OSSEC v2.2 released

OSSEC is a scalable, multi-platform, open source Host-based Intrusion Detection System (HIDS). It has a powerful correlation and analysis engine, integrating log analysis, file integrity checking, Windows registry monitoring, centralized policy enforcement, rootkit detection, real-time alerting and active respons

This is a stability release, with heavy focus on bug fixes, code cleanup and a few new features. The most notable changes are:

  • Trend OSCE (Office scan) support - We added rules to properly monitor and analyze Trend logs
  • Wordpress Monitoring - Wordpress is a popular blogging platform with very little logging by default. We create a plugin to extend its logging capabilities and created rules on OSSEC to monitor it.
  • More Logging support - We added support for vpopmail, roundcube, Netscreen IDS and a few more log formats.

And much more… Check out the changelog to see all changes and contributor

Post scriptum

Compliance Mandates

  • IDS :

    PCI DSS 10.6, 11.4, SOX A13.2, DS5.10, GLBA 16CFR Part 314.4(b) and (3), HIPAA 164.306(a)(2), 164.308(a)(1) 164.308(a)(6)42, FISMA SI-4, AC-2, ISO 27001/27002 10.6.2,
    10.10.1, 10.10.2, 10.10.4, 15.1.5

  • Network Monitoring :

    PCI DSS Requirements 3, 4, SOX DS13.4, HIPAA 164.310(d)(1),
    164.312(a)(2)(iv), FISMA SI-4, AU-2, ISO 27001/27002 12.5.4, 15.1.5


Related Articles

Data Mining
IDS
Network Monitoring
OSSEC