Acunetix vs AlienVault OSSIM

Likelihood to Recommend

It is suited well for ad-hoc and scheduled application vulnerability scans. You must review the results to manually filter out false-positives. You must always keep in mind that this is only a vulnerability scan. It can only find a certain class of vulnerabilities, and it can only do that so well. You should definitely not rely on this tool alone for identifying problems. That being said, I have used it along with every other major commercial vulnerability scanner and find it to the best overall ROI compared to more expensive commercial scanners that don't necessarily give you a better user experience or better vulnerability results. I rarely need support from the vendor, but when I do, they have been responsive and able to solve the issue quickly.

Read full review

Aaron Bryson

Director - Red Team (Application, Mobile, Cloud, IoT security, etc.)

Cylance, Inc.Computer & Network Security, 1001-5000 employees

View all 1 answers on this topic

If this is your first experience with a SIEM, this one can get you started. Take the time to learn the ins and outs of the product and you'll most likely be satisfied with it if your company is an SMB. If you need compliance reports, OSSIM is too small for you, you'll need to go with USM or USM Anywhere.

Read full review

Ivan Montilla Miralles

Technical Services

GB Advisors, Inc.Computer & Network Security, 11-50 employees

View all 7 answers on this topic

Feature Rating Comparison

Acunetix

AlienVault OSSIM

Centralized event and log data collection

Correlation

Event and log normalization

Deployment flexibility

Integration with Identity and Access Management Tools

Custom dashboards and views

Host and network-based intrusion detection

Pros

Fast.
Easy-to-use.
Great customer support.
Reporting features.
Supports importing state files from other popular application testing tools.
Has other features built-in beyond just scanning for vulnerabilities.

Read full review

Aaron Bryson

Director - Red Team (Application, Mobile, Cloud, IoT security, etc.)

Cylance, Inc.Computer & Network Security, 1001-5000 employees

View all 1 answers on this topic

Asset discovery. Once installed in a centric, network-accessible server, OSSIM can poll all your endpoints with common protocols (SSH, SNMP, WMI) to detect and discover site-wide assets to monitor. You only need to group them by your own criteria once added to the product.
SIEM Event Correlation. You can define quite complex correlation rules to detect possible suspicious or malicious actions or attempts in your network, in order to categorize them as real threats or as false positives, thus streamlining your risk assessment and management.
Ease of installation. The entire AlienVault OSSIM is self-contained in an ISO file, which can be burned into a DVD or just mounted in your server of choice (physical or virtual) for deployment. The installation process is automated and quote verbosed, with options for static IP, email messaging and others.
Ease of access. Being AlienVault OSSIM a self-contained appliance, it can be accessed via web by any device that supports a web browser, being that desktops, workstation, mobile devices, etc. The OSSIM dashboard and other features are automatically rearranged to adapt to the particular device being in use.

Read full review

Jose Quintero

Support Services Manager

GB Advisors, Inc.Computer Software, 51-200 employees

View all 7 answers on this topic

Cons

Does not support multiple endpoints well (e.g. apps and services that do not reside at the same URL).
Has authentication problems with modern enterprise apps which involve a lot of redirects to unrelated endpoints, federated IDs, SSO, etc. This is related to the first point.
The vulnerability detection capability is not as robust as Burp Suite Pro + extensions, Metasploit + auxiliary modules, Nmap + scripts, etc.

Read full review

Aaron Bryson

Director - Red Team (Application, Mobile, Cloud, IoT security, etc.)

Cylance, Inc.Computer & Network Security, 1001-5000 employees

View all 1 answers on this topic

The reports are clunky and a bit tedious to parse through.
Sometimes there's so much noise it's hard to tell what a true positive is. There are lots of false ones that trigger alerts but are normal behavior in many environments.

