misterbeetz Posted December 9, 2015 Share Posted December 9, 2015 So I recently have gotten the itch to beef up the security on my network using OSSIM/OSSEC. In order to make this more effective I should install the agent software on all client machines and servers. Has anyone here put OSSEC on their Unraid box before? I've been spoiled by the dockers and plugins so its been awhile since I have installed something manually on Unraid. I encourage everyone to take a look at OSSEC if you are unfamiliar with it. It a great way to gain visibility of security related events in your network. Once installed OSSEC reports security events back to a centralized server (Alienvault, OSSIM, Security Onion etc.) so you can keep tabs on all machines on the network. Some examples of what OSSEC does: - integrated log analysis - file integrity checking - Windows registry monitoring - centralized policy enforcement - rootkit detection - real-time alerting and active response On top of that OSSEC is free and open source. Here are some links for further reading: en.wikipedia.org/wiki/OSSEC ossec.github.io/ Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.