OSSEC – host-based intrusion detection system

OSSEC is an Open Source Host-based Intrusion Detection System.

It performs log analysis, integrity checking, monitoring, rootkit detection, real-time alerting and active response.

In addition to being deployed as an HIDS, it is commonly used strictly as a log analysis tool, monitoring and analyzing firewalls, IDSs, web servers and authentication logs.

Features include:

  • Unix-only:
    • Unix PAM.
    • sshd (OpenSSH).
    • Solaris telnetd.
    • Samba.
    • Su.
    • Sudo.
  • FTP servers:
    • ProFTPd.
    • Pure-FTPd.
    • vsftpd.
    • Microsoft FTP Server.
    • Solaris ftpd.
  • Mail servers:
    • Imapd and pop3d.
    • Postfix.
    • Sendmail.
    • vpopmail.
    • Microsoft Exchange Server.
  • Databases:
    • PostgreSQL.
    • MySQL.
  • Web servers:
    • Apache HTTP Server (access log and error log).
    • IIS web server (NSCA and W3C extended).
    • Zeus Web Server errors log.
  • Web applications:
    • Horde IMP.
    • Modsecurity.
  • Firewalls:
    • Iptables firewall.
    • Solaris IPFilter firewall.
    • AIX ipsec/firewall.
    • Netscreen firewall.
    • Windows Firewall.
    • Cisco PIX.
    • Cisco FWSM.
    • Cisco ASA.
  • NIDS:
    • Cisco IOS IDS/IPS module.
    • Snort IDS (snort full, snort fast and snort syslog).
  • Security tools:
    • Symantec AntiVirus.
    • Nmap.
    • Arpwatch.
    • Cisco VPN Concentrator.
  • Others:
    • Named (BIND).
    • Squid proxy.
    • Zeus eXtensible Traffic Manager.
  • Generic unix authentication (adduser, logins, etc).

Website: www.ossec.net
Support: Documentation, GitHub Code Repository
Developer: Daniel B. Cid
License: GNU General Public License (version 2)

OSSEC is written in C. Learn C with our recommended free books and free tutorials.

Return to Host-Based Intrusion Detection Systems Home Page |
Return to Vulnerability Detection Tools Home Page


Popular series
Guide to LinuxNew to Linux? Read our Linux for Starters series. We start right at the basics and teach you everything you need to know to get started with Linux.
Free and Open Source SoftwareThe largest compilation of the best free and open source software in the universe. Each article is supplied with a legendary ratings chart helping you to make informed decisions.
ReviewsHundreds of in-depth reviews offering our unbiased and expert opinion on software. We offer helpful and impartial information.
Alternatives to Proprietary SoftwareReplace proprietary software with open source alternatives: Google, Microsoft, Apple, Adobe, IBM, Autodesk, Oracle, Atlassian, Corel, Cisco, Intuit, and SAS.
Linux Around The WorldLinux Around The World showcases events and usergroups that are Linux-related. This is a new series.
DockerGetting Started with Docker helps you master Docker, a set of platform as a service products that delivers software in packages called containers.
System ToolsEssential Linux system tools focuses on small, indispensable utilities, useful for system administrators as well as regular users.
ProductivityLinux utilities to maximise your productivity. Small, indispensable tools, useful for anyone running a Linux machine.
Home ComputersHome computers became commonplace in the 1980s. Emulate home computers including the Commodore 64, Amiga, Atari ST, ZX81, Amstrad CPC, and ZX Spectrum.
Now and ThenNow and Then examines how promising open source software fared over the years. It can be a bumpy ride.
Linux at HomeLinux at Home looks at a range of home activities where Linux can play its part, making the most of our time at home, keeping active and engaged.
Linux CandyLinux Candy reveals the lighter side of Linux. Have some fun and escape from the daily drudgery.
Android AppsBest Free Android Apps. We showcase free Android apps that are definitely worth downloading. There's a strict eligibility criteria for inclusion in this series.
Programming BooksThese best free books accelerate your learning of every programming language. Learn a new language today!
Programming TutorialsThese free tutorials offer the perfect tonic to our free programming books series.
Stars and StripesStars and Stripes is an occasional series looking at the impact of Linux in the USA.
Share this article

Share your Thoughts

This site uses Akismet to reduce spam. Learn how your comment data is processed.