NetWitness Platform and syslog-ng are key players in network security and log management. User reviews indicate NetWitness Platform is favored for its pricing and support, although syslog-ng remains a top choice for its features.
Features: NetWitness Platform's versatility enhances corporate integration, offering seamless analytics and monitoring capabilities. It provides effective threat detection and user-friendly interfaces, making it adaptable across industries. Syslog-ng is robust in log management, offering exceptional customization options. Its flexibility ensures tailored solutions, making it suitable for varied network architectures.
Room for Improvement: NetWitness Platform could use more intuitive workflows and expanded documentation for easier user experiences. There's potential for improved integration with third-party solutions and enhancements in reporting capabilities. Syslog-ng needs better scaling options to handle increasing data volumes effectively. Improving error handling and streamlining configuration processes would aid user efficiency.
Ease of Deployment and Customer Service: NetWitness Platform benefits from a straightforward deployment process and responsive customer service, making it user-friendly. Users find its support comprehensive, addressing queries efficiently. In contrast, syslog-ng's deployment is often seen as complex, but users value the extensive online community and resources available, aiding in troubleshooting and learning.
Pricing and ROI: NetWitness Platform's pricing structure is perceived as accessible, aligning with expected ROI for budget-conscious buyers. The transparent model is appreciated for predictable costs. Syslog-ng is considered pricey by some, though its advanced functionalities justify the investment. The balance between cost and feature value is pivotal for financial decision-making.
| Product | Market Share (%) |
|---|---|
| syslog-ng | 1.8% |
| NetWitness Platform | 0.7% |
| Other | 97.5% |
| Company Size | Count |
|---|---|
| Small Business | 8 |
| Midsize Enterprise | 7 |
| Large Enterprise | 20 |
| Company Size | Count |
|---|---|
| Small Business | 3 |
| Midsize Enterprise | 2 |
| Large Enterprise | 3 |
NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.
Optimizing SIEM
syslog-ng is the log management solution that improves the performance of your SIEM solution by reducing the amount and improving the quality of data feeding your SIEM.
Rapid search and troubleshooting
With syslog-ng Store Box, you can find the answer. Search billions of logs in seconds using full text queries with Boolean operators to pinpoint critical logs.
Meeting compliance requirements
syslog-ng Store Box provides secure, tamper-proof storage and custom reporting to demonstrate compliance.
Big data ingestion
syslog-ng can deliver data from a wide variety of sources to Hadoop, Elasticsearch, MongoDB, and Kafka as well as many others.
Universal log collection and routing
syslog-ng flexibly routes log data from X sources to Y destinations. Instead of deploying multiple agents on hosts, organizations can unify their log data collection and management.
Secure data archive
syslog-ng Store Box provides automated archiving, tamper-proof encrypted storage, granular access controls to protect log data. The largest appliance can store up to 10TB of raw logs.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
