Using OSSEC Open-Source, Host-Based Intrusion Detection
Tuesday, April 13, 2010
10:45 a.m. - 11:45 a.m.
International H (6th floor)
OSSEC is a free, open-source, cross-platform, host-based intrusion detection system. The University of Pennsylvania School of Arts and Sciences has used OSSEC for several years. We utilize OSSEC to monitor several services from common servers like SSH to custom web applications. OSSEC can identify anomalous events in order to quickly identify malicious activity. Using OSSEC, we have been able to thwart numerous attacks and prevent several machines from being compromised.