Integrating AWS CloudTrail in Wazuh

Blog / Engineering / Integrating AWS CloudTrail in Wazuh

This post focuses on setting up Wazuh to collect events delivered by AWS CloudTrail which provides useful information about the AWS infrastructure, such as the instance configuration, unauthorized behavior, API...

Sibling decoders: flexible extraction of information

Blog / Engineering / Sibling decoders: flexible extraction of information

A key feature in Wazuh is its high capacity for expansion, which allows our users to adapt its behavior to an infinite set of needs. Our development team and the...

Wazuh index management

Blog / Engineering / Wazuh index management

Wazuh helps you comply with the security standards in which logs are required to be maintained for several months so that they can be provided on the spot in case...

Index backup management

Blog / Engineering / Index backup management

In this post you will find how to configure Elasticsearch to automatically back up your Wazuh indices in local or Cloud-based storage and restore them at any given time, both...

Improved CloudFormation templates for Wazuh PoC Guide

After posting this article I wanted to improve the template for the PoC guide, when deploying this template it allows to choose…

Logging all commands executed by any user in Linux to Wazuh

There are many options to log all commands from a user or all users in Linux to Wazuh…

Deploy Wazuh Lab of PoC Guide in 5 minutes with AWS CloudFormation

For IT professionals and anyone taking their first steps into cybersecurity a good place to start learning is with the open source product Wazuh…