Wazuh: File Integrity Monitoring
In this post, I show you how to configure and monitor File Integrity Monitoring (FIM) in Wazuh.
By
0xBEN
0xBEN
By
0xBEN
Threat Hunting with FleetDM and Osquery
Recently, the folks at Chainguard open-sourced some Osquery threat hunting queries, so I wrote a script to convert the queries to YAML docs for import into FleetDM.
By
0xBEN
Wazuh: Enhancing Zeek Logs with RITA
In this post, I demonstrate how to install and configure RITA on a NIDS node running Zeek and ingest the RITA output with Wazuh command logging.
By
0xBEN
By
0xBEN
By
0xBEN
By
0xBEN
By
0xBEN
By
0xBEN
By
0xBEN