Snort is slightly ahead of OSSEC because of its ability to operate on cross platforms. Snort also works along with your existing infra and doesn't put any burden on you for putting in any extra costs for replacement. Snort also filters data packets in real-time whereas OSSEC checks log files for detection of any threat.
https://wisdomplexus.com/blogs/snort-vs-ossec/ On Friday, September 1, 2006 at 9:08:19 PM UTC+5:30, Marty E. Hillman wrote: > > I am not trying to start a flame war here - just trying to get a better > sense of direction no how to best protect my network. Does anyone know > what the advantage to using OSSEC HIDS over Snort is? > > I have been playing with OSSEC quite successfully for the past week in a > demo environment, but it seems to have stopped sending email alerts > sometime last evening. I thought since I would have to do a bunch of > rebuilding that I might give other products a shot. > > I need to monitor Windows and Cisco devices and like the aggregation of > data and alerting functions within OSSEC. Does anyone have experiences > with other products that they would be willing to share? > > Marty > > This electronic mail (including any attachments) may contain information > that > is privileged, confidential, and/or otherwise protected from disclosure to > anyone other than its intended recipient(s). Any dissemination or use of > this > electronic email or its contents (including any attachments) by persons > other > than the intended recipient(s) is strictly prohibited. If you have > received > this message in error, please notify us immediately by reply email so that > we > may correct our internal records. Please then delete the original message > (including any attachments) in its entirety. Thank you. > > > -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ossec-list/969e5290-b8dc-49ed-a07c-45027e8eb371%40googlegroups.com.
