forked from ossec/ossec.github.io
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathabout.html
263 lines (224 loc) · 13.4 KB
/
about.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>About — OSSEC</title>
<link rel="stylesheet" href="_static/basic.css" type="text/css" />
<link rel="stylesheet" href="_static/pygments.css" type="text/css" />
<link rel="stylesheet" href="_static/bootstrap-3.2.0/css/bootstrap.min.css" type="text/css" />
<link rel="stylesheet" href="_static/bootstrap-3.2.0/css/bootstrap-theme.min.css" type="text/css" />
<link rel="stylesheet" href="_static/bootstrap-sphinx.css" type="text/css" />
<link rel="stylesheet" href="_static/parallax.css" type="text/css" />
<script type="text/javascript">
var DOCUMENTATION_OPTIONS = {
URL_ROOT: './',
VERSION: '2.8.3',
COLLAPSE_INDEX: false,
FILE_SUFFIX: '.html',
HAS_SOURCE: true
};
</script>
<script type="text/javascript" src="_static/jquery.js"></script>
<script type="text/javascript" src="_static/underscore.js"></script>
<script type="text/javascript" src="_static/doctools.js"></script>
<script type="text/javascript" src="_static/js/jquery-1.11.0.min.js"></script>
<script type="text/javascript" src="_static/js/jquery-fix.js"></script>
<script type="text/javascript" src="_static/bootstrap-3.2.0/js/bootstrap.min.js"></script>
<script type="text/javascript" src="_static/bootstrap-sphinx.js"></script>
<link rel="author" title="About these documents" href="#" />
<link rel="top" title="OSSEC" href="index.html" />
<meta charset='utf-8'>
<meta http-equiv='X-UA-Compatible' content='IE=edge,chrome=1'>
<meta name='viewport' content='width=device-width, initial-scale=1.0, maximum-scale=1'>
<meta name="apple-mobile-web-app-capable" content="yes">
<link href="http://netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.min.css" rel="stylesheet">
<style type="text/css">
ul.ablog-archive {list-style: none; overflow: auto; margin-left: 0px}
ul.ablog-archive li {float: left; margin-right: 5px; font-size: 80%}
</style>
</head>
<body role="document">
<div id="navbar" class="navbar navbar-inverse navbar-default ">
<div class="container">
<div class="navbar-header">
<!-- .btn-navbar is used as the toggle for collapsed navbar content -->
<button type="button" class="navbar-toggle" data-toggle="collapse" data-target=".nav-collapse">
<span class="icon-bar"></span>
<span class="icon-bar"></span>
<span class="icon-bar"></span>
</button>
<a class="navbar-brand" href="index.html"><img src="_static/ossec_logo_bare_small.png">
OSSEC</a>
<span class="navbar-text navbar-version pull-left"><b>2.8</b></span>
</div>
<div class="collapse navbar-collapse nav-collapse">
<ul class="nav navbar-nav">
<li><a href="#">About <i class="fa fa-info-circle"></i></a></li>
<li><a href="blog.html">Blog <i class="fa fa-archive"></i></a></li>
<li><a href="docs/">Documentaton <i class="fa fa-book"></i></a></li>
<li><a href="downloads.html">Downloads <i class="fa fa-download"></i></a></li>
<li class="dropdown globaltoc-container">
<a role="button"
id="dLabelGlobalToc"
data-toggle="dropdown"
data-target="#"
href="index.html">Site <b class="caret"></b></a>
<ul class="dropdown-menu globaltoc"
role="menu"
aria-labelledby="dLabelGlobalToc"></ul>
</li>
</ul>
<form class="navbar-form navbar-right" action="search.html" method="get">
<div class="form-group">
<input type="text" name="q" class="form-control" placeholder="Search" />
</div>
<input type="hidden" name="check_keywords" value="yes" />
<input type="hidden" name="area" value="default" />
</form>
</div>
</div>
</div>
<div class="container">
<div class="row">
<div class="col-md-3">
<div id="sidebar" class="bs-sidenav" role="complementary"><ul>
<li><a class="reference internal" href="#">About</a><ul>
<li><a class="reference internal" href="#ossec-is-free">OSSEC is Free</a></li>
<li><a class="reference internal" href="#widely-used">Widely Used</a></li>
<li><a class="reference internal" href="#support-options">Support Options</a><ul>
<li><a class="reference internal" href="#community-support">Community Support</a><ul>
<li><a class="reference internal" href="#ossec-github">OSSEC Github</a></li>
<li><a class="reference internal" href="#ossec-users-group-on-google">OSSEC Users Group on Google</a></li>
<li><a class="reference internal" href="#ossec-developers-group-on-google">OSSEC Developers Group on Google</a></li>
</ul>
</li>
<li><a class="reference internal" href="#commercial-support">Commercial Support</a></li>
</ul>
</li>
<li><a class="reference internal" href="#ossec-team">OSSEC Team</a></li>
<li><a class="reference internal" href="#former-ossec-team-members">Former OSSEC Team Members</a></li>
</ul>
</li>
</ul>
</div>
</div>
<div class="col-md-9">
<div class="section" id="about">
<h1>About<a class="headerlink" href="#about" title="Permalink to this headline">¶</a></h1>
<p>OSSEC is a scalable, multi-platform, open source Host-based Intrusion Detection System (HIDS).
