OSSEC HIDS - Open Source Host Intrusion Detection System

Discussion in 'other anti-malware software' started by Jomsviking, Nov 28, 2007.

Thread Status:
Not open for further replies.
  1. Jomsviking

    Jomsviking Registered Member

    Joined:
    Apr 16, 2007
    Posts:
    55
    For HIPS fans here at Wilders:

    http://www.ossec.net/main/

    "OSSEC is a scalable, multi-platform, open source Host-based Intrusion Detection System (HIDS). It has a powerful correlation and analysis engine, integrating log analysis, file integrity checking, Windows registry monitoring, centralized policy enforcement, rootkit detection, real-time alerting and active response.

    It runs on most operating systems, including Linux, OpenBSD, FreeBSD, MacOS, Solaris and Windows."

    I have not tested it myself, but I thought some people here might be interested.

    Although the software runs on windows clients (not servers), a *nix server running OSSEC is needed to run event analysis. So for those having these kind of configurations (windows and/or *nix clients behind *nix server(s)) this could be a useful tool.
     
  2. jrmhng

    jrmhng Registered Member

    Joined:
    Nov 4, 2007
    Posts:
    1,268
    Location:
    Australia
    I don't think this is Vista compatible. Installed on Vista Business and didn't start up properly.
     
  3. Jomsviking

    Jomsviking Registered Member

    Joined:
    Apr 16, 2007
    Posts:
    55
Loading...
Thread Status:
Not open for further replies.