OSSIM aims to unify network monitoring,
security, correlation, and qualification in one
single tool. It combines Snort, BASE, NTOP, Nagios, nmap, nessus, and rrdtool to provide the user with full control over every aspect of networking or security.
Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.
Diese Version verfügt über eine komplett neu geschrieben Logger mit einer riesigen Performance-Steigerung, eine HIDS Frontend, SIEM Analyse Verbesserungen wie Forensik Timeline, benutzerdefinierte Berichte von benutzerdefinierten Ansichten ableiten und geopositioning der Angreifer. Zusätzliche neue Features sind Distributed Vollständige Paketerfassung mit einem zentralen Web-Frontend, Benutzer-Management angepasst werden, um die PCI-Anforderungen, komplett neu geschrieben Dashboards, Emerging Threats Pro-Feeds Integration, individuelle und Tickets. Verbesserungen der Usability, Asset Discovery und die Update-Prozedur machen dies zu einem Major-Release.
Tags:
Major feature enhancements
This release features a completely rewritten logger with a huge performance increase, an HIDS frontend, SIEM analysis improvements like forensics timeline, custom reports derived from custom views, and geopositioning of attackers. Additional new features include Distributed Full packet capture with a centralized Web frontend, user management adjusted to PCI requirements, completely rewritten dashboards, Emerging Threats Pro feed integration, custom and tickets. Enhancements to usability, asset discovery, and the update procedure make this a major release.
