be_ixf;ym_202410 d_10; ct_50

LevelBlue OSSIM

The world’s most widely used open-source SIEM.

OSSIM
OSSIM

Overview

LevelBlue OSSIM is trusted by security professionals across the globe

LevelBlue® OSSIM™ is a feature-rich, open-source security information and event management (SIEM) that includes event collection, normalization, and correlation. LevelBlue OSSIM was launched by engineers because of a lack of available open-source products and to address the reality many security professionals face, which is that a SIEM, whether it is open source or commercial, is no good if it does not provide security visibility.

 

What's right for you?

Compare open source to commercial

 

Read the white paper

Our open-source SIEM (LevelBlue OSSIM) addresses this reality by providing one unified platform with many of the essential security capabilities you need like:

  • Asset discovery
  • Vulnerability assessment
  • Intrusion detection
  • Behavioral monitoring
  • SIEM event correlation

LevelBlue OSSIM leverages the power of LevelBlue Labs® Open Threat Exchange® (OTX™) by allowing users to both contribute and receive real-time information about malicious hosts. In addition, we provide ongoing development for LevelBlue OSSIM because we believe that everyone should have access to sophisticated security technologies to improve the security of all. From the researchers who need a platform for experimentation to the unsung heroes working to convince their companies of the need for security, LevelBlue OSSIM offers the chance to increase security visibility and control in your network.

Get the most out of LevelBlue OSSIM with these resources

 
 

Compare LevelBlue OSSIM and USM Anywhere

Which product is right for you?

USM Anywhere™ provides more advanced functionality to IT security teams with limited resources in the form of unified essential security controls and continuously updated threat intelligence.

With USM Anywhere, security practitioners can quickly and easily deploy a single platform that delivers powerful threat detection, incident response, and compliance management across cloud environments, on-premises infrastructure, and cloud apps.

 

Try USM Anywhere for Free

USM Anywhere offers:

  • Centralized threat detection and incident response across cloud environments, on-premises infrastructure, and cloud apps
  • Log management for ongoing compliance and forensics investigations
  • Advanced threat detection with real-time, prioritized alarms and minimal false positives
  • Continuous LevelBlue Labs threat intelligence so you stay up to date on emerging threats
  • Pre-built compliance reports for PCI DSS, HIPAA, NIST CSF, and more

Find the right solution for your organization

 
LevelBlue
OSSIM™
USM
Anywhere™

Product Availability

LevelBlue OSSIM:

Open-Source Software Download

USM ANYWHERE:

Cloud-Hosted Service

Pricing

LevelBlue OSSIM:

Open Source

USM ANYWHERE:

Annual Subscription Pricing

VIEW PRICING OPTIONS ›

Security Monitoring

LevelBlue OSSIM:

On-premises Physical & Virtual Environments

USM ANYWHERE:

AWS & Azure Cloud Environments

Cloud Apps

On-premises Physical & Virtual Environments

Deployment Architecture

LevelBlue OSSIM:

Single Server Only

USM ANYWHERE:

SaaS Delivery with sensors deployed in each monitored environment

Federation-ready

Security Capabilities:

Asset Discovery & Inventory

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Vulnerability Assessment

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Intrusion Detection

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Behavioral Monitoring

LevelBlue OSSIM:
 
USM ANYWHERE:
 

SIEM event Correlation

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Log Management

LevelBlue OSSIM:
 
USM ANYWHERE:
 

AWS & AZURE Cloud monitoring
learn more ›

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Cloud Apps Security Monitoring

LevelBlue OSSIM:
 
USM ANYWHERE:
 
Additional Features:

Security Orchestration & Automation
learn more ›

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Integration With Third-party Ticketing Software (JIRA, ServiceNow)
learn more ›

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Community Support via product Forums

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Powered by the Open Threat Exchange
learn more ›

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Continuous Threat Intelligence
learn more ›

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Dedicated Phone & Email support

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Online Product Documentation & Knowledge Base

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Rich Analytics Dashboards & Data visualization

LevelBlue OSSIM:
 
USM ANYWHERE:
 

Interested in a Managed Security Solution?

Discover the Benefits of Managed Security

LevelBlue OSSIM Resources

Download ISO

ISO MD5: 25b42e54f846a75bbe59aba97a2a1fe

Download source code

TAR MD5: aacb6899a0cc3682a1749432c4ce3a1c

Product News

Documentation center

LevelBlue OSSIM-specific technical documentation is not currently available. Because LevelBlue OSSIM has many features in common with LevelBlue USM, you may be able to use the USM technical documentation.

USM Anywhere Success Center

Our Cybersecurity Resource Center

Get price Free trial