Support
 
Support Get Quote
 
 
 
 

EventLog Analyzer vs. TripWire Log Center

Home » Compare
 
Vs.
 

This document provides a feature-wise comparison report between ManageEngine EventLog Analyzer and TripWire Enterprise. Comparison done here is based on the information available in the competitor’s website and so the details may vary with the real product.

ManageEngine EventLog Analyzer is a comprehensive log management solution that helps you to meet the SIEM needs. The solution centrally collects, analyzes, correlates and archives log data from sources across the network that helps in simplifying your compliance management. It also has in-built File Integrity Monitoring module that helps to protect the confidential data in your network.

On the other hand, Tripwire Log Center is a log intelligence solution that collects, analyzes and correlates the log data. However, to meet other SIEM needs such as protecting confidential data it requires integration with its SIEM platform, Tripwire Enterprise.

Feature Comparison

Feature Description [ Close All ] [ Expand All ]
 
 
  Log Collection
Agent-less   Not Specified
Agent based    
Cross platform log collection    
Heterogeneous server/ device support    
Import logs   Not Specified
Periodical import of logs   Not Specified
Log filter    
Universal Log Parsing and Indexing(ULPI)    
Log collection and processing rate 20,000 logs/second with peak event handling capacity up to 25,000 logs/second. For Windows event logs the EPS is 2000 logs/second. Not Specified
  Log formats supported
Windows event log    
Syslog    
Any format – with Universal Log Parsing and Indexing (ULPI) technology    
Amazon Web Services (AWS) EC2 Windows instances   Not Specified
  Application logs supported
Proprietary applications [Microsoft IIS Web Server, FTP Server (W3C logs), Apache Web Server, DHCP Windows, DHCP Linux]    
Database applications [Oracle Audit, MS SQL Server]    
Any application – with Universal Log Parsing and Indexing (ULPI) technology    
  Other devices supported
Custom devices [IBM iSeries (AS/400), VMware]    
Custom devices
  • Firewalls
  • Intrusion Detection System/ Intrusion Prevention System (IDS/IPS)
  • Anti-virus application
  • Mail and web application
  • Vulnerability Scanners
  • Unified threat management solutions
    • Symantec DLP Application
    • FireEye
    • Symantec Endpoint Solution
    
  Alerts & Notification
Real-time alert    
Notification – Email, SMS, Run program   Email & Run Program : Yes
SMS : Not Specified
Compliance alerts   Not Specified
  Reports
File Integrity Monitoring   Provided under TripWire Enterprise (TLC can be integrated with TripWire Enterprise)
Canned reports    
Custom reports    
Scheduled reports    
Report distribution via Email    
Reports in PDF, CSV & HTML formats    
(Also: XLS Format)
Drill down to raw logs    
Filter using mouse gesture    
Management specific reports (Ask ME)    
Trend reports    
Privileged user activity monitoring reports    
  Log Search
Advanced Search using Boolean, Wildcards, Grouped Search, Range search, Phrase search    
Formatted logs    
Raw logs    
Save search result as report   Report: Yes
Alert: Not Specified
  Compliance Reports
Canned reports    
Customizable report    
Reports for new compliance   Not Specified
PCI-DSS    
ISO 27001   Not Specified
HIPAA    
FISMA   Not Specified
SOX   Available in add-on: HP ArcSight Compliance Insight Package
GLBA   Available in add-on: HP ArcSight Compliance Insight Package
  Real-time Event Correlation
Event correlation    
User Session monitoring    
  File Integrity Monitoring
Reports on File Integrity Monitoring   On integration with TripWire Enterprise
Report Scheduling   On integration with TripWire Enterprise
Real-time alerts upon critical changes to files/folders being monitored   On integration with TripWire Enterprise
Audit trial reports on files/folders changes   On integration with TripWire Enterprise
  Log Archiving
Flexible periodicity    
Flexible retention    
Secured (Encrypted)    
Tamper-proof    
  Service Provider features
User based views    
User based dashboards    
Rebranding   Not specified
  User Management
Realm & user based access    
Active Directory based user authentication    
RADIUS server based user authentication    
  Implementation
Easy to install    
Web based Client    
  System Requirements
Bundled database (PostgreSQL/MySQL)    
Windows & Linux platforms support    
64 Bit support    
Appliance based    
Pricing
Based on number of servers, devices & applications    Based on volume of log data handled.
Annual Subscription Model    
Perpetual Model    
Cost Server/ application based licensing. Annual Subscription License Premium Edition 10 log sources pack starts at $595 (Including 1st year AMS). Yearly renewal includes upgrade, maintenance, and support. Not specified.

Though every care has been taken to ensure the correctness of the information provided herein, minor variations might be found in the feature set. In case, you find any discrepancies, please write to us at: eventlog-support@manageengine.com

Customer Speaks
  • Credit Union of Denver has been using EventLog Analyzer for more than four years for our internal user activity monitoring. EventLog Analyzer provides great value as a network forensic tool and for regulatory due diligence. This product can rapidly be scaled to meet our dynamic business needs.
     
    Benjamin Shumaker
    Vice President of IT / ISO
    Credit Union of Denver
  • The best thing, I like about the application, is the well structured GUI and the automated reports. This is a great help for network engineers to monitor all the devices in a single dashboard. The canned reports are a clever piece of work.
     
    Joseph Graziano, MCSE CCA VCP
    Senior Network Engineer
    Citadel
  • EventLog Analyzer has been a good event log reporting and alerting solution for our information technology needs. It minimizes the amount of time we spent on filtering through event logs and provides almost near real-time notification of administratively defined alerts.
     
    Joseph E. Veretto
    Operations Review Specialist
    Office of Information System
    Florida Department of Transportation
  • I love the alerts feature of the product. We are able to send immediate alerts based on pretty much anything we can think of. We send alerts when certain accounts login, or when groups are changed, etc. That has been very helpful. Also the automatic archive of the log files has been very helpful and has taken the worry out of keeping old logs. The “Ask Me” function is very nice as well. It is great to have some natural language queries built in where you can just click a button and get an answer.
     
    Jim Earnshaw
    Senior Computer Specialist
    Department of Chemistry
    University of Washington
  • Windows Event logs and device Syslogs are a real time synopsis of what is happening on a computer or network. EventLog Analyzer is an economical, functional and easy-to-utilize tool that allows me to know what is going on in the network by pushing alerts and reports, both in real time and scheduled. It is a premium software Intrusion Detection System application.
     
    Jim Lloyd
    Information Systems Manager
    First Mountain Bank
TestimonialsCase Studies

EventLog Analyzer Trusted By

Awards and Recognitions

  • Info Security's 2014 Global Excellence Awards
  • Info Security’s 2013 Global Excellence Awards - Silver Winner
A Single Pane of Glass for Comprehensive Log Management
Log ManagementLog AnalysisIT ComplianceSIEMQuick LinksRelated Products

A Single Pane of Glass for Comprehensive Threat Management

Free Trial Get Quote
Email Download Link