Network and Computer Security

I’ve already featured some tools here like Nmap, OSSEC and Honeytrap, but I’m not talking about security tools nearly enough.

So this time let me introduce you to OSSIM. OSSIM stands for Open Source Security Information Management and aims to unify network monitoring, security, correlation, and qualification in one single tool. It combines Snort, Acid, MRTG, NTOP, OpenNMS, nmap, nessus and rrdtool to provide the user with full control over every aspect of networking or security. It has always been long and painfull to install and maintain many security tools at once and OSSIM allows to benefit from the best security tools in an easy and integrated way.
OSSIM has been under heavy development for a few years now and the last release (0.9.9rc2) is much easier to install than the previous versions.

If you’re in doubt you can get a feel at how it looks by looking at those OSSIM screenshots.

Links:

• OSSIM homepage
• Download OSSIM

It’s always great to have new tools to protect our assets from attackers and when those tools are free it’s even better (honeytrap is licenced under the GNU GPL licence).

Honeytrap is still a very new tool but it already provides neat services to its users by allowing to collects information regarding known or unknown network-based attacks and therefore provide early-warning information to the network/security administrator.

Honeytrap usage shouldn’t be a problem as the program is well documented. This software should also run on any “standand Unixish” operating system.

Just click here to download honeytrap!