It has a powerful correlation and analysis engine, integrating log analysis, file integrity
checking, Windows registry monitoring, centralized policy enforcement, rootkit detection,
real-time alerting and active response.It runs on most operating systems, including Linux,
OpenBSD, FreeBSD, MacOS, Solaris and Windows.</p>
<p>Check out <a class="reference external" href="http://ossec.github.io/docs/whatsnew/index.html">What’s New</a> for the latest release info.</p>
<div class="section" id="ossec-is-free">
<h2>OSSEC is Free<a class="headerlink" href="#ossec-is-free" title="Permalink to this headline">¶</a></h2>
<p>OSSEC is a free software and will remain so in the future; you can redistribute it and/or
modify it under the terms of the GNU General Public License (version 2) as published by the
FSF – Free Software Foundation.</p>
</div>
<div class="section" id="widely-used">
<h2>Widely Used<a class="headerlink" href="#widely-used" title="Permalink to this headline">¶</a></h2>
<p>OSSEC is a growing project, with more than 5,000 downloads per month on average. It is being
used by ISPs, universities, governments and even large corporate data centers as their main
HIDS solution. In addition to being deployed as an HIDS, it is commonly used strictly as a
log analysis tool, monitoring and analyzing firewalls, IDSs, web servers and authentication
logs.</p>
</div>
<div class="section" id="support-options">
<h2>Support Options<a class="headerlink" href="#support-options" title="Permalink to this headline">¶</a></h2>
<p>There are a number of options for both community and commercial support for OSSEC.</p>
<div class="section" id="community-support">
<h3>Community Support<a class="headerlink" href="#community-support" title="Permalink to this headline">¶</a></h3>
<div class="section" id="ossec-github">
<h4>OSSEC Github<a class="headerlink" href="#ossec-github" title="Permalink to this headline">¶</a></h4>
<p>You can post issues and get caught up on OSSEC development at the <a class="reference external" href="https://github.com/ossec/ossec-hids">OSSEC Github account</a>.</p>
</div>
<div class="section" id="ossec-users-group-on-google">
<h4>OSSEC Users Group on Google<a class="headerlink" href="#ossec-users-group-on-google" title="Permalink to this headline">¶</a></h4>
<p>Questions about installation, usage and configuration should be sent to this list. It has a low volume of messages
(around 120/150 per month) and is the best way to have your questions answered.</p>
<p>Please note that the “community” support is provided by volunteers, and even though they will do their best to answer
and help you, this may not be always possible. The rules are: be polite and provide enough information so everyone can
understand your issue.</p>
<p>To subscribe to the <strong>ossec-list</strong>:</p>
<ul class="simple">
<li>Send an email to <strong>ossec-list+subscribe@googlegroups.com</strong> with the subject of <strong>Subscribe ossec-list</strong>.</li>
<li>Messages should be sent to <a class="reference external" href="mailto:ossec-list%40googlegroups.com">ossec-list<span>@</span>googlegroups<span>.</span>com</a></li>
</ul>
<p>To unsubscribe:</p>
<p>Send an email to <strong>ossec-list+unsubscribe@googlegroups.com</strong>.</p>
</div>
<div class="section" id="ossec-developers-group-on-google">
<h4>OSSEC Developers Group on Google<a class="headerlink" href="#ossec-developers-group-on-google" title="Permalink to this headline">¶</a></h4>
<p>Development questions, patches and anything related to coding should be sent to the ossec-dev list. It has a
very low volume of messages (around 20/30 per month) and is highly technical.</p>
<p>To subscribe to <strong>ossec-dev</strong>:</p>
<ul class="simple">
<li>Send an e-mail to <strong>ossec-dev+subscribe@googlegroups.com</strong> with the subject of <strong>Subscribe ossec-dev</strong>.</li>
<li>Messages should be sent to <strong>ossec-dev@googlegroups.com</strong>.</li>
