Jump to content

OSSIM: Difference between revisions

From Wikipedia, the free encyclopedia
Browse history interactively
← Previous editNext edit →
Content deleted Content added
VisualWikitext
Databeast (talk | contribs)
33 edits
m changing the website link to point to the OSSIM community page instead of the commercial AlienVault page
Databeast (talk | contribs)
33 edits
m changed the in cident management tools link to point to an existing article instead
Line 16: Line 16:
'''OSSIM''' (Open Source Security Information Management) by AlienVault is an open source '''Security Information and Event Management''' ([[SIEM]]), comprising a collection of tools designed to aid [[network administrator]]s in [[computer security]], [[intrusion detection]] and [[intrusion prevention|prevention]].
'''OSSIM''' (Open Source Security Information Management) by AlienVault is an open source '''Security Information and Event Management''' ([[SIEM]]), comprising a collection of tools designed to aid [[network administrator]]s in [[computer security]], [[intrusion detection]] and [[intrusion prevention|prevention]].


The project's goal is to provide a comprehensive collection of tools to grant an administrator a view of all the security-related aspects of their system. OSSIM also provides a strong correlation engine, with detailed low-, mid- and high-level [[visualization interface]]s as well as reporting and [[incident managing tool]]s. The ability to act as an [[intrusion-prevention system]] based on correlated information from virtually any source results in a useful security tool. All this information can be filtered by network or sensor in order to provide just the information needed by specific users, allowing for a [[fine-grained]] multi-user security environment.
The project's goal is to provide a comprehensive collection of tools to grant an administrator a view of all the security-related aspects of their system. OSSIM also provides a strong correlation engine, with detailed low-, mid- and high-level [[visualization interface]]s as well as reporting and [[Computer_security_incident_management|incident management tools]]. The ability to act as an [[intrusion-prevention system]] based on correlated information from virtually any source results in a useful security tool. All this information can be filtered by network or sensor in order to provide just the information needed by specific users, allowing for a [[fine-grained]] multi-user security environment.


== Components ==
== Components ==

Revision as of 18:09, 26 June 2013

For the GIS project, see Open Source Geospatial Foundation.
OSSIM
Developer(s)AlienVault
Stable release
4.2.3 / June 5, 2013
Operating systemLinux
TypeSecurity / IDS
LicenseGNU General Public License
Websitecommunities.alienvault.com

OSSIM (Open Source Security Information Management) by AlienVault is an open source Security Information and Event Management (SIEM), comprising a collection of tools designed to aid network administrators in computer security, intrusion detection and prevention.

The project's goal is to provide a comprehensive collection of tools to grant an administrator a view of all the security-related aspects of their system. OSSIM also provides a strong correlation engine, with detailed low-, mid- and high-level visualization interfaces as well as reporting and incident management tools. The ability to act as an intrusion-prevention system based on correlated information from virtually any source results in a useful security tool. All this information can be filtered by network or sensor in order to provide just the information needed by specific users, allowing for a fine-grained multi-user security environment.

Components

Ossim features the following software components:

See also


Stub icon

This software article is a stub. You can help Wikipedia by expanding it.

Retrieved from "https://en.wikipedia.org/w/index.php?title=OSSIM&oldid=561703640"