Daniel B. Cid is the lead developer and author of OSSEC, an open source HIDS and log analysis tool. He has been working with network security and software development for many years and holds a special passion for log analysis and host-based intrusion detection.
Daniel is currently working at Q1 Labs as a software engineer and has in the past worked at Sourcefire, NIH and at a few other companies as a security consultant.
Daniel can be contacted at dcid @ ( at ) ossec.net .
This presentation will provide a technical overview of how ossec works, how it does its internal analysis and correlation and how you can expand it for your own needs. The following topics will be covered:
1 What is ossec