Software Alternatives & Reviews
Register | Login

Suricata VS AlienVault OSSIM

Compare Suricata VS AlienVault OSSIM and see what are their differences

Frontegg
Elegant user management, tailor-made for B2B SaaS featured
Contents:
  1. » Base Details
  2. » Videos
  3. » Reviews
  4. » Alternatives

Suricata logo Suricata

Suricata is a high performance Network IDS, IPS and Network Security Monitoring engine.

AlienVault OSSIM logo AlienVault OSSIM

Alienvault integrates and correlates many popular network and security monitoring tools in one...
  • Suricata Landing page
    Landing page //
    2022-11-06
  • AlienVault OSSIM Landing page
    Landing page //
    2022-11-03

Suricata videos

+ Add

Suricata Network IDS/IPS Installation, Setup, and How To Tune The Rules & Alerts on pfSense 2020

More videos:

  • Review - pfsense With Suricata Intrusion Detection System: How & When it works and What It Misses
  • Review - Test Case: Suricata VS Snort IDS

AlienVault OSSIM videos

+ Add

AlienVault® USM vs. OSSIM™

Category Popularity

0-100% (relative to Suricata and AlienVault OSSIM)

Suricata

AlienVault OSSIM

Security & Privacy
73 73%
Security & Privacy
27% 27
Monitoring Tools
44 44%
Monitoring Tools
56% 56
Cyber Security
100 100%
Cyber Security
0% 0
Log Management
0 0%
Log Management
100% 100

User comments

Share your experience with using Suricata and AlienVault OSSIM. For example, how are they different and which one is better?
Log in or Post with

Reviews

These are some of the external sources and on-site user reviews we've used to compare Suricata and AlienVault OSSIM

Suricata Reviews

The Top 14 Free and Open Source SIEM Tools For 2022
Prelude is a universal SIEM system and it collects, normalizes, sorts, aggregates, correlates and reports all security-related events independent of the product brand or licence giving rise to such events. Third-party agents to this tool include Auditd, OSSEC, Suricata, Kismet and ClamAV.
Source: logit.io

AlienVault OSSIM Reviews

7 Best Free Open Source SIEM Tools
AlienVault OSSIM This is one of the oldest SIEM systems around but it is very well supported by AT&T, so it is still being improved on solid, reliable code that has been extensively tested in the field. Runs as a virtual appliance.
Source: www.comparitech.com
8 Best Open Source SIEM Tools
OSSIM is one of the most popular open-source SIEM systems that combines other open-source tools that aid security, threat detection, and prevention. It includes key SIEM components such as event collection, processing, and event correlation. Some of OSSIM’s components include Nagios Core for monitoring and alerting, Snort for network intrusion detection and prevention, Munin...
Source: www.logiq.ai
Best Log Management Tools: Useful Tools for Log Management, Monitoring, Analytics, and More
AlientVault USM (Unified Security Management) reaches far beyond the capabilities of SIEM solutions using a powerful AIO (All in One) security precautions and comprehensive threat analysis algorithm to identify threats in your physical or cloud locations. Resource-dependent IT teams that rely on SIEM are at risk of delaying their ability to detect and analyze threats as they...
Source: stackify.com

Social recommendations and mentions

Suricata might be a bit more popular than AlienVault OSSIM. We know about 12 links to it since March 2021 and only 9 links to AlienVault OSSIM. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.

Suricata mentions (12)

  • Who does check linux distros of malware - open source
    Linux has (free) tools to improve security and detect/remove malware: Lynis,Chkrootkit,Rkhunter,ClamAV,Vuls,LMD,radare2,Yara,ntopng,maltrail,Snort,Suricata... Source: 5 months ago
  • Risks of hosting a website out of my house
    Monitoring & Active Measures - Exporting firewall events to an external time-series database like I describe above is good to see who is touching your firewall or accessing your web site. Using an Intrusion Detection System / Intrusion Prevention System (IDS/IPS) such as open-source Suricata, which is a free package on pfSense, and deploying file system integrity monitoring, such as the open-source Wazuh on the... Source: 6 months ago
  • Server Hardening
    Active Measures - Includes (IDS/IPS) such as open-source Suricata or Snort on pfSense, and File Integrity Monitoring (FIM), such as the commercial Tripwire and dated, open-source Tripwire, or the open-source Wazuh installed on servers. These can be combined into a Security Information and Event Management (SIEM) system like the open-source solution, Security Onion. Wazuh itself has evolved into a SIEM. Source: over 1 year ago
  • Help with server build
    Active measures may include an intrusion detection system / intrusion prevention systems (IDS/IPS) such as open-source Suricata on the firewall, and installing file system integrity monitoring, such as the open-source Wazuh on the exposed server. These are combined in one open-source solution, Security Onion. Source: over 1 year ago
  • Would love a guide to Unifi Threat Management similar to your "Advanced Wifi Settings" Guide
    Thanks! Was there something in particular you were wondering about? The built-in IDS/IPS is just Suricata under the hood - https://suricata.io/. Source: over 1 year ago
View more

AlienVault OSSIM mentions (9)

  • SIEM for your own internal network
    You can look at a table with the differences here: Https://cybersecurity.att.com/products/ossim. Source: 11 months ago
  • What do you guys use for networking monitoring
    Another is AT&T's AlienVault OSSIM software. If you can put it on its own hardware, it runs FAR better than it did on a VM in my experience. I've seen this in action and it's a huge monster to get into - I barely scratched the surface and thought I was hitting walls, so it might not be the most intuitive - but I'd recommend watching a few youtube videos to show off what it can do I suppose. Mine set off my... Source: about 1 year ago
  • SIEM solution
    There's also https://cybersecurity.att.com/products/ossim by AlienVault (now AT&T). Source: over 1 year ago
  • Does the BGW320 perform automated SSH vulnerability tests on clients?
    I enabled my ATT security this morning and had a download going that used about 70% of my capacity. I also have an Ubiquiti setup, I don’t believe ATT’s security is as harsh on cpu load that Ubiquiti is. Several years ago, ATT bought Alien Vault which primarily monitors log files and conducts routine vulnerability scans. Since it was purchased, they renamed us as ATT Cybersecurity.... Source: over 2 years ago
  • Top 20 Open-source tools for every Blue Teamer
    As a SIEM system, OSSIM is intended to give security analysts and administrators a more complete view of all the security-related aspects of their system, by combining log management which can be extended with plugins and asset management and discovery with information from dedicated information security controls and detection systems. This information is then correlated together to create contexts to the... Source: over 2 years ago
View more

What are some alternatives?

When comparing Suricata and AlienVault OSSIM, you can also consider the following products

snort - Snort is a free and open source network intrusion prevention system.

Graylog - Graylog is an open source log management platform for collecting, indexing, and analyzing both structured and unstructured data.

Zeek - Buy and sell gift vouchers

Logz.io - Logz.io provides log analysis software with alerts, role-based access, unlimited scalability and free ELK apps. Index, search & visualize your log data!

Wazuh - Open Source Host and Endpoint Security

Sumo Logic - Sumo Logic is a secure, purpose-built cloud-based machine data analytics service that leverages big data for real-time IT insights

Loading...