This article explains that collecting Sysmon telemetry should focus on broader system activity, not just isolated events.

The article introduces a script called wi-prefix-report that analyzes a Wazuh indexer and reports shard counts and disk usage by index pattern. This helps administrators understand how different index types consume cluster resources, enabling better capacity planning and more informed ILM and storage decisions.

Free tools to check which privacy laws apply to your business, audit website compliance, strip file metadata, and secure your digital identity.

In this video, we walk through how to uncover hidden Active Directory security risks using Ping Castle and bring those findings into your Wazuh SIEM stack so your SOC team can actually act on them.

The post explains how to perform bulk updates across historical Wazuh alert indices by using an ingest pipeline and reindexing process to modify or correct fields efficiently.

Wazuh Cloud setup with Ubuntu agents and tested three core security capabilities.

This article highlights a little-known Wazuh dashboard behavior that can suddenly hide all past alerts when changing hostnames or migrating to a cluster, potentially causing major visibility issues.