TrustRadius: an HG Insights company

Security Onion

Score10 out of 10

7 Reviews and Ratings

Get a Demo

What is Security Onion?

Security Onion is a free and open source Linux distribution for threat hunting, enterprise security monitoring, and log management, developed by the company of the same name in Evans. Their products include both the Security Onion software and specialized hardware appliances that are built and tested to run Security Onion. The company also offers paid support and training services.

Categories & Use Cases

Reviews

What users are saying about Security Onion.
View all reviews

OpenSource for the Win!

Verified User
Director in Information Technology (11-50 employees employees)

Use Cases and Deployment Scope

Security Onion has been the best platform we found to use for alerting, hunting, and tracking of various security vulnerabilities. It is OpenSource and supported by a community of like minded users. The GUI is straight forward and easy to work with. There is even the ability to use an appliance from Security Onion, though we have not had a need to use it yet.

Pros

  • GUI
  • Support
  • Easy of use

Cons

  • Requires Linux
  • Training

Most Important Features

  • Case Creation
  • Detectioin Engineering
  • Dashboards

Return on Investment

  • Makes Alert Triage easier to handle
  • Analysis of threats simple

Alternatives Considered

SolarWinds Loggly and SolarWinds Log Analyzer (LA)

Other Software Used

SolarWinds Loggly, SolarWinds Log Analyzer (LA), SolarWinds ipMonitor