog evidence into cases, monitor grid performance, and much more. Additionally, third-party tools, such as Elasticsearch, Logstash, Kibana, Suricata, Zeek (formerly known as Bro), Wazuh, Stenographer, CyberChef, NetworkMiner, and many more are included.

    Optimizing SIEM
    syslog-ng is the log management solution that improves the performance of your SIEM solution by reducing the amount and improving the quality of data feeding your SIEM.

    Rapid search and troubleshooting
    With syslog-ng Store Box, you can find the answer. Search billions of logs in seconds using full text queries with Boolean operators to pinpoint critical logs.

    Meeting compliance requirements
    syslog-ng Store Box provides secure, tamper-proof storage and custom reporting to demonstrate compliance.

    Big data ingestion
    syslog-ng can deliver data from a wide variety of sources to Hadoop, Elasticsearch, MongoDB, and Kafka as well as many others.

    Universal log collection and routing
    syslog-ng flexibly routes log data from X sources to Y destinations. Instead of deploying multiple agents on hosts, organizations can unify their log data collection and management.

    Secure data archive
    syslog-ng Store Box provides automated archiving, tamper-proof encrypted storage, granular access controls to protect log data. The largest appliance can store up to 10TB of raw logs.

    Sample Customers
    Information Not Available
    Tecnocom, University of Victoria, University of Exeter, Datapath
    Top Industries
    VISITORS READING REVIEWS
    Computer Software Company13%
    Government11%
    University10%
    Comms Service Provider9%
    VISITORS READING REVIEWS
    Computer Software Company14%
    Government13%
    Financial Services Firm9%
    Manufacturing Company7%
    Company Size
    VISITORS READING REVIEWS
    Small Business29%
    Midsize Enterprise19%
    Large Enterprise52%
    VISITORS READING REVIEWS
    Small Business26%
    Midsize Enterprise15%
    Large Enterprise59%
    Buyer's Guide
    Security Onion vs. syslog-ng
    April 2024
    Free Report: Security Onion vs. syslog-ng
    Find out what your peers are saying about Security Onion vs. syslog-ng and other solutions. Updated: April 2024.
    DOWNLOAD NOW
    770,924 professionals have used our research since 2012.

    Security Onion is ranked 33rd in Log Management with 3 reviews while syslog-ng is ranked 18th in Log Management with 5 reviews. Security Onion is rated 7.6, while syslog-ng is rated 8.6. The top reviewer of Security Onion writes "A mature and affordable solution that is easy to install and easy to update". On the other hand, the top reviewer of syslog-ng writes "It's a user-friendly open-source solution that can replace or augment a commercial product in some cases". Security Onion is most compared with Wazuh, Elastic Stack, TheHive, Splunk Enterprise Security and Graylog, whereas syslog-ng is most compared with SolarWinds Kiwi Syslog Server, Graylog, Grafana Loki, Logstash and Elastic Security. See our Security Onion vs. syslog-ng report.

    See our list of best Log Management vendors.

    We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.