OSSEC HIDS 3.0 Snapshots

Posted on by Scott R. Shinn

OSSEC 3.0 release candidate builds are available from our testing Yum/Apt repo for the following distributions: Amazon Linux Amazon Linux LTS RHEL / Centos 6 RHEL / Centos 7 Debian 7 / 8 Ubuntu 14 / 16 Fedora 24 / 25 / 26 / 27 Windows Updates for Fedora 28, Ubuntu 18, and Kali linux […]

Join us on Slack!

Posted on by Scott R. Shinn

We’re in the process of opening up our slack channel: https://ossec.slack.com/ to the public. At the moment its still set up to require us to send invites, if you’re interested send us an email at: ossec@atomicorp.com And if you’re a slack hacker, you should really join us. We need the help!

OSSEC CON 2018

Posted on by Scott R. Shinn

Thanks again for everyone who attended OSSEC Con 2018, it was fantastic meeting everyone and hearing how you’re using OSSEC. I’d especially like to thank our sponsors: Virgil Security, Prometheus Global, Atomicorp and Cyber Academy. We’ve got some really exciting changes coming up soon! We’ve started collecting the slides from the show here: https://atomicorp.com/ossec-conference-2018/ Want […]

OSSEC CON 2014 Recap

Posted on by Scott R. Shinn

OSSEC CON 2014 was held in Cork Ireland this year to promote OSSEC in EMEA where we have many users. This year we had several members of the current OSSEC Team speak to our audience. Jeremy Rossi, currently the OSSEC Development Manager, told us about some of the OSSEC open source history and shared the […]

OSSEC Virtual Appliance 2.8.1 Available

Posted on by Scott R. Shinn

I have updated the OSSEC Virtual Appliance to include OSSEC 2.8.1 and Elasticsearch-Logstash-Kibana (ELK) log management and the ElasticHQ system to handle ELK monitoring. It is a single gzipped OVA that can be easily imported into VirtualBox or any other virtualization system that supports OVA files. Look for it in the Downloads section.

OSSEC Commercial Support Contracts

Posted on by Scott R. Shinn

OSSEC Commercial Support contracts will no longer be available directly from Trend Micro as of March 2014; however all existing agreements will continue to be fully supported until the end of their respective terms. If you are still interested in OSSEC and require commercial support, Trend Micro is aware of some 3rd party vendors who […]

OSSEC 2.8 Beta-1 is Available

Posted on by Scott R. Shinn

The OSSEC developers have been hard at work on version 2.8 and we have made Beta-1 packages available for testing. See theDownloads page. Helps us with the testing and fine tuning of this preliminary release.

CVE-2014-0160 (Heartbleed bug) Advisory for OSSEC

Posted on by Scott R. Shinn

The recently disclosed CVE-2014-0160 vulnerability – heartbleed read overrun – in OpenSSL may impact OSSEC installations where OSSEC was deployed with OpenSSL support, either when built from source or installed from RPMs. In particular this issue leaves ossec-authd open to attack. The CVE-2014-0160 vulnerability has been fixed in OpenSSL 1.0.1g. OSSEC users are advised to […]

Debian Packages Now Available

Posted on by Scott R. Shinn

Our friends at AlienVault have created and now host Debian packages of OSSEC for Ubuntu Wheezy, Jessie and Sid. See the Downloads page for the links to the packages and AlienVault’s repositories. Thanks to OSSEC Project team member Santiago Gonzalez for taking the time to create these packages and AlienVault for hosting them And just […]

OSSEC Moving to Github

Posted on by Scott R. Shinn

OSSEC is moving from bitbucket to github, and in the process moving to a new method for accepting contributions. This is an exciting change that we feel will help push OSSEC forward in 2014 and further into the future. oRFC:1 Collective Code Construction Contract (Adapted from ZeroMQ’s C4). The overall goals of the change are […]