{"id":98,"date":"2009-08-13T21:32:00","date_gmt":"2009-08-13T21:32:00","guid":{"rendered":"https:\/\/defragged.org\/ossec\/?p=98"},"modified":"2020-07-02T21:33:43","modified_gmt":"2020-07-02T21:33:43","slug":"introducing-ossec","status":"publish","type":"post","link":"https:\/\/defragged.org\/ossec\/2009\/08\/introducing-ossec\/","title":{"rendered":"Introducing OSSEC"},"content":{"rendered":"\n<p>Michael Starks published a very interesting&nbsp;<a href=\"http:\/\/www.immutablesecurity.com\/index.php\/2009\/08\/07\/introducing-ossec\/\">blog post<\/a>&nbsp;on why he uses OSSEC.<\/p>\n\n\n\n<blockquote class=\"wp-block-quote\"><p>Surprisingly, I was getting much more useful information from OSSEC than I did from the commercial HIDs. What OSSEC lacked in presentation, it far made up for in actual useful, actionable information. I got alerts which indicated things I really wanted to know about. And the more I tuned, the more relevant it became. I was expecting to have to make considerable concessions by not using a commercial HIDs; what I didn\u2019t expect was to get far more value for free.<\/p><\/blockquote>\n\n\n\n<p>The guys at Hacker Target published a good document on installing OSSEC:&nbsp;<a href=\"http:\/\/hackertarget.com\/2009\/08\/ossec-introduction-and-installation-guide\/\">http:\/\/hackertarget.com\/2009\/08\/ossec-introduction-and-installation-guide\/<\/a>&nbsp;and Sucuri posted another interesting article showing the benefits of log analysis:&nbsp;<a href=\"http:\/\/blog.sucuri.net\/2009\/08\/curiosity-killed-cat.html\">http:\/\/blog.sucuri.net\/2009\/08\/curiosity-killed-cat.html<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Michael Starks published a very interesting&nbsp;blog post&nbsp;on why he uses OSSEC. Surprisingly, I was getting much more useful information from OSSEC than I did from the commercial HIDs. What OSSEC lacked in presentation, it far made up for in actual useful, actionable information. I got alerts which indicated things I really wanted to know about. [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[7],"tags":[],"_links":{"self":[{"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/posts\/98"}],"collection":[{"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/comments?post=98"}],"version-history":[{"count":1,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/posts\/98\/revisions"}],"predecessor-version":[{"id":99,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/posts\/98\/revisions\/99"}],"wp:attachment":[{"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/media?parent=98"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/categories?post=98"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/defragged.org\/ossec\/wp-json\/wp\/v2\/tags?post=98"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}