Detecting unauthorized changes to critical system files. Rootkit Detection: Identifying hidden malicious software.
Evaluates the severity of threats based on asset value and vulnerability data. How They Work Together OSSEC & OSSIM Unified Open Source Security
AlienVault OSSIM Reviews & Ratings 2026 | Gartner Peer Insights Detecting unauthorized changes to critical system files
Scrutinizing system and application logs for suspicious patterns. OSSEC & OSSIM Unified Open Source Security
Connects seemingly unrelated events from different sources to identify complex attack patterns.
Collects events from OSSEC agents and other network tools (like Snort or OpenVAS).
Open Source Security Information Management by AlienVault (now AT&T Cybersecurity). It acts as a SIEM (Security Information and Event Management) platform that: