Intrusion Detection Systems (IDS) Tools

What is OSSIM?
OSSIM provides all of the features that a security professional needs from a SIEM offering – event collection, normalization, and correlation. Established and launched by security engineers out of necessity, OSSIM was created with an understanding of the reality many security professionals face: a SIEM is useless without the basic security controls necessary for security visibility.

AlienVault provides ongoing development for OSSIM because we believe that everyone should have access to sophisticated security technologies; this includes the researchers who need a platform for experimentation, and the unsung heroes who can’t convince their companies that security is a problem.

Is OSSIM Free?
Yes OSSIM is free to use.

Does OSSIM Work on all Operating Systems?
OSSIM only works for Linux operating systems.

What are the Typical Uses for OSSIM?
The primary use of this tool is give a detailed compilation of tools which, when united will grant security and network administrators with a detailed view over each aspect of hosts, physical access devices, networks and servers. This tool incorporates several tools including OSSEC HIDS and Nagios.