/ Ambassadors
Wazuh SOC Engineer Simulation Lab | Detection Engineering & Threat Hunting
Wazuh SOC Engineer Simulation Lab | Detection Engineering & Threat Hunting
Detecting SEO-Poisoned Fake Utility Malware with Wazuh
June 10th 2026 / Ambassadors
This blog demonstrates how Wazuh can detect behaviors associated with this attack on Windows endpoints using Sysmon process creation logs.
Operating and Maintaining Monitoring
June 10th 2026 / Ambassadors
A practical, production-ready guide to ensuring the reliability of your security monitoring platform
Wazuh + Snusbase API Integration Guide
June 9th 2026 / Ambassadors
Real-time Threat Intelligence on Data Breaches
Wazuh MCP Server
June 9th 2026 / Ambassadors
With Wazuh MCP Server, an analyst can ask: ‘What are the critical vulnerabilities on the production server?’ and receive a complete response in seconds, with live data directly from Wazuh.
Installation of Wazuh Central Components (Server, Indexer, and Dashboard) with One Command
June 8th 2026 / Ambassadors
In this video, I demonstrate how to install the Wazuh central components (Server, Indexer, and Dashboard) using a single command, following the official Wazuh Quick Start documentation.
Wazuh on K8s: 7 Frameworks, Auto-Remediation, One Chart
June 3rd 2026 / Ambassadors
This post is a technical deep-dive. Because Wazuh is the engine doing most of the heavy lifting, I want to be explicit up front about what’s native Wazuh and what this chart adds on top — that boundary matters if you’re trying to understand which parts you’d get out of the box versus what the chart contributes.
Managing Wazuh Disk Space: Log Rotation and ISM Policies
June 3rd 2026 / Ambassadors
This blog covers both. What each system does, where it stores data, how to configure it correctly, and how to verify it’s actually working. All configuration is from the official Wazuh documentation.