Description
At this point, you have been introduced to various security tools (Network Discovery, Network Scanning, DLP, Firewalls, and HIDS). You are to take one of the five identified categories of tools and identify two specific products from different vendors. Based on two products, please research the differences and similarities between the two products. You should also evaluate the implementation issues you may face with each product. Based on your research, please create a PowerPoint or a similar presentation to explain your research and your findings of the tools. The presentation should be comparative in nature as to highlight the similarities between the two products you researched.
The presentation must contain the following:
- Product Background
- Pros and Cons of each product
- Side by Side comparison
- Recommendation
PowerPoint Requirements
- Easy to follow and understand
- Ratio of words to background (Essentially, not too many words on a slide. Highlight the essentials)
- Graphics – Charts, Graphs, Illustrations, etc.
- Other – media – Audio, Video, etc.
- Safe – Assignment comparison will be done
Explanation & Answer
Attached.
Tool Comparison: Samhain vs. OSSEC
Student’s name
Institution
Date
Introduction to Intrusion Detection System
❖We compare Samhain
vs. OSSEC
But first lets watch this video to
understand the components
Intrusion Detection System
Udacity, 2016, June 06. Courtesy YouTube
Background
OSSEC
❖ It is a type of Host Intrusion Detection System (HIDS)
❖Trend Micro owns it
❖It is a multiplatform, open source and free HIDS
❖It is installed on each computer that one wants to protect.
❖It helps organizations meet specific compliance requirements.
❖It detects and alerts on unauthorized file system modification and
malicious behavior.
Background
Samhain
❖It is another type of HIDS
❖Its main function is to monitor changes to files on systems.
❖It operates mostly on Operating system that runs POSIX.
❖Its web-based console is Beltane
Pros and Cons
Pros of OSSEC
❖Agents for almost every OS.
❖Lots of functionality.
❖Simple installation process.
❖Good community support.
�...