Wazuh: Exploring the OwlH Integration
In this post, I explore the OwlH integration with Wazuh and the convenience of the centralized NIDS configuration management it offers.
Defensive cybesecurity, blue teaming
In this post, I explore the OwlH integration with Wazuh and the convenience of the centralized NIDS configuration management it offers.
In this post, I go over the procedure of migrating from OpenDistro Elasticsearch to Wazuh Indexer, OpenDistro Kibana to Wazuh Dashboard, and Wazuh 4.2 to Wazuh 4.3.
In this post, I show how I implemented and worked around some issues while adding an enhanced ruleset mapping Sysmon events to ATT&CK IDs.
The Wazuh team announced a new major version, 4.3. The Proxmox home lab guide on my blog points to installing 4.2 and I wanted to make a note for new or returning readers about the new announcement.
In this post, I demonstrate how I installed the Wazuh agent on a pfSense host and ingested some logs into my SIEM.
In this post, I show you how to horizontally scale your Elasticsearch single-node setup to a multi-node cluster.
I will try to keep this list continuously updated with training and informational resources for different areas that could benefit students and professionals of cybersecurity and IT
In this module, we will take a look at the process setting up a comprehensive Wazuh SIEM, including a NIDS and some HIDS agents, in our Proxmox home lab.
In this post, we will take a look at an in-detail process of setting up a Proxmox home lab on a bare metal server.