</ul>
<p>To unsubscribe:</p>
<ul class="simple">
<li>Send an email to <strong>ossec-dev+unsubscribe@googlegroups.com</strong>.</li>
</ul>
</div>
</div>
<div class="section" id="commercial-support">
<h3>Commercial Support<a class="headerlink" href="#commercial-support" title="Permalink to this headline">¶</a></h3>
<p><strong>Atomicorp</strong> is the producer of Atomic Secured Linux™ which features a secure Linux system that
includes OSSEC as one of its core technologies. Atomicorp provides comprehensive support services
for all your security needs including deployment assistance and post-sale support for OSSEC. The
company has long been involved with the OSSEC Project and currently builds the OSSEC RPM packages
for each release. You can find out more about Atomicorp product and support offereings by contacting
their sales team at <a class="reference external" href="mailto:sales%40atomicorp.com">sales<span>@</span>atomicorp<span>.</span>com</a> or visiting their products listing page at:
<a class="reference external" href="https://atomicorp.com/product-listing/">https://atomicorp.com/product-listing/</a>.</p>
<p><strong>Wazuh</strong> offers OSSEC support and maintenance to enterprise users, as well as tuning services to
help them get in compliance with regulations like PCI DSS or HIPAA, or security benchmarks like
CIS. Wazuh also currently build and maintain the OSSEC installers for Linux Debian and Ubuntu
distributions. You can find out more about these services reaching the sales team at <a class="reference external" href="mailto:contact%40wazuh.com">contact<span>@</span>wazuh<span>.</span>com</a>,
or visiting their website at: <a class="reference external" href="http://www.wazuh.com/professional-services/#OSSECHIDSServices">http://www.wazuh.com/professional-services/#OSSECHIDSServices</a>.</p>
</div>
</div>
<div class="section" id="ossec-team">
<h2>OSSEC Team<a class="headerlink" href="#ossec-team" title="Permalink to this headline">¶</a></h2>
<p>OSSEC was originally developed by Daniel Cid. The core OSSEC Team consists of the following team of
developers and committers to the project:</p>
<p><strong>Jeremy Rossi</strong> – OSSEC Development Manager – jeremy (at) jeremyrossi.com</p>
<p><strong>Dan Parriott</strong> – Community support, docs, rules, testing – ddpbsd (at) gmail.com</p>
<p><strong>Scott R. Shinn</strong> – RPM repositories, rules, tools integration – scott (at) atomicorp.com</p>
<p><strong>Santiago Gonzalez</strong> – DEB repositories, SIEM integration – santiago (at) wazuh.com</p>
<p><strong>Brad Lhotsky</strong> – Development, system integration, rules – brad . lhotsky (at) gmail.com</p>
<p><strong>Andrew Widdersheim</strong> – Development, testing, rules – awiddersheim (at) hotmail.com</p>
<p><strong>Vic Hargrave</strong> – SIEM integration, webmaster, development – vichargrave (at) gmail.com</p>
<p><strong>Jia-Bing (JB) Cheng</strong> – SIEM integration, community support – Jia-BingJB_Cheng (at) trendmicro.com</p>
</div>
<div class="section" id="former-ossec-team-members">
<h2>Former OSSEC Team Members<a class="headerlink" href="#former-ossec-team-members" title="Permalink to this headline">¶</a></h2>
<p><strong>Daniel B. Cid</strong> – Founder of the OSSEC Project – dcid (at) dcid.me</p>
<p><strong>Michael Starks</strong> – Community Support, rules</p>
<div class="line-block">
<div class="line"><br /></div>
</div>
</div>
</div>
<div class="section">
</div>
</div>
</div>
</div>
<footer class="footer">
<div class="container">
<p class="pull-right">
<a href="#">Back to top</a>
</p>
<p>
© Copyright 2010-2015, OSSEC Project Team.<br/>
OSSEC trademark and domain owned by <a href="http://www.trendmicro.com" target="_blank">Trend Micro, Inc.</a><br/>
Created using <a href="http://sphinx.pocoo.org/">Sphinx</a> 1.3.1 -
Home page graphics courtesy of <a href="https://pixabay.com" target="_blank">pixabay</a>
</p>
</div>
</footer>
</body>
</html>