OSSEC HIDS - Open Source Host Intrusion Detection System

Discussion in 'other anti-malware software' started by Jomsviking, Nov 28, 2007.

Thread Status:
Not open for further replies.
  1. Jomsviking

    Jomsviking Registered Member

    Joined:
    Apr 16, 2007
    Posts:
    55
    For HIPS fans here at Wilders:

    http://www.ossec.net/main/

    "OSSEC is a scalable, multi-platform, open source Host-based Intrusion Detection System (HIDS). It has a powerful correlation and analysis engine, integrating log analysis, file integrity checking, Windows registry monitoring, centralized policy enforcement, rootkit detection, real-time alerting and active response.

    It runs on most operating systems, including Linux, OpenBSD, FreeBSD, MacOS, Solaris and Windows."

    I have not tested it myself, but I thought some people here might be interested.

    Although the software runs on windows clients (not servers), a *nix server running OSSEC is needed to run event analysis. So for those having these kind of configurations (windows and/or *nix clients behind *nix server(s)) this could be a useful tool.
     
  2. jrmhng

    jrmhng Registered Member

    Joined:
    Nov 4, 2007
    Posts:
    1,268
    Location:
    Australia
    I don't think this is Vista compatible. Installed on Vista Business and didn't start up properly.
     
  3. Jomsviking

    Jomsviking Registered Member

    Joined:
    Apr 16, 2007
    Posts:
    55
Loading...
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.