Deploying Wazuh agents using ManageEngine

Deploying Wazuh agents using ManageEngine

Post icon
/ Engineering
By

Wazuh is an open source security platform that offers Extended Detection and Response (XDR) and Security Information and Event Management (SIEM) capabilities to organizations. It provides security to IT infrastructure through real-time monitoring, threat detection, log analysis, vulnerability detection, and automated incident response. By collecting and analyzing security data from endpoints, Wazuh enables organizations to […]

Read more
Post icon
/ Engineering

Deploying Wazuh agents using ManageEngine

By

Wazuh is an open source security platform that offers Extended Detection and Response (XDR) and Security Information and Event Management (SIEM) capabilities to organizations. It provides security to IT infrastructure through real-time monitoring, threat detection, log analysis, vulnerability detection, and automated incident response. By collecting and analyzing security data from endpoints, Wazuh enables organizations to […]

Read more
Exploring security alerting options for improved threat detection in Wazuh – Part 1

Exploring security alerting options for improved threat detection in Wazuh – Part 1

Post icon
/ Engineering
By

Security alerting enables organizations to promptly detect potential security incidents, allowing for rapid response and risk mitigation. Organizations can immediately prevent breaches, comply with regulatory requirements, and optimize operational efficiency by receiving timely alerts. Automated security alerting streamlines incident response processes, minimizing downtime and optimizing resource usage while demonstrating a commitment to proactive security measures. […]

Read more
Post icon
/ Engineering

Exploring security alerting options for improved threat detection in Wazuh – Part 1

By

Security alerting enables organizations to promptly detect potential security incidents, allowing for rapid response and risk mitigation. Organizations can immediately prevent breaches, comply with regulatory requirements, and optimize operational efficiency by receiving timely alerts. Automated security alerting streamlines incident response processes, minimizing downtime and optimizing resource usage while demonstrating a commitment to proactive security measures. […]

Read more
Monitoring Windows resources with Performance Counters

Monitoring Windows resources with Performance Counters

Post icon
/ Engineering
By and

Windows Performance Counter provides an in-depth and consistent interface for collecting different types of system data such as processor, memory, and disk usage statistics. Performance counters can be used to monitor system resources and performance. Windows performance counter data can be viewed in real time with the perfmon utility or alternatively, through the Powershell cmdlet […]

Read more
Post icon
/ Engineering

Monitoring Windows resources with Performance Counters

By and

Windows Performance Counter provides an in-depth and consistent interface for collecting different types of system data such as processor, memory, and disk usage statistics. Performance counters can be used to monitor system resources and performance. Windows performance counter data can be viewed in real time with the perfmon utility or alternatively, through the Powershell cmdlet […]

Read more
Enhancing incident response with Wazuh and DFIR-IRIS integration

Enhancing incident response with Wazuh and DFIR-IRIS integration

Post icon
/ Engineering
By and

DFIR-IRIS is an open source platform for case management and incident response, enabling incident responders to document, track, and analyze security incidents. It supports remote investigations by allowing responders to access and share technical details about incidents, fostering collaboration and coordinated responses to threats. Integrating DFIR-IRIS with the Wazuh XDR and SIEM platform provides a […]

Read more
Post icon
/ Engineering

Enhancing incident response with Wazuh and DFIR-IRIS integration

By and

DFIR-IRIS is an open source platform for case management and incident response, enabling incident responders to document, track, and analyze security incidents. It supports remote investigations by allowing responders to access and share technical details about incidents, fostering collaboration and coordinated responses to threats. Integrating DFIR-IRIS with the Wazuh XDR and SIEM platform provides a […]

Read more
Wazuh Announces Strategic Partnership with Seculibrium

Wazuh Announces Strategic Partnership with Seculibrium

Post icon
/ News
By

San Jose, California, July 2024 – Wazuh, a leader in open-source Security Information and Event Management (SIEM) and Extended Detection and Response (XDR) solutions, announces a strategic partnership with Seculibrium, a cybersecurity firm specializing in comprehensive security services. Seculibrium delivers cybersecurity solutions that include threat detection, incident response, and compliance management. The partnership with Wazuh […]

Read more
Post icon
/ News

Wazuh Announces Strategic Partnership with Seculibrium

By

San Jose, California, July 2024 – Wazuh, a leader in open-source Security Information and Event Management (SIEM) and Extended Detection and Response (XDR) solutions, announces a strategic partnership with Seculibrium, a cybersecurity firm specializing in comprehensive security services. Seculibrium delivers cybersecurity solutions that include threat detection, incident response, and compliance management. The partnership with Wazuh […]

Read more
Streamlining container image security with Grype and Wazuh

Streamlining container image security with Grype and Wazuh

Post icon
/ Engineering
By

Grype is a lightweight, open source tool for scanning container images and filesystems for vulnerabilities. It examines container image layers and dependencies to identify known vulnerabilities in the software packages installed within the image. By inspecting each layer and its contents, Grype helps you proactively uncover potential security risks before deploying the container image into […]

Read more
Post icon
/ Engineering

Streamlining container image security with Grype and Wazuh

By

Grype is a lightweight, open source tool for scanning container images and filesystems for vulnerabilities. It examines container image layers and dependencies to identify known vulnerabilities in the software packages installed within the image. By inspecting each layer and its contents, Grype helps you proactively uncover potential security risks before deploying the container image into […]

