Grupos
Iniciar sesión
Grupos
ossec-list
Conversaciones
Información
Enviar comentarios
Ayuda
ossec-list
Contactar con los propietarios y administradores
1-30 de 6991
Marcar todo como leído
Denunciar grupo
0 grupos seleccionados
Eric Hankins
, …
Joël Stienlet
8
25 feb
ossec and system updates: forcing immediate syscheck
Hello Mike, Sorry for digging this up, but a search on google lead me to this discussion. Is there
no leída,
ossec and system updates: forcing immediate syscheck
Hello Mike, Sorry for digging this up, but a search on google lead me to this discussion. Is there
25 feb
Satwika sree
,
dan (ddp)
2
8/12/23
Custom logo for each agent group
Ossec doesn't show any logos. What application are you seeing logos in? On Fri, Dec 8, 2023 at 9:
no leída,
Custom logo for each agent group
Ossec doesn't show any logos. What application are you seeing logos in? On Fri, Dec 8, 2023 at 9:
8/12/23
Dosimbek Umarov
26/11/23
HIDs agent syslog(/var/log/mysql/mysql.log) alerts not showing in analysis/security_events but is showing in environment/detection/hids Alerts Log. How can I did that so hids alerts showing in security_events.
**Phase 1: Completed pre-decoding. full event: '023 Nov 26 16:10:49 (bd-2) 192.168.110.3->/var
no leída,
HIDs agent syslog(/var/log/mysql/mysql.log) alerts not showing in analysis/security_events but is showing in environment/detection/hids Alerts Log. How can I did that so hids alerts showing in security_events.
**Phase 1: Completed pre-decoding. full event: '023 Nov 26 16:10:49 (bd-2) 192.168.110.3->/var
26/11/23
Secure moi
2
21/8/23
Only Getting Rule 18107 alerts
PS change in apporach....how about a really simple example of a custom rule and decoder for server
no leída,
Only Getting Rule 18107 alerts
PS change in apporach....how about a really simple example of a custom rule and decoder for server
21/8/23
Thavorn Vann
16/6/23
Agents 3.7 Windows 10 never connected
Hi, I'm trying to connect from agent to server but it show error below: 2023/06/16 11:29:33 ossec
no leída,
Agents 3.7 Windows 10 never connected
Hi, I'm trying to connect from agent to server but it show error below: 2023/06/16 11:29:33 ossec
16/6/23
hiwot
6/6/23
how to solve this problem dears?
Siem v4.4.3 (Rev. 40409) Installation Script - https://www.siem.com You are about to start the
no leída,
how to solve this problem dears?
Siem v4.4.3 (Rev. 40409) Installation Script - https://www.siem.com You are about to start the
6/6/23
Jeff Chimene
3/5/23
Wordpress
I'm trying to improve ossec WordPress rules. I'd like to start a list of generic WordPress
no leída,
Wordpress
I'm trying to improve ossec WordPress rules. I'd like to start a list of generic WordPress
3/5/23
Lãm Ngô
2
7/4/23
hi all
Vào lúc 17:25:32 UTC+7 ngày Thứ Sáu, 7 tháng 4, 2023, Lãm Ngô đã viết: i can't login to gmail
no leída,
hi all
Vào lúc 17:25:32 UTC+7 ngày Thứ Sáu, 7 tháng 4, 2023, Lãm Ngô đã viết: i can't login to gmail
7/4/23
Nidhi Soni
,
victor....@wazuh.com
3
30/3/23
Detection for hidden ports
Hi, I have installed reptile rootkit and did the required configurations as given in wazuh blog:
no leída,
Detection for hidden ports
Hi, I have installed reptile rootkit and did the required configurations as given in wazuh blog:
30/3/23
Michael Starling
28/3/23
Rule 554 firing instead of rule 500
Hello. I'm seeing a strange issue when running some tests on rule 550 "Integrity checksum
no leída,
Rule 554 firing instead of rule 500
Hello. I'm seeing a strange issue when running some tests on rule 550 "Integrity checksum
28/3/23
Secure moi
2
13/1/23
Filter alerts by ID and Date
Still struggling with this....and am guessing the documentation is out there to solve it but... Q is
no leída,
Filter alerts by ID and Date
Still struggling with this....and am guessing the documentation is out there to solve it but... Q is
13/1/23
Alex
17/10/22
Alpine Linux installaton without systemd
I want to install Ossec Server on Alpine Linux following the instructions on the homepage for the
no leída,
Alpine Linux installaton without systemd
I want to install Ossec Server on Alpine Linux following the instructions on the homepage for the
17/10/22
Peter P
13/10/22
Agents 3.6 Centos 7 never connected
Hi, I'm trying to troubleshoot not connecting OSSEC agents 3.6 running on Centos 7, with a Server
no leída,
Agents 3.6 Centos 7 never connected
Hi, I'm trying to troubleshoot not connecting OSSEC agents 3.6 running on Centos 7, with a Server
13/10/22
Bhaskar Patel
9/10/22
want to enable 2fector on the wazuh-indexer console
"I need to enable 2fector on the wazuh-indexer console is it possible? Does anyone have an idea
no leída,
want to enable 2fector on the wazuh-indexer console
"I need to enable 2fector on the wazuh-indexer console is it possible? Does anyone have an idea
9/10/22
Michael Gaffney
6/10/22
Agents will not Connect to server
Hello, I am having trouble getting my agents to talk to the server. I keep getting the following
no leída,
Agents will not Connect to server
Hello, I am having trouble getting my agents to talk to the server. I keep getting the following
6/10/22
Kristian Kirilov
,
victor....@wazuh.com
2
3/10/22
Is there a way to use nodiff with folders?
