Welcome to AlienVault Labs, home of OSSIM.
Since its inception, OSSIM and by extension AlienVault, has always been about security. Security tools used by security folks in order to do real-world jobs and to help other security practitioners in their daily duties too.
It’s been 10 years since this effort started, and as security has been evolving, so have the users, security program writers, vendors and other influencers in the security community, including the so called “bad guys”, which probably are the biggest drivers of the industry.
Security, as we see it, is based on three pillars: Secure code, Prevention and Detection. It is still a long way until secure coding is a standard practice, and prevention has always failed miserably against better-than-average attackers. This leaves detection; detection which AlienVault aims at continuously enhancing through it’s unified security concept – the AlienVault Unified Security Management Platform™ (AV-USM™), detection complemented by community collaboration – the AlienVault Open Threat Exchange™ (AV-OTX™) and advanced human research.
AlienVault Labs researchers constantly monitor, analyze, reverse engineer and report on sophisticated zero-day threats including malware, botnets, phishing campaigns are more. Through this team of dedicated and renowned security experts, AlienVault contributes code, documentation, analysis and research results in various forms to the security community, to educate it and to make the world a more secure place for all of us.
AlienVault researchers publish their findings in the labs blog, the Open Source IP Reputation Portal and AlienVault Threat Intelligence subscriptions. Their discoveries have been picked up by the New York Times, Dark Reading and Mashable, contributions like the Open Source Security Event Taxonomy have been adopted by OISF (Suricata) and Snort (Sourcefire) and researchers are actively involved in the definition of Common Event Expression, the future Event standard backed by MITRE.