In recent years increasing waves of attacks with ransomware have been reported targeting different business sectors. This particular type of malware is designed to deny access to a computer system [...]
Wazuh agents move through all the stages of their life cycle, sometimes leaving the agents permanently disconnected or never connected. This post describes how to purge these kinds of agents [...]
Today we are pleased to announce the release of Wazuh v2.1.0. We have added new features and fixed several bugs. You can find all the details in our release notes and [...]
Today's post is about using Open Source Intelligence, OSINT, and CDB lists.
In this post, we will discuss how to block an attack using the active response feature in OSSEC. Active response allows OSSEC to run commands on an agent in response to certain triggers.
The ruleset is one of the most important parts of OSSEC. Thanks to the ruleset, OSSEC is able to detect attacks, intrusions, software misuse, configuration problems, application errors, malware, rootkits, [...]