wazuh – NetwerkLABS

Wazuh: VirusTotal Integration

Wazuh Integration with VirusTotal Overview Wazuh integrates with VirusTotal to detect malicious files via the File Integrity Monitoring (FIM) module. This allows inspection of monitored files for potential threats. About…

Bharath Narayanasamy

Threat Detection and Incident Response RED TEAM DETECT

Operationalizing Security: CALDERA Meets WAZUH (PART II)

Adversary emulation with Caldera and Wazuh Please visit here to read PART I of this series, which explains the Caldera setup and Windows agent installation. Agent setup Deploy Agents on…

Bharath Narayanasamy

DETECT wazuh

Wazuh: Detecting Web Attacks

Bharath Narayanasamy

DETECT wazuh

Ingesting OPNsense logs into Wazuh SIEM

Bharath Narayanasamy

wazuh SOC Analyst Threat Detection and Incident Response

ELASTIC SIEM: Kibana Query Language (KQL)

Different Syntax Languages Kibana supports two types of syntax languages for querying in Kibana: KQL (Kibana Query Language) and Lucene Query Syntax. Kibana Query Language (KQL) is a user-friendly query language developed by Elastic…

Bharath Narayanasamy

wazuh

Remotely Upgrading Wazuh Agents – CLI Method

To upgrade agents using the command line, use the agent_upgrade tool as follows: List all the agents with outdated software: /var/ossec/bin/agent_upgrade -l [root@wazuh-server wazuh-user]# /var/ossec/bin/agent_upgrade -lID Name Version 001 zyberpatrol-pdc Wazuh v4.7.1…

Bharath Narayanasamy