OSSEC Presentations at AusCERT/Confidence

During the month of May I went to AusCERT (Australia) and Confidence (Poland) to talk about OSSEC (i.e. Log analysis using OSSEC).

On both presentations I mentioned LIDS (Log-Based intrusion detection), and provided an overview of the ossec architecture and how to write decoders and rules.

If you want to learn a bit more about ossec, take a look at them.

**Note that both presentation slides are very similar, but the AusCERT one is a bit more organized, so recommended to be read first.

Hope you enjoy!

Posted in   ossec   presentations     by Daniel Cid (dcid)

Coding for fun and profit. Often fun and little profit.