Gain A Deep Understanding of Your OSSEC IDS
OSSEC (Open Source SECurity) is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response. It provides intrusion detection for most operating systems, including Linux, OpenBSD, FreeBSD, Mac OS X, Solaris and Windows.
With the Sumo Logic Application for OSSEC, you can:
- Collect all alerts and events generated by OSSEC, analyze them in real-time, and display them in real-time dashboards
- Correlate OSSEC alerts with other data sources to reduce false-positives, improve security analytics, and break down security technology silos
- Store and retain OSSEC data as long as necessary and generate reports to support regulatory compliance efforts
The Sumo Logic Application for OSSEC helps meet the below use cases:
Interested in the Sumo Logic Application for OSSEC? Contact Us