![]() The interface provides graphical analysis tools for information collected from the underlying open source software component (many of which are command line only tools that otherwise log only to a plain text file) and allows centralized management of configuration options. OSSIM performs these functions using other well-known open-source software security components, unifying them under a single browser-based user interface. This information is then correlated together to create contexts to the information not visible from one piece alone. What is OSSIM Security Information and Event Management SystemĪs a SIEM system, OSSIM is intended to give security analysts and administrators a view of all the security-related aspects of their system, by combining log management and asset management and discovery with information from dedicated information security controls and detection systems. OSSIM stands for Open Source Security Information Management, it was launched in 2003 by security engineers because of the lack of available open source products, OSSIM was created specifically to address the reality many security professionals face: A SIEM, whether it is open source or commercial, is virtually useless without the basic security controls necessary for security visibility.
0 Comments
Leave a Reply. |