OSSEC Releases Most Comprehensive Product Update Ever

Share Article

Dedicated resources following Third Brigade acquisition ignite open source host intrusion detection community.

It is exciting to be able to dedicate my time fully to the project, and to see the global growth of the community.

Third Brigade, a security software company specializing in host intrusion detection and prevention systems (IDS/IPS), today announced the availability of the latest release of OSSEC, the Open Source Host Intrusion Detection System. This new product delivers the most comprehensive update to the OSSEC host intrusion detection system in the history of the open source project. In just over two months since the acquisition of the project by Third Brigade, the open source community has taken advantage of dedicated Third Brigade resources to significantly advance the codebase and complete several enterprise-scale features requested by OSSEC community members.

"The acquisition has been a win-win for OSSEC and Third Brigade," said Wael Mohamed, President and CEO of Third Brigade. "This release marks significant progress in the software project, and Third Brigade is generating support revenue from OSSEC-user organizations and sees customers benefiting from both OSSEC and Deep Security product lines."

Major features added to OSSEC with this latest release include:

  •     New multi-server architecture to allow a hierarchy of servers that enables organizations to scale deployments and provide a central master view of OSSEC security events
  •     Increased support and functionality for Microsoft Windows servers including: 1) support for Microsoft Vista and Microsoft Server 2008; 2) "active response" capabilities extended to Windows servers that can automatically block or disable IP addresses and usernames deemed suspicious or dangerous
  •     Center for Internet Security (CIS) benchmark tests for Linux systems to enable policy verification inline with the CIS benchmarks
  •     Support for VMware benchmarking tests inline with VMware ESX security hardening recommendations
  •     Event alerts via syslog to allow easier integration of OSSEC with other event monitoring and management products (security or operations based)
  •     New integration and management tools such as the OSSEC log-test tool which enables testing of rules created before moving them to production systems, and the syscheck and rootcheck control tools which provide optional ways of connecting and managing these OSSEC capabilities

"The community has contributed greatly to the development and nature of the feature requests, and we have accomplished more than I expected in the last two months," said Daniel Cid, Principal Researcher, OSSEC Development at Third Brigade. "It is exciting to be able to dedicate my time fully to the project, and to see the global growth of the community."

OSSEC user community comments and reactions to the latest version of OSSEC can be found at: http://www.ossec.net/main/category/news/. Individuals and organizations can join the OSSEC user community by downloading the software and contributing to the open source project at http://www.ossec.net.

Daniel Cid will be giving a tutorial on OSSEC, the open source host intrusion detection system at the Sixth Annual Conference on Privacy, Security and Trust, October 1-3, 2008 in Fredricton, New Brunswick, Canada. For more information visit: http://www.unb.ca/pstnet/pst2008/Tutorials2.htm.

About Third Brigade:
Third Brigade (http://www.thirdbrigade.com) best-of-breed host intrusion defense systems protect critical data and applications--including those on virtual machines--from attacks that bypass or penetrate network defenses, and target vulnerabilities in operating systems, and enterprise and web applications. With a high performance deep packet inspection engine, Third Brigade Deep Security detects and prevents known and zero-day attacks, and provides a virtual patch for Microsoft® Windows®, Solaris™, Linux, and other Unix® hosts on physical and virtualized systems. It helps ensure regulatory compliance with PCI and other standards, and prevents costly business disruptions. Third Brigade also owns and maintains OSSEC, the Open Source Host Intrusion Detection Project.

Note: "Third Brigade", "Deep Security Solutions", and the Third Brigade logo are trademarks of Third Brigade, Inc. and may be registered in certain jurisdictions. All other company and product names are trademarks or registered trademarks of their respective owners.

For more information:
Laura Maio
Media & Analyst Relations
Third Brigade, Inc.
(T) 613-599-4505 x2238
(M) 613-219-2800
laura.maio @ thirdbrigade.com

###

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Laura Maio
Visit website