Third Brigade Acquires OSSEC Open Source Host Intrusion Detection Project

Share Article

Project remains open source, Third Brigade dedicates resources and increases support availability to OSSEC user community

Like Third Brigade, OSSEC is committed to delivering best-of-breed, host-based security controls for multi-platform, enterprise server environments. Together, we will ensure the continued success of this thriving open source community through dedicated resources and extended support.

Third Brigade, a security software company specializing in host intrusion detection and prevention systems (IDS/IPS), today announced that it has acquired OSSEC, a leading open source, host-based intrusion detection system, and that Daniel Cid, creator and primary developer for OSSEC, has joined the Third Brigade team as Principal Researcher, OSSEC Development. Third Brigade will continue to contribute to the open source community with new releases of OSSEC, and will extend commercial support and training to the OSSEC open source community.

The OSSEC project produces a multi-platform, scalable, host-based intrusion detection system (HIDS) which provides security controls including log analysis, integrity checking, real-time alerting and active response. In addition to continuing to deliver these capabilities through the free OSSEC open source project, this functionality will also be incorporated in future Third Brigade products.

"OSSEC is a very successful open source security project, and there are many organizations that are requesting enterprise-caliber support for their OSSEC deployments," said Wael Mohamed, CEO, Third Brigade. "Like Third Brigade, OSSEC is committed to delivering best-of-breed, host-based security controls for multi-platform, enterprise server environments. Together, we will ensure the continued success of this thriving open source community through dedicated resources and extended support."

The OSSEC community has active users in 40 countries. In the U.S. the community includes two of the largest commercial banks, three of the top five financial data services companies, the top three entertainment companies, the top six aerospace and defense firms and more than 150 universities and colleges. This is further validation of the importance of host intrusion defense in mission critical environments.

"For us, one of the best things about OSSEC has been its flexibility," said John Ives, Senior Security Analyst, System and Network Security, University of California, Berkeley. "Using functionality that comes with OSSEC, our most critical systems have become 'self defending' with host firewalls automatically blocking IP addresses that are attacking them. We have also taken this concept a step further by using this same information, which is generated from OSSEC, to publish a list of aggressive IPs to the campus community."

OSSEC began as an open source project 2003, written by Daniel Cid. In the last two years, the project has issued five major releases of the OSSEC HIDS, including the most recent in early May, 2008. The project continually receives support and praise from its active user community, the security community and the general open source community. Daniel now joins Third Brigade as Principal Researcher, OSSEC Development and will be dedicated to development and support of OSSEC going forward.

"I am extremely proud of the OSSEC user community and pleased that Third Brigade is providing me with this opportunity to dedicate my time to the continued success of the OSSEC open source project," said Daniel Cid, founder of OSSEC. "I am also excited to join the Third Brigade team and see OSSEC functionality added in future Third Brigade products."

OSSEC software is scalable and easy to install across multiple platforms including Microsoft® Windows®, SolarisTM, Linux, OpenBSD, FreeBSD, MacOS and more. In 2007, LinuxWorld recognized OSSEC as the #1 open source security tool, noting that it is "gaining widespread use and is quickly being deployed within organizations around the world as a method of protecting systems at the host level after attacks have made it past network defenses in the enterprise".

Under the terms of the transaction, Third Brigade has acquired the OSSEC project and related trademarks, as well as copyrights held by Daniel Cid, the principal member of the OSSEC project, and the domain, web site and web site content. Daniel Cid is also a co-author of the book "OSSEC Host-Based Intrusion Detection Guide" which is available for sale at leading bookstores or online at

OSSEC software is free and available for download at:

About Third Brigade
Third Brigade ( best-of-breed host intrusion defense systems protect critical data and applications, including those on virtual machines, from attacks that bypass or penetrate network defenses, and target vulnerabilities in operating systems, and enterprise and web applications. With a high performance deep packet inspection engine, Third Brigade Deep Security detects and prevents known and zero-day attacks, and provides a virtual patch for Microsoft® Windows®, Solaris™, Linux, and other Unix® hosts on physical and virtualized systems. It helps ensure regulatory compliance with PCI and other standards, and prevents costly business disruptions. Unlike others, Third Brigade provides broader, faster and simpler protection. Third Brigade. That's control.

Note: "Third Brigade", "Deep Security Solutions", and the Third Brigade logo are trademarks of Third Brigade, Inc. and may be registered in certain jurisdictions. All other company and product names are trademarks or registered trademarks of their respective owners.

For more information:
Laura Maio
Media & Analyst Relations
Third Brigade, Inc.
(T) 613-599-4505 x2238
(M) 613-219-2800


Share article on social media or email:

View article via:

Pdf Print

Contact Author

Laura Maio
Visit website