On Sat, Oct 23, 2010 at 5:16 PM, Michael Starks <[email protected]> wrote: > On 10/23/2010 09:12 AM, Michael Starks wrote: >> >> On this day, we'll try to take some of what we have learned and develop >> a plan of action. We'll take the combined community intelligence and see >> if we can make it real. Feel free to jump in with your talents to solve >> a problem! Everything helps. >> > > As for myself, I am going to continue to work on Windows rules. After they > are at a point where I am satisfied, I plan on creating something like a > rule style guide so we have a standard for new submissions. This will enable > us to make better use of rules that look for groups, etc, if we know that, > for example, every rule will have a group. >
A rules style guide would be something I'd definitely be interested in helping out with. I'll be writing a bunch of (non-Windows ;) rules myself, so keeping them consistent would be nice. > Making OSSEC easier to use in the enterprise is another general goal of > mine. > > I have access to a lot of different types of enterprise apps and network > devices, so there is more than I have time to add. That's always the > problem.. time. > > -- > Michael Starks > [I] Immutable Security > http://www.immutablesecurity.com > I'll continue working on my WIP rules, hopefully growing the applications list a bit. I've also got a few ideas for the code, so learning C is on my list of things to do in my spare time.