Read more
Wazuh and Arcasafe sign a partnership agreement

Wazuh and Arcasafe sign a partnership agreement

Post icon
/ News
By

San Jose, California, May 2024 – Wazuh, a leader in open-source Security Information and Event Management (SIEM) and Extended Detection and Response (XDR) solutions, is pleased to announce a partnership with Arcasafe, an ICT technology company offering a comprehensive ecosystem of cybersecurity solutions and compliance expertise. Arcasafe integrates Wazuh’s platform to deliver advanced cybersecurity services […]

Read more
Post icon
/ News

Wazuh and Arcasafe sign a partnership agreement

By

San Jose, California, May 2024 – Wazuh, a leader in open-source Security Information and Event Management (SIEM) and Extended Detection and Response (XDR) solutions, is pleased to announce a partnership with Arcasafe, an ICT technology company offering a comprehensive ecosystem of cybersecurity solutions and compliance expertise. Arcasafe integrates Wazuh’s platform to deliver advanced cybersecurity services […]

Read more
Monitoring MongoDB database using Wazuh

Monitoring MongoDB database using Wazuh

Post icon
/ Engineering
By

MongoDB is a non-relational database system known for its flexibility, scalability, and performance. Unlike relational databases that use tables with predefined structures, MongoDB stores data in key, value pairs. MongoDB has features that include high performance, query API, horizontal scalability, and high availability. It is supported by Linux, Windows, and macOS operating systems.  Wazuh is […]

Read more
Post icon
/ Engineering

Monitoring MongoDB database using Wazuh

By

MongoDB is a non-relational database system known for its flexibility, scalability, and performance. Unlike relational databases that use tables with predefined structures, MongoDB stores data in key, value pairs. MongoDB has features that include high performance, query API, horizontal scalability, and high availability. It is supported by Linux, Windows, and macOS operating systems.  Wazuh is […]

Read more
Hunting for Linux credential access attacks with Wazuh

Hunting for Linux credential access attacks with Wazuh

Post icon
/ Engineering
By

Credential access attacks are cyber attacks that aim to obtain users’ login credentials. These credentials can include usernames, passwords, security tokens, or other authentication information. They remain one of the critical security threats for organizations. It enables adversaries to gain unauthorized access to systems, facilitating lateral movement and privilege escalation within the targeted environment. This […]

Read more
Post icon
/ Engineering

Hunting for Linux credential access attacks with Wazuh

By

Credential access attacks are cyber attacks that aim to obtain users’ login credentials. These credentials can include usernames, passwords, security tokens, or other authentication information. They remain one of the critical security threats for organizations. It enables adversaries to gain unauthorized access to systems, facilitating lateral movement and privilege escalation within the targeted environment. This […]

Read more
Introducing Wazuh 4.8.0

Introducing Wazuh 4.8.0

Post icon
/ Releases
By

We are thrilled to announce the release of Wazuh 4.8.0. This update introduces a rework of the Wazuh Vulnerability Detector module and improvements to the Wazuh dashboard user interface (UI) and user experience (UX). It includes updates to the VirusTotal integration and the MITRE ATT&CK database among others. Key highlights Redesigned Vulnerability Detector module The […]

Read more
Post icon
/ Releases

Introducing Wazuh 4.8.0

By

We are thrilled to announce the release of Wazuh 4.8.0. This update introduces a rework of the Wazuh Vulnerability Detector module and improvements to the Wazuh dashboard user interface (UI) and user experience (UX). It includes updates to the VirusTotal integration and the MITRE ATT&CK database among others. Key highlights Redesigned Vulnerability Detector module The […]

Read more
Wazuh multi-site implementation

Wazuh multi-site implementation

Post icon
/ Engineering
By

Wazuh multi-site implementation offers a solution that helps organizations unify their security monitoring capabilities across multiple geographically dispersed locations or sites. This implementation focuses on having Wazuh cluster components that collect, process, and store logs from the Wazuh agents within each site. A single Wazuh dashboard displays security alerts generated from events occurring in monitored […]

Read more
Post icon
/ Engineering

Wazuh multi-site implementation

By

Wazuh multi-site implementation offers a solution that helps organizations unify their security monitoring capabilities across multiple geographically dispersed locations or sites. This implementation focuses on having Wazuh cluster components that collect, process, and store logs from the Wazuh agents within each site. A single Wazuh dashboard displays security alerts generated from events occurring in monitored […]

Read more
Load balancing a Wazuh server cluster using NGINX

Load balancing a Wazuh server cluster using NGINX

Post icon
/ Engineering
By and

In this blog post, we demonstrate how to configure an NGINX network load balancer using the hash algorithm.

Read more
Post icon
/ Engineering

Load balancing a Wazuh server cluster using NGINX

By and

In this blog post, we demonstrate how to configure an NGINX network load balancer using the hash algorithm.

Read more
Wazuh and Exeo sign a partnership agreement

Wazuh and Exeo sign a partnership agreement

Post icon
/ News
By

San Jose, California, May 2024 – Wazuh, a leader in open-source Security Information and Event Management (SIEM) and Extended Detection and Response (XDR) solutions, is pleased to announce a strategic partnership with Exeo, a multi-specialist Managed Services Cloud and Cybersecurity provider. This partnership aims to enhance cybersecurity measures for businesses across Europe, the Middle East, […]

Read more
Post icon
/ News

Wazuh and Exeo sign a partnership agreement

By

San Jose, California, May 2024 – Wazuh, a leader in open-source Security Information and Event Management (SIEM) and Extended Detection and Response (XDR) solutions, is pleased to announce a strategic partnership with Exeo, a multi-specialist Managed Services Cloud and Cybersecurity provider. This partnership aims to enhance cybersecurity measures for businesses across Europe, the Middle East, […]

Read more
Keep up to date
with our digest of articles