Ossec & Ossim Unified — Open Source Security

Scrutinizing system and application logs for suspicious patterns.

Detecting unauthorized changes to critical system files. Rootkit Detection: Identifying hidden malicious software. OSSEC & OSSIM Unified Open Source Security

The "unified" approach relies on the specific strengths of each tool working in tandem: OSSEC & OSSIM Unified Open Source Security

Connects seemingly unrelated events from different sources to identify complex attack patterns. OSSEC & OSSIM Unified Open Source Security

In a unified setup, OSSEC acts as the "eyes and ears" on individual machines, feeding its detailed findings into OSSIM for broader analysis.

An open-source Host-based Intrusion Detection System (HIDS). It sits on your servers and endpoints to perform:

Collects events from OSSEC agents and other network tools (like Snort or OpenVAS).

Вы находитесь в автономном режиме. Некоторые функции недоступны.