News / 

Ossec & Ossim Unified Open Source Security [ No Login ]

By | Posted - June 28, 2006 at 2:20 p.m.

 

Save Story

Ossec & Ossim Unified Open Source Security [ No Login ]

Connects seemingly unrelated events from different sources to identify complex attack patterns.

In a unified setup, OSSEC acts as the "eyes and ears" on individual machines, feeding its detailed findings into OSSIM for broader analysis. OSSEC & OSSIM Unified Open Source Security

Open Source Security Information Management by AlienVault (now AT&T Cybersecurity). It acts as a SIEM (Security Information and Event Management) platform that: OSSEC & OSSIM Unified Open Source Security

Evaluates the severity of threats based on asset value and vulnerability data. How They Work Together OSSEC & OSSIM Unified Open Source Security

Detecting unauthorized changes to critical system files. Rootkit Detection: Identifying hidden malicious software.

Automatically blocking threats (e.g., firewalling a malicious IP) in real time.

STAY IN THE KNOW

Get informative articles and interesting stories delivered to your inbox weekly. Subscribe to the KSL.com Trending 5.
By subscribing, you acknowledge and agree to KSL.com's Terms of Use and Privacy Notice.
Newsletter Signup

KSL Weather Forecast

KSL Weather Forecast
Play button
Mobile Apps | Newsletter | Advertise | Contact Us | Careers with KSL.com |
Terms of use | Privacy Statement | DMCA Notice | Manage My Cookies | EEO Public File Report | KSL-TV FCC Public File | KSL FM Radio FCC Public File | KSL AM Radio FCC Public File | Closed Captioning Assistance
%!s(int=2026) © %!d(string=Modern Vital Prism)KSL.com | KSL Broadcasting Salt Lake City UT | Site hosted & managed by Deseret Digital Media - a Deseret Media Company