Could you please post the docs you use to do these videos and also links to related videos? I jumped into this one and I had no idea how to install wazuh in the configuration that you have in this video... I also have no idea what a wodle is.
Correct, you could mount a volume to the container that grabs the log files that you want and have your wazuh-agent read that volume mount. I also recommend Falco: github.com/falcosecurity/falco but I plan on covering that soon! Thanks for watching :)
Could you please post the docs you use to do these videos and also links to related videos? I jumped into this one and I had no idea how to install wazuh in the configuration that you have in this video... I also have no idea what a wodle is.
very insightful!!, but this is tutorial for docker host i think, and then how to monitor inside container with wazuh ? Thanks!
Correct, you could mount a volume to the container that grabs the log files that you want and have your wazuh-agent read that volume mount. I also recommend Falco: github.com/falcosecurity/falco but I plan on covering that soon!
Thanks for watching :)
Very nice videos, keep doing thoses for the ultimate Open Source SIEM :)
Hey Leonardo, thanks for watching and for the kind words :)
Very good video, thank you
Thanks for watching :)
Windows agents are sending docker events to wazuh