Groups
Conversations
All groups and messages
Send feedback to Google
Help
Training
Sign in
Groups
Wazuh | Mailing List
Conversations
About
Groups keyboard shortcuts have been updated
Dismiss
See shortcuts
Wazuh | Mailing List
Contact owners and managers
1–30 of 14236
Welcome to Wazuh mailing list. Our team will be happy to answer and help with all your questions.
We look forward to your feedback and contributions.
Mark all as read
Report group
0 selected
Henrique Avelino
,
Gustavo Choquevilca
5
12:37 PM
Create a New Indexer
To clarify this topic further, the installation you are using, being on-prem, utilizes Filebeat
unread,
Create a New Indexer
To clarify this topic further, the installation you are using, being on-prem, utilizes Filebeat
12:37 PM
Johannes
, …
Openime Oniagbi
5
11:30 AM
New searchable fields incomplete
Hello Johannes, Are you still encountering this error? On Wednesday, January 29, 2025 at 11:01:09 AM
unread,
New searchable fields incomplete
Hello Johannes, Are you still encountering this error? On Wednesday, January 29, 2025 at 11:01:09 AM
11:30 AM
Vuk Kadija
11:29 AM
GeoIP map
Hello wazuh community, At the moment we are ingesting O365 logs. Wanted to build a visualization/
unread,
GeoIP map
Hello wazuh community, At the moment we are ingesting O365 logs. Wanted to build a visualization/
11:29 AM
Dharmil Jariwala
,
Juan Cabrera
5
11:29 AM
Root-ca.key is not available
Hello Juan, I understand that new certificate can be created but it will also stop showing old alerts
unread,
Root-ca.key is not available
Hello Juan, I understand that new certificate can be created but it will also stop showing old alerts
11:29 AM
yari arcopinto
11:05 AM
Alerts not present in the in wazuh dashboard
Hello team, I need your support. I receive logs like this below: timestamp:1739979968,host.name:SRV-
unread,
Alerts not present in the in wazuh dashboard
Hello team, I need your support. I receive logs like this below: timestamp:1739979968,host.name:SRV-
11:05 AM
Kobrik Kobrikovic
10:09 AM
Non standard syslog message (size too large)
Hello, please advise. On wazuh 4.9.0 I have a problem with the assignment of rules for the
unread,
Non standard syslog message (size too large)
Hello, please advise. On wazuh 4.9.0 I have a problem with the assignment of rules for the
10:09 AM
Daniel Pacuci
,
Gustavo Choquevilca
3
9:51 AM
Wazuh disk space reading does not work
Hi, as stated, i followed all steps of the guide. I just checked the pc, it does have the Get-Volume
unread,
Wazuh disk space reading does not work
Hi, as stated, i followed all steps of the guide. I just checked the pc, it does have the Get-Volume
9:51 AM
mahlatse kekae
,
Olamilekan Abdullateef Ajani
2
8:31 AM
Sophos endpoint AND sap logs
Hello mahlatse, Regarding reading from a log file, you are almost there, Your localfile looks good,
unread,
Sophos endpoint AND sap logs
Hello mahlatse, Regarding reading from a log file, you are almost there, Your localfile looks good,
8:31 AM
Stefano Giannuzzi
7:21 AM
Issues with OVAL for Vulnerability Detection on Rocky Linux 9 with Wazuh 4.5
Hello, I am trying to use OVAL for vulnerability detection on Rocky Linux 9 with Wazuh v4.5. I used
unread,
Issues with OVAL for Vulnerability Detection on Rocky Linux 9 with Wazuh 4.5
Hello, I am trying to use OVAL for vulnerability detection on Rocky Linux 9 with Wazuh v4.5. I used
7:21 AM
Abdulrazack Shabani
,
Federico Ramos
4
6:56 AM
Wazuh dashboard server is not ready yet
To investigate the cause of the error, you need to check the logs located at `/var/log/wazuh-indexer/
unread,
Wazuh dashboard server is not ready yet
To investigate the cause of the error, you need to check the logs located at `/var/log/wazuh-indexer/
6:56 AM
Adam Nowak
6:41 AM
How to fix wazuh-archive-retention-policy ?
How to fix wazuh-archive-retention-policy - Missing alias or not the write index when rollover ? : {
unread,
How to fix wazuh-archive-retention-policy ?
