OSSEC HIDS is an Open Source Host-based Intrusion Detection System. It performs log analysis, file integrity checking, registry monitoring, rootkit detection, time-based alerting and active response. It runs on most operating systems, including Linux, *BSD, Windows and Mac.
OSSEC version 1.0 is now publicly available. This version comes with numerous new features, including support for: * Registry monitoring on Windows * Dynamic/nat'ed IP addresses in the server/agent communication * ASL (Apple system log) * Lotus domino * Symantec AV * Windows RAR A full list with all the functionatilies and bug fixes are available here: http://www.ossec.net/announcements/v1.0-2007-01-15.txt Make sure to check, as well, our new web interface (in beta) for monitoring your logs and ossec alerts. Download the new version (and the web interface) here: http://www.ossec.net/en/downloads.html More information here: http://www.ossec.net/wiki/index.php/News Checksums: MD5 (ossec-hids-1.0.tar.gz) = 28e914b6f914f2f9fcbd7e8758b6ba4a SHA1 (ossec-hids-1.0.tar.gz) = c521b03b4d4e7e07da5fc10afc2012a2b937e597 MD5 (ossec-agent-win32-1.0.exe) = 9d21ccee018d51850689a556b29b3387 SHA1 (ossec-agent-win32-1.0.exe) = 9dd53252ebfb31dd00f8d67c98f6d2a65115d368 Thanks, -- Daniel B. Cid dcid ( at ) ossec.net __________________________________________________ Fale com seus amigos de graça com o novo Yahoo! Messenger http://br.messenger.yahoo.com/ ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw to learn more. ------------------------------------------------------------------------
