ossec-does-elasticsearch-225x225

OSSEC Log Management with Elasticsearch

Among the many useful features of OSSEC is its capability to send alerts to any system that can consume syslog data. This makes it easy to combine OSSEC with a number of 3rd party SIEMs to store, search and visualize security events.  Splunk for OSSEC is one such system that works on top of the Splunk…

hadoop-meets-ossec-225x225

Securing Hadoop with OSSEC

Hadoop has built-in security facilities such as kerberos user authentication, encrypted RPC between system nodes and file encryption. While these are important features, Hadoop clusters can benefit from host intrusion detection to round out the security picture. That’s where a system like OSSEC comes in. Find out how I’ve applied OSSEC to monitor and detect…

twitter-safety-225x225

Staying Safe on Twitter

Recently I received an email allegedly sent to me by one of my new Twitter followers.  When I clicked on the link I was taken to a site that offered up a fake Twitter login page that indicated my Twitter session had expired and asked for my login credentials. Clearly this was a phishing attack…