OSSEC HIDS is an Open Source Host-based Intrusion Detection System. It performs log analysis, integrity checking, rootkit detection, time-based alerting and active response. It runs on most operating systems, including Linux, OpenBSD, FreeBSD, Solaris and Windows.
This new release comes with multiple features, including support for
Modsecurity logs, MS exchange, MS FTPD and Windows firewall logs. It
also includes a port to HP-UX and numerous bug fixes and new
features.