I don't think most of the rules are written because of a standard.
On Tue, Aug 9, 2011 at 5:56 PM, Abdellah Tantan <[email protected]> wrote: > Are the ossec rules based on popular security standards like owasp. For > example modsecurity - an apache module that acts as a web application > firewall within apache - has rules called owasp rules created based on owasp > web security standards. > > Thanks, > > -----Original Message----- > From: [email protected] [mailto:[email protected]] On > Behalf Of Abdellah Tantan > Sent: Tuesday, August 09, 2011 4:07 PM > To: [email protected] > Subject: [ossec-list] OSSEC Rules > > Hi, > > Does anybody know if OSSEC is based on any of the security standards, such > as NIST, OWASP, CIS...etc? > > Thanks, > Abdellah > >
