Creating a custom Wazuh Compliance

[Fear cube_A]

I would like to know if there is a possibility to create a custom compliance for Wazuh. How would you recommend I do it. 

[Md. Nazmur Sakib]

Hello!

Can you share what you mean by custom compliance. If you are talking about SCA CIS compliance policies.

Policies for the SCA module are written in YAML. This format was chosen because it is human-readable and easy to understand. You can easily write your own SCA policies or extend existing ones to fit your needs.

You can read this document to understand how to write SCA policies in yml.

https://documentation.wazuh.com/current/user-manual/capabilities/sec-config-assessment/creating-custom-policies.html

If you want, you can explore this document and write your own plocity file for SCA scan. It will not need any coding knowledge.

Also, we have SCA files for lots of operating systems. Check the repository.

https://github.com/wazuh/wazuh/tree/main/ruleset/sca

Let me know if you need any further information.

[Fear cube_A]

I saw wazuh have like built in PCIDSS and HIPAA compliace check built in among others but I would like to have something else like ISO 27001 or other compliance in. Would SCA do the job?

--
You received this message because you are subscribed to the Google Groups "Wazuh | Mailing List" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/wazuh/38148979-20ca-49c1-b91e-68923944b507n%40googlegroups.com.