Why does Wazuh need an Elasticsearch template?
In this topic, we will see why Wazuh needs an Elasticsearch template and also you will learn key concepts and the benefits of using templates.
In this topic, we will see why Wazuh needs an Elasticsearch template and also you will learn key concepts and the benefits of using templates.
Every Android device has its system logs just like any other operating system. This post will teach you how to send these logs to a Wazuh manager instance and how to add custom decoders and rules.
We will learn how to updating the ruleset automatically. The ruleset is one of the most important parts of OSSEC and there are two ways to updating it.
In this post, we will discuss how to blocking attacks using the active response feature in OSSEC. In this example, we simulate an SSH Brute Force attack.
Today's post is about using Open Source Intelligence, OSINT and CDB lists. We're going to block all IPs that Wazuh finds in our CDB lists
Today we are pleased to announce the release of Wazuh v2.1.0. We have added new features and fixed several bugs. You can find all the details in our release notes and changelog file. Additionally, here is brief explanation of the new features: Agent anti flood protection Agents now include a mechanism to control event floods, avoiding outages, dropping events, […]
Wazuh agents move through all the stages of their life cycle, sometimes leaving agents permanently disconnected. Learn how to purge these kinds of agents.
Learn how to use the file integrity monitoring module to prevent and detect ransomware. Keep your system safe with Wazuh.
Wazuh Cloud platform has been validated as PCI DSS Level 1 Service Provider compliant. Our main priority at Wazuh is keeping our customers safe.
We are going to attack a vulnerable server using Metasploit and then we will see how to use Wazuh to detect various of its attacks. This framework is the most used penetration testing framework in the world. It contains a suite of tools that you can use to test security vulnerabilities, enumerate networks, execute attacks, and evade […]
San Jose, California, July 2024 – Wazuh, the leader in open-source Security Information and Event Management (SIEM) and Extended Detection and Response (XDR) solutions, announces a strategic partnership with ISS Technologies, a leader in delivering comprehensive Cloud and Cyber Security solutions and support services. ISS Technologies has over two decades of expertise in Cloud, Security, […]
San Jose, California, August 2023. We are glad to announce that ScaryByte has signed a partnership agreement with Wazuh. ScaryByte was created in South Africa in 2020 by a group of passionate and expert cyber security researchers with over 10 years of experience in the field. Their mission is to help the global community prevent […]
Please make sure that all words are spelled correctly.