Ossec & Ossim Unified Open Source Security Info

Open Source Security Information Management by AlienVault (now AT&T Cybersecurity). It acts as a SIEM (Security Information and Event Management) platform that:

The "unified" approach relies on the specific strengths of each tool working in tandem: OSSEC & OSSIM Unified Open Source Security

Evaluates the severity of threats based on asset value and vulnerability data. How They Work Together OSSEC & OSSIM Unified Open Source Security

Automatically blocking threats (e.g., firewalling a malicious IP) in real time. OSSEC & OSSIM Unified Open Source Security

Detecting unauthorized changes to critical system files. Rootkit Detection: Identifying hidden malicious software.

AlienVault OSSIM Reviews & Ratings 2026 | Gartner Peer Insights

Scrutinizing system and application logs for suspicious patterns.