I did a quick search through Amazon to see what books are talking about OSSEC since we published the OSSEC Host-Based Intrusion Detection Guide in February of 2008. To remind everyone, OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response. Here is a quick rundown of what I have found based on my Amazon search:
- Malware Forensics: Investigating and Analyzing Malicious Code by Cameron H. Malin, Eoghan Casey, and James M. Aquilina – mentioned here on page 644.
- Security Framework for Attack Detection in Computer Networks by Cyril Onwubiko – mentioned here on page 212.
- Computer Security: Protecting Digital Resources by Robert Newman – mentioned here on pages 272, 331, and 424.
- Security Monitoring by Chris Fry and Martin Nystrom – mentioned here on page 102.
- CompTIA Network+ All-in-One Exam Guide, Fourth Edition by Michael Meyers – mentioned here on page 403.
- Computer and Information Security Handbook (The Morgan Kaufmann Series in Computer Security) by John R. Vacca – mentioned here on page 88.
- Advances in Information Security and Assurance: Third International Conference and Workshops, ISA 2009, Seoul, Korea, June 25-27, 2009. Proceedings (Lecture … Computer Science / Security and Cryptology) by Jong Hyuk Park, Hsiao-Hwa Chen, Mohammed Atiquzzaman, and Changhoon Lee – mentioned here on pages 255 and 256.
So if all of these other authors are talking about it…why haven’t you downloaded it and purchased a copy of the book? 
Andrew Hay is a Canadian security professional, author, and speaker living in Lethbridge, Alberta, Canada.
For more information please see the 
