Logpoint Reviews & Product Details

I appreciate that Logpoint treats context as a first-class citizen, which is crucial for handling modern cloud telemetry and traditional on-premise systems efficiently. It seamlessly unifies various types of telemetry and identity analytics without needing to patch together disparate tools. I love how Logpoint transforms a traditional SIEM into an investigation engine through its taxonomy model, which ensures that logs are standardized, making cross-environment investigations feel almost effortless. The focus on collecting meaningful data rather than just volume is refreshing, allowing me to sift through and extract valuable insights without being overwhelmed by unnecessary information. Additionally, Logpoint's integration with existing tools across security, identity, and infrastructure enhances its value even further, demonstrating its compatibility and adaptability with the rest of my tech ecosystem. This makes it a tool of choice over others we've previously used, like Splunk. Review collected by and hosted on G2.com.

Logpoint's power is derived from its structured approach, but this comes with a real learning curve. If I don't invest the time to understand its taxonomy and query language, I won't unlock its full potential. The system isn't necessarily complicated, but it's different from the 'anything goes' approach used by traditional SIEMs. The strict taxonomy, structured query language, and dashboards follow a very defined logic, requiring dedicated time and effort to master effectively. Review collected by and hosted on G2.com.

Good SIEM for detecting potential threats, very useful, easy to install. Fast response and understandable settings. Easy to explain for the colleagues. Review collected by and hosted on G2.com.

Nothing really severe, maybe installation time could be a little faster. And more cross-platform features would be nice to have. Review collected by and hosted on G2.com.

The intelligence that logpoint uses for the decision making. It is a very modern way that is not widely used yet. Review collected by and hosted on G2.com.

Sometimes intelligence might make wrong decisions. Review collected by and hosted on G2.com.

Not a lot of information is sometimes good when triaging breaches Review collected by and hosted on G2.com.

Many features can be improved. For example, the reporting capability Review collected by and hosted on G2.com.

What I like best about Logpoint is how it makes digging through security data feel easy and actually helpful, instead of overwhelming. Review collected by and hosted on G2.com.

Sometimes it can feel a bit slow when handling really large data sets, and advanced tuning takes extra effort. Review collected by and hosted on G2.com.

Logpoint integrates SIEM and SOAR into one platform which enables you to easily streamline your SOC workflows. Review collected by and hosted on G2.com.

It doesn't offer Threat intelligence data on a level like other SIEM solutions do, Review collected by and hosted on G2.com.

The easyness of use and intuitive user interface Review collected by and hosted on G2.com.

Nothing at all, everything was amazing here. Couldn't do better Review collected by and hosted on G2.com.

To find honest reactions and reviews for certain products Review collected by and hosted on G2.com.

Complicated to do it and to find it which software Review collected by and hosted on G2.com.

Muninn AI is an NDR system that is able to recognize the most important and typical attack steps of malicious actors, regardless of whether the threat is external or internal. Muninn also uses AI and ML capabilities for this.

As a true NDR, it fills the gap left by EDR and XDR systems for companies that want even more security.

The additional forensic value of long-term storage of network raw data and metadata, in addition to the threat detection and defense capabilities, is self-evident.

Muninn AI can be easily operated by trained personnel and the operating effort is moderate.

As is common with NDR systems, implementation is associated with the need to mirror network data traffic to the NDR system. A major advantage is that Muninn has an agent that allows even mobile or exotic scenarios to benefit from NDR protection. Protecting cloud systems is a breeze thanks to the use of virtual instances.

To autonomously stop attackers, Muninn can be integrated into the network infrastructure components, but it is not required.

The NDR data can optionally be enriched with valuable context by an agent on clients. This is really helpful.

I also have nothing but positive things to say about the support. Professional, helpful and in a spirit of partnership. Review collected by and hosted on G2.com.

Muninn AI is not a fire-and-forget system and requires constant monitoring by trained personnel, which is, however, quite moderate after the baselining. I do not consider this a disadvantage, since fully autonomous systems that claim not to require constant monitoring by trained personnel also have their weaknesses.

Even if it requires some monitoring, the system is of course able to respond to alarms autonomously and isolate threats.

There are no options for a graduated blocking of an attacker, where a potential attacker is blocked for a short period of time. In my opinion, this is not a disadvantage for a security team, but it is a difference compared to fully autonomous systems. The downside of fully autonomous systems is obvious. Blocking an attacker gradually only heightens his awareness. In my opinion, security teams should intervene immediately and thoroughly in the event of serious threats. This is perfectly possible with Muninn. Review collected by and hosted on G2.com.

It’s informative and I love the tutorial Review collected by and hosted on G2.com.

I honestly love everything about it… especially the demo Review collected by and hosted on G2.com.