It looks like you're new here. If you want to get involved, click one of these buttons!
I'm looking at both for SIEM, IDS and CVE scanning. Does anybody have any experience with them? I saw that the licensing is very different, AlienVault USM includes all the modules for a set price with two site sensors, but Rapid7 is licensed depending on which modules you need. Rapid7 can't migrate my existing Splunk (we only do SIEM here) logs into it, but AlienVault said they could.
Looking for some real world feedback. Has anybody gotten one and preferred the other? Did you start with a module or two in Rapid7 and now expanded to additional functionality like the internal pen-test?