OSSIM, The Open Source SIEM
Screenshots
Description
OSSIM provides a Security Information and Event Management (SIEM) solution, and a framework that allows tight control over widely distributed enterprise networks from a single location.
Categories
License
Update Notifications
User Ratings
User Reviews
-
Easy tool to use
-
good job os-sim
-
os-sim works great
-
Hi, I'm started to use OSSIM 4 days ago and and find it powerful system, I read the official documentation, i found that AlienVault Pro is diferenced from OSSIM by two major things: 1- The use of Logger ( Storage of data every 5 days( the parameter can be changed) in system of massive storage like SAN, 2- VPN access. Today, i found in the section Analysis-->Security Events (SIEM) --> Configure a parameter: Active Event Window (days). This parameter permit to configure the number of days that the storage of data can de done. Please, What'is the difference between the two parameters in both versions (OpenSource and Pro)? Did OSSIM Open Source able to store data stored on DataBase periodically ? Thank you at advance.
-
Best free software SIM/SEM I know so far. Nessus/OpenVAS, nmap, Nagios, Snort, Syslog/Snare etc. all in one place. Not perfect yet, but already really cool - to be recommended! ;) (In German we would call such an appliance "Eier legende Wollmilch-Sau".)
-
Excelent SIM