OpenSource for the Win!
Rating: 8 out of 10
Use Cases and Deployment Scope
Security Onion has been the best platform we found to use for alerting, hunting, and tracking of various security vulnerabilities. It is OpenSource and supported by a community of like minded users. The GUI is straight forward and easy to work with. There is even the ability to use an appliance from Security Onion, though we have not had a need to use it yet.
Pros
- GUI
- Support
- Easy of use
Cons
- Requires Linux
- Training
Likelihood to Recommend
Security Onion works well for setting up within a Linux environment. This brings a new platform to run and maintain though. The application its self has helped to keep track of logs and vulnerabilities in the environment. Alert triage and case creation is simple to start and follow through to the end.
Vetted Review
2 years of experience