.

Looking for people who have tried OSSEC

<<

supafly613

User avatar

Newbie
Newbie

Posts: 12

Joined: Fri Feb 02, 2007 8:12 am

Location: Fredericton, New Brunswick, Canada

Post Sun Aug 12, 2007 7:02 pm

Looking for people who have tried OSSEC

Hey All,

I'm currently in talks with a publisher to co-author a book on OSSEC (http://www.ossec.net) with Daniel Cid, the founder and lead developer of the project.

What the publisher has asked me for is some quotes/endorsements on why a book on this product is needed and/or why I am the right person to write a book on this topic.

I'd appreciate help from the community on this and if you'd be willing to be quoted on why a book is needed on this program and/or provide an endorsement of yours truly then please post it here or if you'd rather let me know directly then please email me at andrewsmhay@gmail.com.

If you'd like more of a background on me then please check out http://www.andrewhay.ca/about/.

I really need this by the end of the week (Friday, August 17th) if possible.  Thanks everyone...I know you won't let me down!
Andrew Hay
NSA, CCSE Plus, CCNA, Security+, RHCE, GCIA, GCIH, SSP-MPA, SSP-CNSA
blog: http://www.andrewhay.ca
email: andrewsmhay || at || gmail.com
<<

boney

User avatar

Jr. Member
Jr. Member

Posts: 61

Joined: Mon Jan 15, 2007 8:46 am

Location: India

Post Mon Aug 13, 2007 9:00 pm

Re: Looking for people who have tried OSSEC

OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, integrity checking, Windows registry monitoring, rootkit detection, real-time alerting and active response.

It runs on most operating systems, including Linux, OpenBSD, FreeBSD, MacOS, Solaris and Windows.


For people like us, we can understand the entire content of the project just by reading ' Open Source Host-based Intrusion Detection System', we later digg the issue and research on it.

Well there are many people(geeks) who like to review on books and discuss or make an opinion about it.

Honestly, there is no need for a book on this topic, but to reach people from all walks of life, a book will help.
Along with publicity of the project, the book will also spread information.

Readibility is what cyber success is all about.
Last edited by boney on Mon Aug 13, 2007 9:05 pm, edited 1 time in total.
C|EH

All my life I wanted a computer...
Now I want my life back !
<<

morpheus063

User avatar

Sr. Member
Sr. Member

Posts: 393

Joined: Sun Jun 25, 2006 10:08 am

Location: Cochin - India

Post Mon Aug 13, 2007 11:32 pm

Re: Looking for people who have tried OSSEC

As mentioned by Boney, to reach the mass people, a well written book is always the best option.

Answering the questions projected by the publisher:

Why a book is needed on this subject?
Currently no book is available in the market on the subject and as we all are aware, the average techie guys prefer books than documentation.  :)

Why you are the right person for this book?
Quite simple - just go through your profile - you have contributed a lot to the information security field. An active member of many security movements with multiple certifications and rich experience obviously makes you the right candidate for this subject.

Wishing you all the best for the project. Also looking forward for more contributions from you on OSSEC to EH-Net.
Manu Zacharia
MVP (Enterprise Security), ISLA-2010 (ISC)², C|EH, C|HFI, CCNA, MCP,
Certified ISO 27001:2005 Lead Auditor

[b]There are 3 roads to spoil; women, gambling & hacking. The most pleasant with women, the quickest with gambling, but the surest is hacking - c0c0n
<<

supafly613

User avatar

Newbie
Newbie

Posts: 12

Joined: Fri Feb 02, 2007 8:12 am

Location: Fredericton, New Brunswick, Canada

Post Wed Aug 15, 2007 5:19 am

Re: Looking for people who have tried OSSEC

Honestly, there is no need for a book on this topic, but to reach people from all walks of life, a book will help.
Along with publicity of the project, the book will also spread information


I can't tell if this is an endorsement for a book or not :)
Andrew Hay
NSA, CCSE Plus, CCNA, Security+, RHCE, GCIA, GCIH, SSP-MPA, SSP-CNSA
blog: http://www.andrewhay.ca
email: andrewsmhay || at || gmail.com
<<

boney

User avatar

Jr. Member
Jr. Member

Posts: 61

Joined: Mon Jan 15, 2007 8:46 am

Location: India

Post Wed Aug 15, 2007 10:47 am

Re: Looking for people who have tried OSSEC

I can't tell if this is an endorsement for a book or not


I dint understand that.
C|EH

All my life I wanted a computer...
Now I want my life back !
<<

Negrita

User avatar

Sr. Member
Sr. Member

Posts: 299

Joined: Sat Sep 10, 2005 5:45 pm

Location: /dev/null

Post Wed Aug 15, 2007 3:09 pm

Re: Looking for people who have tried OSSEC

boney wrote:
I can't tell if this is an endorsement for a book or not


I dint understand that.


Neither did Andrew, but it's you who wrote that, so....  ::)
CEH, CCSA NG/AI, NNCSS, MCP, MCSA 2003

There are 10 kinds of people, those that understand binary, and those that don't.
<<

linuxstarved

EH-Net Columnist
EH-Net Columnist

Posts: 49

Joined: Sat Sep 23, 2006 9:55 am

Post Thu Aug 16, 2007 9:27 am

Re: Looking for people who have tried OSSEC

Andrew,

I don't know if it will help, but feel free to use anything in my article http://www.ethicalhacker.net/content/view/154/24/ I think the point you should emphasize is that SourceFire has cornered the market, and for the sake of open source OSSEC should do everything it can to get known.

If you took a survey, I bet a lot of people have never heard of OSSEC, but they have probably heard of snort. OSSEC is the future, most people just aren't aware of it.

Also as a suggestion, it would be great if you could include a dvd with a vid of installations and advanced techniques, some people learn best by watching then emulating...fwiw
<<

supafly613

User avatar

Newbie
Newbie

Posts: 12

Joined: Fri Feb 02, 2007 8:12 am

Location: Fredericton, New Brunswick, Canada

Post Thu Aug 16, 2007 10:29 am

Re: Looking for people who have tried OSSEC

Also as a suggestion, it would be great if you could include a dvd with a vid of installations and advanced techniques, some people learn best by watching then emulating...fwiw


We've already included that in our proposal for the book :)
Andrew Hay
NSA, CCSE Plus, CCNA, Security+, RHCE, GCIA, GCIH, SSP-MPA, SSP-CNSA
blog: http://www.andrewhay.ca
email: andrewsmhay || at || gmail.com
<<

linuxstarved

EH-Net Columnist
EH-Net Columnist

Posts: 49

Joined: Sat Sep 23, 2006 9:55 am

Post Mon Aug 27, 2007 7:16 pm

Re: Looking for people who have tried OSSEC

Any movement on your proposal?  Glad to hear about the dvd...
<<

jimbob

Post Tue Aug 28, 2007 4:31 am

Re: Looking for people who have tried OSSEC

This thread has inspired me to take a look at OSSEC and it looks promising. Getting a book out soon might make it to the market as the first on this subject. I've not had a chance to test OSSEC much yet over and above doing the installation, but I especially like the client/server approach. Too many desktop products require big money to have a centralised, managed reporting solution.

Jimbob

Return to Opinions

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software