What is Ossec?
It is a free, open-source host-based intrusion detection system. It performs log analysis, integrity checking, registry monitoring, rootkit detection, time-based alerting, and active response.
Ossec is a tool in the Security category of a tech stack.
Who uses Ossec?
Companies
5 companies reportedly use Ossec in their tech stacks, including AresRPG, sre, and Jobinja.
Developers
44 developers on StackShare have stated that they use Ossec.
Ossec's Features
- Open Source HIDS
- Multiplatform HIDS
- PCI Compliance
Ossec Alternatives & Comparisons
What are some alternatives to Ossec?
osquery
osquery exposes an operating system as a high-performance relational database. This allows you to write SQL-based queries to explore operating system data. With osquery, SQL tables represent abstract concepts such as running processes, loaded kernel modules, open network connections, browser plugins, hardware events or file hashes.
Splunk
It provides the leading platform for Operational Intelligence. Customers use it to search, monitor, analyze and visualize machine data.
Wazuh
It is a free, open source and enterprise-ready security monitoring solution for threat detection, integrity monitoring, incident response and compliance.
Snort
It is an open-source, free and lightweight network intrusion detection system (NIDS) software for Linux and Windows to detect emerging threats.
ELK
It is the acronym for three open source projects: Elasticsearch, Logstash, and Kibana. Elasticsearch is a search and analytics engine. Logstash is a server‑side data processing pipeline that ingests data from multiple sources simultaneously, transforms it, and then sends it to a "stash" like Elasticsearch. Kibana lets users visualize data with charts and graphs in Elasticsearch.
Related Comparisons