OSSEC HIDS v0.4 available - log analysis, rootkit detection and integrity checking

From: Daniel Cid (danielcid_at_yahoo.com.br)
Date: 10/26/05

Next message: Vipul Kumra: "RE: Current IDS problems"

Previous message: Thompson, Jimi: "RE: Current IDS problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 26 Oct 2005 18:37:15 -0300 (ART)
To: focus-ids@securityfocus.com

Version 0.4 of the OSSEC HIDS is now available.

OSSEC HIDS is an Open source Host-based intrusion
detection software. It performs log analysis,
integrity checking, rootkit detection and health
monitoring.
All this information is correlated and analyzed by a
single engine, creating a very powerfull detection
tool.

OSSEC HIDS is very scalable, allowing you to easily
monitor multiple systems from a central server.

This new version includes a new rootkit detection
system, an improved integrity detection engine (much
more complete and with much more detailed alerts), a
faster and powerfull analysis system and complete
support to Solaris and MacOS (in addition to Linux,
*BSD, etc).
Our FAQ (http://www.ossec.net/hids/faq.php) has more
information and we have a new mailling list for the
project (
http://www.ossec.net/hids/index.php#Maillists ).

A list of all new features are available here:
http://www.ossec.net/hids/announcements/v04-2005-10-26.txt

To look at the log analysis rules:
http://www.ossec.net/hids/rules/

For more information on the rootkit detection:
http://www.ossec.net/rootcheck/rootcheck.txt

To download:
http://www.ossec.net/hids/files/ossec-hids-0.4.tar.gz

For more information:
http://www.ossec.net/hids/

Thanks,

--
Daniel B. Cid, CISSP
daniel.cid @ ( at ) gmail.com
	
	
		
_______________________________________________________ 
Promoção Yahoo! Acesso Grátis: a cada hora navegada você
acumula cupons e concorre a mais de 500 prêmios! Participe!
http://yahoo.fbiz.com.br/
------------------------------------------------------------------------
Test Your IDS
Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
------------------------------------------------------------------------

Next message: Vipul Kumra: "RE: Current IDS problems"

Previous message: Thompson, Jimi: "RE: Current IDS problems"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Version 0.7 of the OSSEC HIDS is available.
... detection system. ... It performs log analysis, integrity ... The integrity checking engine now allows granular ... The rootkit detection had a lot of improvements too, ...
(Security-Basics)
Version 0.6 of the OSSEC HIDS is available for download.
... detection system. ... support for NIDS log analysis and an improved rootkit ... detection and integrity checking capabilities. ...
(Security-Basics)
OSSEC HIDS v0.4 available - log analysis, rootkit detection and integrity checking
... Version 0.4 of the OSSEC HIDS is now available. ... This new version includes a new rootkit detection ... an improved integrity detection engine (much ... To look at the log analysis rules: ...
(Security-Basics)
Version 0.7 of the OSSEC HIDS is avalable.
... detection system. ... It performs log analysis, integrity ... The integrity checking engine now allows granular ... The rootkit detection had a lot of improvements too, ...
(Focus-IDS)
Version 0.6 of the OSSEC HIDS is available for download.
... detection system. ... support for NIDS log analysis and an improved rootkit ... detection and integrity checking capabilities. ...
(Focus-IDS)