Read full review

John Keenan

Director of Information Security

Memorial Hospital of GulfportMedical Practice, 5001-10,000 employees

View all 7 answers on this topic

Usability

No score

No answers yet

No answers on this topic

AlienVault OSSIM 8.0

Based on 1 answer

AlienVault OSSIM is far easy to use and manage - provided you know what you're doing. As any SIEM application, there is some background knowledge required in order to take advantage of the product's functionalities, such as the log correlation and analysis. Other than that, the application is quite usable and robust.

Read full review

Jose Quintero

Support Services Manager

GB Advisors, Inc.Computer Software, 51-200 employees

View all 1 answers on this topic

Support Rating

No score

No answers yet

No answers on this topic

AlienVault OSSIM 8.6

Based on 3 answers

AlienVault OSSIM support has been very good. I have not had an issue that they were not able to quickly identify and provide a fix for. They are very quick to respond to open cases and are very knowledgeable in the product, which makes troubleshooting issues fast and solutions are provided quickly.

Read full review

Laurie Keith

Help Desk Manager

Black Hills Federal Credit UnionBanking, 201-500 employees

View all 3 answers on this topic

Alternatives Considered

Every year, we re-evaluate the tools we are using and licensing. We balance the ever-changing vendor licensing-models, costs, tool features/usability, etc. For the last few years, this has been the best overall commercial tool for our specific use case. However, this is only one of many tools that we use and need.

Read full review

Aaron Bryson

Director - Red Team (Application, Mobile, Cloud, IoT security, etc.)

Cylance, Inc.Computer & Network Security, 1001-5000 employees

View all 1 answers on this topic

Best bang for the buck. Darktrace did not perform even close to AlienVault. I ran them concurrently. AlienVault consistently found issues that Darktrace didn't pick up, and the Darktrace incidents were false positives. At one point, Darktrace stated I had 2,000 servers and I have 112.FortiSIEM is an awesome package but it's more then I need (or can afford). I would need to add staff, for at least the first year or so, just to get it setup and configured correctly.

Read full review

Matthew Frederickson

Director of Information Technology

Council Rock School DistrictEducation Management, 1001-5000 employees

View all 7 answers on this topic

Return on Investment

Saved money compared to other commercial scanners, especially over the long run.
Scan speed seems to be pretty good compared to some of the bulkier commercial products out there. However, that largely has to do with proper configuration.
A downside is that is requires a bit of extra work just to get it set up to scan APIs, web services, etc.

Read full review

Aaron Bryson

Director - Red Team (Application, Mobile, Cloud, IoT security, etc.)

Cylance, Inc.Computer & Network Security, 1001-5000 employees

View all 1 answers on this topic

The only investment here is setting it up and I think seeing it's performance it's a fantastic tool and has a great positive ROI!

Read full review

Verified User

Engineer in Information Technology

Non-Profit Organization Management Company, 501-1000 employees

View all 7 answers on this topic

Pricing Details

General

Free Trial

Yes

Free/Freemium Version

—

Premium Consulting/Integration Services

—

Entry-level set up fee?

No

General

Free Trial

—

Free/Freemium Version

—

Premium Consulting/Integration Services

—

Entry-level set up fee?

No

Rating Summary

Acunetix

AlienVault OSSIM

Acunetix

AlienVault OSSIM

Acunetix

AlienVault OSSIM

Acunetix vs AlienVault OSSIM

Acunetix

AlienVault OSSIM

Feature Rating Comparison

Security Information and Event Management (SIEM)

Centralized event and log data collection

Correlation

Event and log normalization

Deployment flexibility

Integration with Identity and Access Management Tools

Custom dashboards and views

Host and network-based intrusion detection

Pros

Cons

Usability

Support Rating

Alternatives Considered

Return on Investment

Screenshots

Pricing Details

General

Free Trial

Free/Freemium Version

Premium Consulting/Integration Services

Entry-level set up fee?

General

Free Trial

Free/Freemium Version

Premium Consulting/Integration Services

Entry-level set up fee?

Rating Summary

Likelihood to Recommend

Usability

Support Rating

Add comparison