OSSEC на страже ваших серверов | OSSEC guarding your servers

Course details

    OSSEC , , . , , .

, -.

cybersecurity Email //, OSSEC Linux Windows.

- OSSEC ( Docker, Ansible)

- OSSEC

-

- OSSEC NextCloud ( )

- - OSSEC

- ELK (Elastic seach / Logstash / Kibana)

- OSSEC

-   OSSEC cli

, OSSEC

EN: A few months ago, I tried to find available information on OSSEC, quality information was not so much, and the whole it was scattered throughout the Internet. I had to make a lot of effort to collect it all together, and even more forces in order to figure it out in detail and create a course.

These lectures for those who want to learn the first important steps of cybersecurity immediately in practice, be able to quickly respond to important events and be a confident administrator in their IT infrastructure.

You will learn to monitor the cybersecurity of servers using email notifications / Telegram /Charts, and correctly use the OSSEC intrusion detection system to monitor network nodes on Linux and Windows platforms.

- Get acquainted with several ways to install OSSEC servers and agents (including Docker, Ansible)

- We study the OSSEC architecture and will figure it out how it works

- We learn from what consists are active response and what communication between the rules

- How to create your own rules for OSSEC on the example of the NEXTCLOUD application (cloud files storage)

- Install a simple web interface to display our OSSEC events.

- We will deal with advanced analysis of events in the ELK stack (Elastic Seach / Logstash / Kibana) with a beautiful output of all information in diagrams and convenient dashboard

- We will touch on the main problems with installing and configuring OSSEC and quick search and solution

- as well as instructions for working with OSSEC reports through its components with the CLI interface

This is a unique course, as it affects all aspects of the OSSEC application and with a detailed explanation of each of the components.