Using OSSEC Open-Source, Host-Based Intrusion Detection

Session Details

Tuesday, April 13, 2010
10:45 a.m. - 11:45 a.m.
International H (6th floor)

Session Type: Technology Concepts

Speaker(s)

Abstract

OSSEC is a free, open-source, cross-platform, host-based intrusion detection system. The University of Pennsylvania School of Arts and Sciences has used OSSEC for several years. We utilize OSSEC to monitor several services from common servers like SSH to custom web applications. OSSEC can identify anomalous events in order to quickly identify malicious activity. Using OSSEC, we have been able to thwart numerous attacks and prevent several machines from being compromised.

Available Resources