ossim
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 3
OSSIM 0704 (VMOSSIM)
OSSIM aims to unify network monitoring, security, correlation, and qualification in one single tool. more>>
OSSIM aims to unify network monitoring, security, correlation, and qualification in one single tool. The project combines Snort, BASE, NTOP, Nagios, nmap, nessus, and rrdtool to provide the user with full control over every aspect of networking or security.
Main features:
- Arpwatch, used for mac anomaly detection.
- P0f, used for passive OS detection and os change analisys.
- Pads, used for service anomaly detection.
- Nessus, used for vulnerability assessment and for cross correlation (IDS vs Security Scanner).
- Snort, the IDS, also used for cross correlation with nessus.
- Spade, the statistical packet anomaly detection engine. Used to gain knowledge about attacks without signature.
- Tcptrack, used for session data information which can grant useful information for attack correlation.
- Ntop, which builds an impressive network information database from which we can get aberrant behaviour anomaly detection.
- Nagios. Being fed from the host asset database it monitors host and service availability information.
- Osiris, a great HIDS.
Enhancements:
- VMOSSIM is a fully working OSSIM environment packaged into a VMWare image.
- Its got most of the plugins enabled and is intended for uncomplicated and fast deployment, as well as for demonstration and testing purposes.
- It incudes a set of image management scripts not included with the main OSSIM distribution, which alleviates access to OSSIM by not-so-skilled users.
<<lessMain features:
- Arpwatch, used for mac anomaly detection.
- P0f, used for passive OS detection and os change analisys.
- Pads, used for service anomaly detection.
- Nessus, used for vulnerability assessment and for cross correlation (IDS vs Security Scanner).
- Snort, the IDS, also used for cross correlation with nessus.
- Spade, the statistical packet anomaly detection engine. Used to gain knowledge about attacks without signature.
- Tcptrack, used for session data information which can grant useful information for attack correlation.
- Ntop, which builds an impressive network information database from which we can get aberrant behaviour anomaly detection.
- Nagios. Being fed from the host asset database it monitors host and service availability information.
- Osiris, a great HIDS.
Enhancements:
- VMOSSIM is a fully working OSSIM environment packaged into a VMWare image.
- Its got most of the plugins enabled and is intended for uncomplicated and fast deployment, as well as for demonstration and testing purposes.
- It incudes a set of image management scripts not included with the main OSSIM distribution, which alleviates access to OSSIM by not-so-skilled users.
Download (MB)
Added: 2007-04-24 License: GPL (GNU General Public License) Price:
600 downloads
Other version of OSSIM
OSSim Development Team - OSSIM provides advanced geo-spatial processing capabilities through a state of the art C++ software library. OSSIMLicense:LGPL (GNU Lesser General Public License)
OS-SIM 0.9.9 RC5
Ossim stands for Open Source Security Information Management. more>>
Ossim stands for Open Source Security Information Management. OS-SIMs goal is to provide a comprehensive compilation of tools which, when working together, grant a network/security administrator with detailed view over each and every aspect of his networks/hosts/physical access devices/server/etc...
Besides getting the best out of well known open source tools, some of which are quickly described below these lines, ossim provides a strong correlation engine, detailed low, mid and high level visualization interfaces as well as reporting and incident managing tools, working on a set of defined assets such as hosts, networks, groups and services.
All this information can be limited by network or sensor in order to provide just the needed information to specific users allowing for a fine grained multi-user security environment. Also, the ability to act as an IPS (Intrusion Prevention System) based on correlated information from virtually any source result in a useful addition to any security professional.
Main features:
- Arpwatch, used for mac anomaly detection.
- P0f, used for passive OS detection and os change analisys.
- Pads, used for service anomaly detection.
- Nessus, used for vulnerability assessment and for cross correlation (IDS vs Security Scanner).
- Snort, the IDS, also used for cross correlation with nessus.
- Spade, the statistical packet anomaly detection engine. Used to gain knowledge about attacks without signature.
- Tcptrack, used for session data information which can grant useful information for attack correlation.
- Ntop, which builds an impressive network information database from which we can get aberrant behaviour anomaly detection.
- Nagios. Being fed from the host asset database it monitors host and service availability information.
- Osiris, a great HIDS.
<<lessBesides getting the best out of well known open source tools, some of which are quickly described below these lines, ossim provides a strong correlation engine, detailed low, mid and high level visualization interfaces as well as reporting and incident managing tools, working on a set of defined assets such as hosts, networks, groups and services.
All this information can be limited by network or sensor in order to provide just the needed information to specific users allowing for a fine grained multi-user security environment. Also, the ability to act as an IPS (Intrusion Prevention System) based on correlated information from virtually any source result in a useful addition to any security professional.
Main features:
- Arpwatch, used for mac anomaly detection.
- P0f, used for passive OS detection and os change analisys.
- Pads, used for service anomaly detection.
- Nessus, used for vulnerability assessment and for cross correlation (IDS vs Security Scanner).
- Snort, the IDS, also used for cross correlation with nessus.
- Spade, the statistical packet anomaly detection engine. Used to gain knowledge about attacks without signature.
- Tcptrack, used for session data information which can grant useful information for attack correlation.
- Ntop, which builds an impressive network information database from which we can get aberrant behaviour anomaly detection.
- Nagios. Being fed from the host asset database it monitors host and service availability information.
- Osiris, a great HIDS.
Download (3.8MB)
Added: 2007-08-09 License: BSD License Price:
812 downloads
SIGOF 0.9 RC1
SIGOF is a Security Information Graphics Oriented Forensic application. more>>
SIGOF (Security Information Graphics Oriented Forensic) has been developped as a complement of ACID or BASE project by implementing useful and detailed graphical presentation of security information/events.
SIGOF is a web-based project, written in PHP, and it can exploit any secuity information stored in a ACID/BASE database schema (for example, SIGOF can exploit OSSIM project events, because it is based on the acid/base schema).
SIGOF introduces another way to manage security forensic and analysis by providing statistical and security trend thanks to very customizable graphics generation.
This approach provide the capability to manage large amount of security events.
<<lessSIGOF is a web-based project, written in PHP, and it can exploit any secuity information stored in a ACID/BASE database schema (for example, SIGOF can exploit OSSIM project events, because it is based on the acid/base schema).
SIGOF introduces another way to manage security forensic and analysis by providing statistical and security trend thanks to very customizable graphics generation.
This approach provide the capability to manage large amount of security events.
Download (0.021MB)
Added: 2006-04-27 License: GPL (GNU General Public License) Price:
1276 downloads
Secleted [ 0 ] software to compare
- Page: 1 of 1
- 1
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above ossim search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
