AlienVault OSSIM was an open source Security Information and Event Management (SIEM). AlienVault was acquired by AT&T Cybersecurity, now LevelBlue, and OSSIM is no longer available for sale.
N/A
osTicket
Score 8.5 out of 10
N/A
osTicket is an open-source help desk / ticketing platform that can create inquiries online, through email, and through phone calls.
$12
per month
Pricing
AlienVault OSSIM (discontinued)
osTicket
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
AlienVault OSSIM (discontinued)
osTicket
Free Trial
No
Yes
Free/Freemium Version
No
Yes
Premium Consulting/Integration Services
No
No
Entry-level Setup Fee
No setup fee
No setup fee
Additional Details
—
—
More Pricing Information
Community Pulse
AlienVault OSSIM (discontinued)
osTicket
Features
AlienVault OSSIM (discontinued)
osTicket
Security Information and Event Management (SIEM)
Comparison of Security Information and Event Management (SIEM) features of Product A and Product B
AlienVault OSSIM (discontinued)
7.5
10 Ratings
5% below category average
osTicket
-
Ratings
Centralized event and log data collection
9.49 Ratings
00 Ratings
Correlation
6.910 Ratings
00 Ratings
Event and log normalization/management
8.110 Ratings
00 Ratings
Deployment flexibility
8.210 Ratings
00 Ratings
Integration with Identity and Access Management Tools
9.36 Ratings
00 Ratings
Custom dashboards and workspaces
9.49 Ratings
00 Ratings
Host and network-based intrusion detection
9.29 Ratings
00 Ratings
Data integration/API management
5.32 Ratings
00 Ratings
Behavioral analytics and baselining
5.42 Ratings
00 Ratings
Rules-based and algorithmic detection thresholds
5.33 Ratings
00 Ratings
Response orchestration and automation
6.32 Ratings
00 Ratings
Reporting and compliance management
8.44 Ratings
00 Ratings
Incident indexing/searching
6.43 Ratings
00 Ratings
Incident and problem management
Comparison of Incident and problem management features of Product A and Product B
AlienVault OSSIM (discontinued)
-
Ratings
osTicket
7.6
9 Ratings
8% below category average
Organize and prioritize service tickets
00 Ratings
7.99 Ratings
Expert directory
00 Ratings
9.04 Ratings
Subscription-based notifications
00 Ratings
8.47 Ratings
ITSM collaboration and documentation
00 Ratings
7.27 Ratings
Ticket creation and submission
00 Ratings
6.89 Ratings
Ticket response
00 Ratings
6.29 Ratings
Self Help Community
Comparison of Self Help Community features of Product A and Product B
AlienVault OSSIM (discontinued)
-
Ratings
osTicket
8.3
7 Ratings
3% above category average
External knowledge base
00 Ratings
9.05 Ratings
Internal knowledge base
00 Ratings
7.57 Ratings
Multi-Channel Help
Comparison of Multi-Channel Help features of Product A and Product B
If this is your first experience with a SIEM, this one can get you started. Take the time to learn the ins and outs of the product and you'll most likely be satisfied with it if your company is an SMB. If you need compliance reports, OSSIM is too small for you, you'll need to go with USM or USM Anywhere.
For beginning smaller companies that are in need of partially automating their incoming requests this product is easy to set up and will assist in structuring these request[s]. These requests can come in via email/phone or web portal. For companies that are beginning to streamline their support procedures, this tool can be a first step into automating part of these processes. This is also how user[s] should see it. It is merely a tool that can assist in structuring the incoming request flow the rest still has to be fit into business processes.
Asset discovery. Once installed in a centric, network-accessible server, OSSIM can poll all your endpoints with common protocols (SSH, SNMP, WMI) to detect and discover site-wide assets to monitor. You only need to group them by your own criteria once added to the product.
SIEM Event Correlation. You can define quite complex correlation rules to detect possible suspicious or malicious actions or attempts in your network, in order to categorize them as real threats or as false positives, thus streamlining your risk assessment and management.
Ease of installation. The entire AlienVault OSSIM is self-contained in an ISO file, which can be burned into a DVD or just mounted in your server of choice (physical or virtual) for deployment. The installation process is automated and quote verbosed, with options for static IP, email messaging and others.
Ease of access. Being AlienVault OSSIM a self-contained appliance, it can be accessed via web by any device that supports a web browser, being that desktops, workstation, mobile devices, etc. The OSSIM dashboard and other features are automatically rearranged to adapt to the particular device being in use.
osTicket is extremely user friendly for end users and support agents. It's very easy for new end users to put in a service request. This aspect of simplicity is important because we don't have to train new users on how to put in service requests.
Feature wise osTicket has everything you need without being overly complicated or cluttered. This is important for us because it allows for faster support times and happier end users.
Lightweight and very reliable, osTicket uses PHP and MySQL. Setup is easy and it can be hosted internally or externally web hosed. Also, since it relies on PHP it gives you flexibility to use Apache, Nginx , Lighttpd , IIS, etc.
Thriving community: the community behind osTicket is feature-wise. Which is very helpful if you have any questions.
Best of all, osTicket is completely free and open source. While they do offer pair tier cloud-hosting and enterprise support. The free version offers all the features of the paid tiers (minus hosing and support).
AlienVault OSSIM is far easy to use and manage - provided you know what you're doing. As any SIEM application, there is some background knowledge required in order to take advantage of the product's functionalities, such as the log correlation and analysis. Other than that, the application is quite usable and robust.
I am familiar with osTicket and this allow me to teach all the staff and support them whenever they have any concern regarding the usability and following processes.
Everything is done through MSSP and installation pro services. Once those hours are burned up, then you're on your own without a lot of help. Typically the pro services hours aren't enough to get past 60 days and MSSP are hit and miss. We had a miss for installation helpers.
Originally my organization leveraged alien value due to the lower cost of entry and ability to manage it as a service provider. Unfortunately, after several years of working with this tool, it became unwieldy to use as it felt that almost every useful report had to be created by hand. As other tools have come out with the ability to do automated responses such as Stellar Data processor, we have begun to evaluate alternatives.
osTicket has proven to be a very useful tool for the team to help support the business. Open-source was the right price point and self-hosting as mentioned was quite important (however I believe that osTicket does have a hosting solution available if needed). Jitbit was a close contender but didn't like how it doesn't separate people submitting tickets from users acting as agents. So all in quite happy with the choice.
When we had a hosted version of osTicket, we were saving some time by having them work on our setup, but we were spending a lot. Switching to our own osTicket build from their open sourcing not only saved us money upfront but we actually spent LESS time developing because we knew our ideas and didn't have to explain them to another (unrelated) party.
Creating our own ticketing infrastructure for institutional data requests has been a game changer for us. We have been able to interface with our enterprise email client and create a level of customization that meets our existing informational technology culture.
