1. Home
  2. Security Information and Event Management (SIEM) Software
  3. AlienVault USM Reviews
  4. User Review of AlienVault USM
The Good and the Bad with AlienVault
October 02, 2015

The Good and the Bad with AlienVault

Anonymous | TrustRadius Reviewer
Score 6 out of 10
Vetted Review
Verified User

Overall Satisfaction with AlienVault Unified Security Management

I use AlienVault for log retention and analytics, our SIEM solution. It can address vulnerabilities, issue tracking, net flows, NIDS, HIDS, WIDS, and a few other things that are useful all in one platform. It can admittedly do a lot, but it also takes some work to get things going and keep them working.
  • Very customizable
  • Forums provide a very active community always willing to help because of the OSSIM (free) offering
  • A lot of useful tools all in one place
  • Not a lot of documentation
  • Support staff is a mix of knowledgable and not so knowledgable in terms of what's going on in the background
  • Sometimes it seems that upgrades are released without a lot of QA
NA - I don't have a ton to compare this to, though I can say that the vulnerability scanning will be useful for those that already know their way around an OpenVAS offering, but not so much if you are looking for a Qualys or Nessus type output.
Plugins -- these require a lot of customization at times. Other times, there aren't any and they need to be written. Ask about whether the products you plan to use have plugins that work well out of the box. Ask if any training is included - you'll need it. But once you know your way around, you can do a lot with the system.