/ Ambassadors
PowerShell Command Monitoring
This lab report documents the end-to-end implementation of a PowerShell Command Monitoring solution using the Wazuh SIEM platform deployed on AWS EC2.
Wazuh SOC Engineer Simulation Lab | Detection Engineering & Threat Hunting
June 10th 2026 / Ambassadors
Wazuh SOC Engineer Simulation Lab | Detection Engineering & Threat Hunting
Detecting SEO-Poisoned Fake Utility Malware with Wazuh
June 10th 2026 / Ambassadors
This blog demonstrates how Wazuh can detect behaviors associated with this attack on Windows endpoints using Sysmon process creation logs.
Operating and Maintaining Monitoring
June 10th 2026 / Ambassadors
A practical, production-ready guide to ensuring the reliability of your security monitoring platform
Wazuh + Snusbase API Integration Guide
June 9th 2026 / Ambassadors
Real-time Threat Intelligence on Data Breaches
Wazuh MCP Server
June 9th 2026 / Ambassadors
With Wazuh MCP Server, an analyst can ask: ‘What are the critical vulnerabilities on the production server?’ and receive a complete response in seconds, with live data directly from Wazuh.
Installation of Wazuh Central Components (Server, Indexer, and Dashboard) with One Command
June 8th 2026 / Ambassadors
In this video, I demonstrate how to install the Wazuh central components (Server, Indexer, and Dashboard) using a single command, following the official Wazuh Quick Start documentation.
Wazuh on K8s: 7 Frameworks, Auto-Remediation, One Chart
June 3rd 2026 / Ambassadors
This post is a technical deep-dive. Because Wazuh is the engine doing most of the heavy lifting, I want to be explicit up front about what’s native Wazuh and what this chart adds on top — that boundary matters if you’re trying to understand which parts you’d get out of the box versus what the chart contributes.