Hello kristian, The nodiff the option is aimed to avoid data leaking by sending the content of
no leída,
Is there a way to use nodiff with folders?
Hello kristian, The nodiff the option is aimed to avoid data leaking by sending the content of
3/10/22
sparks....@gmail.com
2/8/22
Agentless Suspend alerts during system updates
Hello good day, to ask for your help. I have version 3.7 of OSSEC installed where I only work with
no leída,
Agentless Suspend alerts during system updates
Hello good day, to ask for your help. I have version 3.7 of OSSEC installed where I only work with
2/8/22
ABHISHEKH LADE
,
Daniel Cid
2
30/7/22
ossec 3.6 configration
What errors are you getting when you try to install? If you can give more details, maybe we will be
no leída,
ossec 3.6 configration
What errors are you getting when you try to install? If you can give more details, maybe we will be
30/7/22
M Asif
,
dan (ddp)
2
15/7/22
Install ossec in windows as standalone (local mode)
That's not supported. Windows is an agent only platform. On Tue, Jul 12, 2022 at 1:34 PM M Asif
no leída,
Install ossec in windows as standalone (local mode)
That's not supported. Windows is an agent only platform. On Tue, Jul 12, 2022 at 1:34 PM M Asif
15/7/22
tater bug
27/6/22
When unexpected happens. After try many fixes multiple times, then send an e-mail to one of our mailing lists with the following information:
root-laptop:/var/ossec/logs# /var/ossec/bin# cat /etc/ossec-init.conf -bash: /var/ossec/bin#: No such
no leída,
When unexpected happens. After try many fixes multiple times, then send an e-mail to one of our mailing lists with the following information:
root-laptop:/var/ossec/logs# /var/ossec/bin# cat /etc/ossec-init.conf -bash: /var/ossec/bin#: No such
27/6/22
Annie s
, …
Paterson Lali
8
10/6/22
windows AR not working
Hi, I was able to generate wrong password events after editing the audit policies of windows. log all
no leída,
windows AR not working
Hi, I was able to generate wrong password events after editing the audit policies of windows. log all
10/6/22
JP H
,
Alejandro Ruiz Gonzalez
3
5/5/22
Report limit on specific servers
Thank you, I was able to figure out what I needed based on the information in that link. J On
no leída,
Report limit on specific servers
Thank you, I was able to figure out what I needed based on the information in that link. J On
5/5/22
Miguel Jacq
,
Yana Zaeva
6
23/3/22
Issues getting web rules to detect an Nginx log when it's come in via syslog
Sorry to resurrect an old thread, but I finally got my local decoders to work with Nginx logs when
no leída,
Issues getting web rules to detect an Nginx log when it's come in via syslog
Sorry to resurrect an old thread, but I finally got my local decoders to work with Nginx logs when
23/3/22
Vũ Đạt
19/3/22
Re: [ossec-list] Agent cannot conect to failover server
what ? Vào Th 3, 15 thg 3, 2022 vào lúc 01:42 '(K14 HCM), Nguyen Hoang Phu' via ossec-list
no leída,
Re: [ossec-list] Agent cannot conect to failover server
what ? Vào Th 3, 15 thg 3, 2022 vào lúc 01:42 '(K14 HCM), Nguyen Hoang Phu' via ossec-list
19/3/22
Kyriakos Stavridis
,
Yana Zaeva
2
10/3/22
About new OSSEC's dynamic decoders
Hi Kyriakos, It seems that this feature is not available for OSSEC (you can check an older thread
no leída,
About new OSSEC's dynamic decoders
Hi Kyriakos, It seems that this feature is not available for OSSEC (you can check an older thread
10/3/22
AKSHA GANDHI
,
Manuel Camona Perez
7
4/3/22
Active response not working with rule_id 554 with "filename" as expect
Hi again and sorry for the late response, In the last comment I posted, I showed you an example where
no leída,
Active response not working with rule_id 554 with "filename" as expect
Hi again and sorry for the late response, In the last comment I posted, I showed you an example where
4/3/22
Khoa Phạm Anh
,
Yana Zaeva
2
3/3/22
HELP ME DECODE THIS LOG (check Authen)
Hi, My apologies for the late response. You could start creating decoders following this example:
no leída,
HELP ME DECODE THIS LOG (check Authen)
Hi, My apologies for the late response. You could start creating decoders following this example:
3/3/22
AKSHA GANDHI
25/2/22
Active response not working with rule_id 554 with "filename" as expect
Hi, Below are the details of the issue being faced: 1. Active response is getting triggered for both
no leída,
Active response not working with rule_id 554 with "filename" as expect
Hi, Below are the details of the issue being faced: 1. Active response is getting triggered for both
25/2/22
Rakesh Kumar
25/2/22
ossec configuration
Hi Folks, I have installed the ossec using yocto in the board. .Currently i am using the ossec
no leída,
ossec configuration
Hi Folks, I have installed the ossec using yocto in the board. .Currently i am using the ossec
25/2/22
Pruthvi Raj
, …
Vũ Đạt
3
21/2/22
How to configure OSSEC-window & Linux agents
thanks Vào Th 6, 4 thg 2, 2022 vào lúc 15:59 Yana Zaeva <yana....@wazuh.com> đã viết: Hi
no leída,
How to configure OSSEC-window & Linux agents
thanks Vào Th 6, 4 thg 2, 2022 vào lúc 15:59 Yana Zaeva <yana....@wazuh.com> đã viết: Hi
21/2/22