Justin Klein Keane
Security Architect,
Main Line Health
Using OSSEC Open-Source, Host-Based Intrusion Detection
Tuesday, April 13, 2010 | 11:45AM–12:45PM | International H (6th floor)
Session Type:
Professional Development
OSSEC is a free, open-source, cross-platform, host-based intrusion detection system. The University of Pennsylvania School of Arts and Sciences has used OSSEC for several years. We utilize OSSEC to monitor several services from common servers like SSH to custom web applications. OSSEC can identify anomalous events in order to quickly identify malicious activity. Using OSSEC, we have been able to thwart numerous attacks and prevent several machines from being compromised.
