Hello people ! I want to know how works the RootKit detection with Ossec.
How to configure the periodic scan like the integrity check ? With the integrity check an option nammed "frequency" is present. Perhaps is it only manual check ? An another question, what is the advantage to use a database with Ossec ? Thanks for this info ! Have a nice day, Bob
