Strange behavior - when I try to setup agent on Windows 2012R2 or higher I need to use Window7+ toolset instead of Windows Server 2008 to deploy the agent. A little bit not intuitive. And one question - why didn't consider to use sysmonconfig-with-filedelete.xml instead of sysmonconfig.xml ? Did you test it?
Can someone suggest or show the full instructions for those who do not understand. I tried to connect the wazuh-agent over the NAT network, but eventually realized that I needed a bridge, but DHCP does not automatically give me network settings.
great info! However, I would admonish the uninitiated to parse through all GitHub content AND ALL DEPENDENCIES prior to deployment to a production environment. It is not IF, it is WHEN will this pwn the most well intentioned amongst us. Blind cut/paste of anything also has and will hurt your feelings, eventually. And if you don't understand the code completely, return when you do.
your content is pure gold
Great stuff, please keep going with this! Thanks for sharing your experience and knowledge.
Can't wait for next video. Thank you.
What about wazuh and VT integration?
Thank you!
Wazuh agent is it security or it privacy??
sysmon is indeed great tool for network connections tacking. What about sysmon for linux?
Sysmon for linux is great when it works but ive found it to not be very stable on many Linux distros
I think, that best sysmon config for SIEM is config from ionstorm
Strange behavior - when I try to setup agent on Windows 2012R2 or higher I need to use Window7+ toolset instead of Windows Server 2008 to deploy the agent. A little bit not intuitive.
And one question - why didn't consider to use sysmonconfig-with-filedelete.xml instead of sysmonconfig.xml ? Did you test it?
Can someone suggest or show the full instructions for those who do not understand. I tried to connect the wazuh-agent over the NAT network, but eventually realized that I needed a bridge, but DHCP does not automatically give me network settings.
hello hi,
can you integrate oracle database with wazuh? how to collect the logs of queries run in database in wazuh???
@Federico Pacher can you please please please make this tutorial video for monitoring oracle database in wazuh..?
Great !
Anyone running Wazuh on an enterprise level?
port 1514 arrrrghhh!!!
great info! However, I would admonish the uninitiated to parse through all GitHub content AND ALL DEPENDENCIES prior to deployment to a production environment. It is not IF, it is WHEN will this pwn the most well intentioned amongst us. Blind cut/paste of anything also has and will hurt your feelings, eventually. And if you don't understand the code completely, return when you do.