OSSEC and Wazuh are scalable, multi-platform, open source/intrusion detection systems (HIDS). OSSEC/Wazuh helps to fulfill core regulatory compliance obligations by performing log analysis, checking file integrity, monitoring policy, detecting intrusions, and alerting and responding in real time.
Open source security implementation and consultancy
Metasure provides Open Source Security Consultancy and Implementation Services across:
- Log-based intrusion detection: Actively monitors and analyses data from multiple log data points in real time.
- File integrity monitoring: For both files and Windows registry settings in real time, detects changes to the system, and maintains a forensic copy of the data as it changes over time.
- Rootkit and malware detection: Process and file level analysis detects malicious applications and rootkits.
- Compliance auditing: Application and system level auditing ensures compliance with many common standards, such as PCI-DSS and CIS benchmarks.
- System inventory: Collects system information, such as installed software, hardware, utilization, network services, and listeners.
- Active response: Responds to attacks and changes on the system in real time through multiple mechanisms, including firewall policies, integration with third parties such as content delivery networks and support portals, as well as self-healing actions.
Many organizations choose to integrate OSSEC/Wazuh with a security information and event management (SIEM) system to report events to their security operations center (SOC). In this case, OSSEC plays the role of a log aggregator and only sends actionable information to the SIEM.
This reduces data volume in the SIEM, which cuts down on noise for SOC personnel and often results in dramatic reductions in SIEM costs.
Services Include :
ELK OSSEC Wazuh SIEM Systems Architecture
ELK OSSEC Wazuh SIEM Tweaks/Development
ELK OSSEC Wazuh SIEM Implementation
ELK OSSEC Wazuh SIEM Integration
ELK OSSEC Wazuh SIEM Migration
ELK OSSEC Wazuh SIEM Ongoing Management
ELK OSSEC Wazuh SIEM Machine Learning/AI based threat intelligence
ELK OSSEC Wazuh SIEM Training
Contact us for more info : info@metasure.co.uk