Atomic OSSEC

Atomic OSSEC is a Host-based Intrusion Detection System (HIDS) used for security detection, visibility, and compliance monitoring. It is based on a multi-platform agent that forwards system data (for example log messages, file hashes, and detected anomalies) to a central manager, where it is further analyzed and processed, resulting in security alerts. Agents convey event data to the central manager for analysis via a secure and authenticated channel.

Additionally, AEO provides a centralized syslog server and an agentless configuration monitoring system that offers security insight into events and changes on agentless devices such as firewalls, switches, routers, access points, network appliances, and similar gear.

Atomic Inspector is an OpenSearch-based analyst console installed on the hub; alerts from the hub are passed into Inspector for search and investigation workflows.

A broader comparison of Atomicorp products (ModSecurity rules, Atomic Protector, threat intelligence, licensing) is on the Product overview (detail).

• Hub Server
• Agents
• Atomic Inspector