Beginner’s guide: OSSIM Part 2

Image
Hope all of you are keeping well. Thank you all for the overwhelming support you people are giving me. So today we’ll deal with everything from basic OSSIM configuration to integrating different types of assets. Before we jump in to all of that I hope all of you are ready with installation. If not please visit my previous post, which is actually the first part. Beginner’s guide: OSSIM (Open Source Security Information Management) part 1 Make sure you have an active internet connection for your OSSIM. As you all know the Alienvault platform has five modules in it, which are the Asset discovery, vulnerability assessment, threat detection, behavioural monitoring and security intelligence. In simple words we add assets first, and then we’ll configure all those assets under each and every module of Alienvault respectively. If you're ready with everything mentioned in part 1, we can now move forward with the configurations. Here we’re just considering only OSSIM not USM....

About

Hello all,

Just like you, I'm also a Information security enthusiast.
The biggest challenge in infosec is that, when we are stuck, we have a very limited resources to look on, and have no idea which one to trust.In this blog I will be publishing all those stuff in detail, which I've learned from my past experience. This reminds me a quote which I've read.  

"Mistakes are the best lessons, while experience is the best teacher"

I have been working on both cyber security and information security for past few years.This blog is intended to help security admins in identifying and managing their current security issues. We'll start from the scratch, from the very basics, build our own test environment, play around, break things, and we'll have lots and lots of adventures and fun, in the areas of Vulnerability Assessment, Penetration testing, Security Information and Event Management, PT standards. 


Thanks & Regards

Jenson Jacob

Comments

Popular posts from this blog

Beginner’s guide: OSSIM (Open Source Security Information Management) part 1

Beginner’s guide: OSSIM Part 2

Beginner’s guide: How to setup a SOC (Security Operations Center)