December 9, 201510 yr So I recently have gotten the itch to beef up the security on my network using OSSIM/OSSEC. In order to make this more effective I should install the agent software on all client machines and servers. Has anyone here put OSSEC on their Unraid box before? I've been spoiled by the dockers and plugins so its been awhile since I have installed something manually on Unraid. I encourage everyone to take a look at OSSEC if you are unfamiliar with it. It a great way to gain visibility of security related events in your network. Once installed OSSEC reports security events back to a centralized server (Alienvault, OSSIM, Security Onion etc.) so you can keep tabs on all machines on the network. Some examples of what OSSEC does: - integrated log analysis - file integrity checking - Windows registry monitoring - centralized policy enforcement - rootkit detection - real-time alerting and active response On top of that OSSEC is free and open source. Here are some links for further reading: en.wikipedia.org/wiki/OSSEC ossec.github.io/
Archived
This topic is now archived and is closed to further replies.