Ossec & Ossim Unified Open Source Security 🔔

Automatically blocking threats (e.g., firewalling a malicious IP) in real time.

Open Source Security Information Management by AlienVault (now AT&T Cybersecurity). It acts as a SIEM (Security Information and Event Management) platform that: OSSEC & OSSIM Unified Open Source Security

Evaluates the severity of threats based on asset value and vulnerability data. How They Work Together Automatically blocking threats (e

An open-source Host-based Intrusion Detection System (HIDS). It sits on your servers and endpoints to perform: Automatically blocking threats (e.g.

The "unified" approach relies on the specific strengths of each tool working in tandem: