| Latest development snapshots | ||
|---|---|---|
| Server/Agent | https://github.com/ossec/ossec-hids/releases | |
| Packages | https://updates.atomicorp.com/channels/ossec-3-testing | |
| Web UI | https://github.com/ossec/ossec-wui/releases | |
| Docs | https://github.com/ossec/ossec-docs | |
| Latest Stable Release (3.2.0) | Checksum | Signature | |
|---|---|---|---|
| Server/Agent Unix | ossec-hids-3.2.0.tar.gz – Release Notes | GPG Unix | |
| Agent Windows | ossec-agent-win32-3.2.0.exe | GPG Windows | |
| Chocolatey Package | ossec-client.3.2.0.nupkg | ||
| Virtual Appliance | ossec-vm-2.9.3.ova – README | VA Checksum | |
| Docker Container | atomicorp/ossec-docker | ||
| v3.2.0 | Download | Checksum | Signature |
|---|---|---|---|
| Unix Server/Agent | ossec-hids-3.2.0.tar.gz | SHA256 b36cc4db73c265f5fd65f2b5450d69e332316612b5602a3e310ae8907e9d2548 | GPG-unix-v3 |
| Windows Agent | ossec-agent-win32-3.2.0.exe | SHA256 ea291d729a14991cac0025d5de36d2cf516f6fdb0fa4f9ef4d99f428f46651bc | GPG-windows-v3 |
Available in the Atomicorp repository.
| Amazon Linux | |
|---|---|
| Amazon | https://updates.atomicorp.com/channels/ossec/amazon/1/x86_64/RPMS/ |
| Amazon (LTS) | https://updates.atomicorp.com/channels/ossec/amazon/2/x86_64/RPMS/ |
Automated installer:
OSSEC# Add Yum repo configuration
wget -q -O - https://updates.atomicorp.com/installers/atomic | sudo bash
# Server
sudo yum install ossec-hids-server
# Agent
sudo yum install ossec-hids-agent
sudo rpm -Uvh atomic-release*rpm
# Server
sudo yum install ossec-hids server
# Agent
sudo yum install ossec-hids-agent
# Add Apt sources.lst
wget -q -O - https://updates.atomicorp.com/installers/atomic | sudo bash
# Update apt data
sudo apt-get update
# Server
sudo apt-get install ossec-hids-server
# Agent
sudo apt-get install ossec-hids-agent
wget -q -O - https://www.atomicorp.com/RPM-GPG-KEY.atomicorp.txt | sudo apt-key add -
source /etc/lsb-release
# Ubuntu
echo "deb https://updates.atomicorp.com/channels/atomic/ubuntu $DISTRIB_CODENAME main" >> /etc/apt/sources.list.d/atomic.list
# Debian
echo "deb https://updates.atomicorp.com/channels/atomic/debian $DISTRIB_CODENAME main" >> /etc/apt/sources.list.d/atomic.list
# Update apt data
sudo apt-get update
# Server
sudo apt-get install ossec-hids-server
# Agent
sudo apt-get install ossec-hids-agent
| Key | Manual Download Link |
| Package Signing Key | https://www.atomicorp.com/RPM-GPG-KEY.atomicorp.txt |
| Source Signing Key c | https://ossec.github.io/files/OSSEC-ARCHIVE-KEY.asc |
Before you install any package from our project, we recommend that you verify it using our PGP key. Follow these two steps if you are not used to using gpg. You first need to import our public key:
# wget https://ossec.github.io/files/OSSEC-ARCHIVE-KEY.asc
# gpg --import OSSEC-ARCHIVE-KEY.asc
And then verify each file against its signature:
ossec-test# gpg --verify file.asc
You should get the following result:
gpg: Signature made Tue 20 Dec 2016 11:35:58 AM EST using RSA key ID 2D8387B7
gpg: Good signature from "Scott R. Shinn <scott@atomicorp.com>"
Primary key fingerprint: B50F B194 7A0A E311 45D0 5FAD EE1B 0E6B 2D83 87B7
Note that the signing key was changed in December 2016. The previous signing key “6F11 9E06 487A AF17 C84C E48A 456B 17CF A390 1351” has expired. If you get an warning saying “gpg: Note: This key has expired!”, make sure to update the key and run the “import” command again (as specified above).
Several of the OSSEC Project Team members have presented at conferences. Here is a collection of materials from some of those presentations.
If you find ossec useful and would like to contribute back to the community, please contact us. We have a lot of work to do and any help is appreciated.