Blog / Engineering / Detecting SharpHound Active Directory activities with Wazuh

SharpHound is a data collection tool, and BloodHound is an analysis and visualization tool; together, they help identify and visualize active directory (AD) trust relationships and privilege escalation paths within a network. SharpHound leverages the native Windows API and LDAP namespace functions to collect data from Domain controllers and domain-joined systems. Such information includes what […]

Blog / Engineering / Container vulnerability scanning with Wazuh and Snyk

Conducting container vulnerability scans is an approach to protecting containers and the infrastructure that supports them. Containers provide isolated environments for applications, maintaining consistency across other platforms. Detecting and resolving security threats within containers through container vulnerability scanning is an essential proactive security practice. This is important given the dynamic nature of software and the […]

Blog / Engineering / Load balancing a Wazuh server cluster using NGINX

In this blog post, we demonstrate how to configure an NGINX network load balancer using the hash algorithm.

Blog / Releases / Wazuh v3.12.0 released

Wazuh 3.12.0 is released. This new version comes with lots of additions and improvements. Check out the highlights.

Blog / Releases / Wazuh 4.0 released

We are glad to announce that Wazuh 4.0.0 is released. Discover the new additions and improvements here! Wazuh is now better than ever.

Blog / News / Wazuh Partners with connecT SYSTEMHAUS AG to Enhance Managed Security

San Jose, California, November 2025 – Wazuh, the leading open-source Security Information and Event Management (SIEM) and Extended Detection and Response (XDR) solution, announced a partnership with connecT SYSTEMHAUS AG, an owner-managed IT services provider based in Siegen, Germany. The partnership enables connecT to expand its Managed Security Services with Wazuh’s SIEM and XDR capabilities, […]