One unified platform
for complete protection

Wazuh delivers robust security monitoring and protection for your IT assets using its Security Information and Event Management (SIEM) and Extended Detection and Response (XDR) capabilities. Wazuh use cases are designed to safeguard your digital assets and enhance your organization's cybersecurity posture.

These use cases encompass File Integrity Monitoring (FIM) ensuring the integrity of your critical files, Security Configuration Assessment (SCA) fortifying your system configurations against potential threats, Vulnerability Detection pinpointing potential weaknesses before they are exploited, and others. Explore our use cases and capabilities below.

Use cases

Discover Wazuh, the all-in-one security platform

An open source cybersecurity platform that integrates SIEM and XDR capabilities in a unique solution.

Wazuh Security Platform

Central components

Wazuh indexer Wazuh Indexer

The Wazuh indexer is a highly scalable full-text search and analysis engine. It is responsible for indexing and storing alerts generated by the Wazuh server. It can be installed as a single-node or multi-node cluster, depending on the environment needs.

Wazuh server Wazuh Server

The server manages the agents, configuring and updating them remotely when necessary. This component analyzes the data received from the agents, processing it through decoders and rules and using threat intelligence to look for indicators of compromise.

Wazuh dashboard Wazuh Dashboard

A flexible and intuitive web interface for data mining, analysis, and visualization. The dashboard is used to manage the Wazuh configuration and monitor its status.

Endpoint security agent

Wazuh agent Wazuh Agent

The Wazuh agent is a multi-platform component that runs on the endpoints to be monitored. It provides prevention, detection, and response capabilities.

Deployment options

Kubernetes logo
Puppet logo
Ansible logo
Docker logo

Learn how Wazuh can
help your organization