How to fix wazuh-archive-retention-policy - Missing alias or not the write index when rollover ? : {
6:41 AM
Mani Bharathi
,
hasitha.u...@wazuh.com
3
6:20 AM
Not able to receive syslog events for aruba switch
Hi Hasitha, Thanks a lot for your support. I did the changes you mentioned. I able to receive the
unread,
Not able to receive syslog events for aruba switch
Hi Hasitha, Thanks a lot for your support. I did the changes you mentioned. I able to receive the
6:20 AM
Chandra pal singh Chauhan
,
Bony V John
6
6:15 AM
RDP Login integration
Hi, I apologize for the late response. The Wazuh agent continuously monitors the Security event
unread,
RDP Login integration
Hi, I apologize for the late response. The Wazuh agent continuously monitors the Security event
6:15 AM
Dmitry Mikheev
,
Olamilekan Abdullateef Ajani
11
6:11 AM
FIM Windows server 2016 not worked
Hi, Olamilekan! Any ideas? On Wednesday, February 5, 2025 at 11:53:58 AM UTC+2 Dmitry Mikheev wrote:
unread,
FIM Windows server 2016 not worked
Hi, Olamilekan! Any ideas? On Wednesday, February 5, 2025 at 11:53:58 AM UTC+2 Dmitry Mikheev wrote:
6:11 AM
Zaks Ace
,
Jose Luis Carreras Marin
5
5:53 AM
Issues
Hello Zaks Sorry for the delay, Let's see, what upgrade method did you use? can you tell me in
unread,
Issues
Hello Zaks Sorry for the delay, Let's see, what upgrade method did you use? can you tell me in
5:53 AM
Miran Ul Haq
,
Federico Damian Lo Iacono
9
5:52 AM
TLS Configuration Vulnerability in Wazuh
Hi Federico, Any update on this? Thanks. On Tuesday, February 11, 2025 at 4:45:47 PM UTC+5 Miran Ul
unread,
TLS Configuration Vulnerability in Wazuh
Hi Federico, Any update on this? Thanks. On Tuesday, February 11, 2025 at 4:45:47 PM UTC+5 Miran Ul
5:52 AM
Veera
, …
Hari krishna Gurivisetti
9
5:26 AM
List agent's vulnerable packages with API
Hari, If you are new here , Please start by clicking on the "+ New Conversation" below the
unread,
List agent's vulnerable packages with API
Hari, If you are new here , Please start by clicking on the "+ New Conversation" below the
5:26 AM
Wilco
,
Stuti Gupta
4
5:07 AM
Custom rule for Postfix logging
The regex should be replaced by a match, and you can create a rule like this: <group name="
unread,
Custom rule for Postfix logging
The regex should be replaced by a match, and you can create a rule like this: <group name="
5:07 AM
bhuvanesh ammisetty
,
Olamilekan Abdullateef Ajani
3
4:35 AM
wazuh dashboard not loading
Hi Team, I accidently deleted that indices in /var/lib/wazuh-indexer/nodes/0/indices to free some
unread,
wazuh dashboard not loading
Hi Team, I accidently deleted that indices in /var/lib/wazuh-indexer/nodes/0/indices to free some
4:35 AM
Kerim Karataş
, …
Franco Giovanolli
6
4:09 AM
Event ID 4660
Hello, Thank you so much. I solved. Best regards. 12 Şubat 2025 Çarşamba tarihinde saat 12:58:16 UTC+
unread,
Event ID 4660
Hello, Thank you so much. I solved. Best regards. 12 Şubat 2025 Çarşamba tarihinde saat 12:58:16 UTC+
4:09 AM
Romain Hennebois
, …
Kamil Tańcula
7
3:55 AM
Webhook
Hello all, i encountered the same error i configured a chanell (Custom webhook) to rocketchat but
unread,
Webhook
Hello all, i encountered the same error i configured a chanell (Custom webhook) to rocketchat but
3:55 AM
Carlos Erazo
,
Bony V John
2
2:56 AM
Disable "Threat Hunting" Module
Hi, You can disable all other modules except FIM by modifying the Wazuh agent ossec.conf file. You
unread,
Disable "Threat Hunting" Module
Hi, You can disable all other modules except FIM by modifying the Wazuh agent ossec.conf file. You
2:56 AM
Hari krishna Gurivisetti
,
Md. Nazmur Sakib
2
1:42 AM
Issue with Vulnerability Detection Metrics for Some Windows Agents
Hi Krishna, I am guessing you have updated software packages in the other two OS and that is why no
unread,
Issue with Vulnerability Detection Metrics for Some Windows Agents
Hi Krishna, I am guessing you have updated software packages in the other two OS and that is why no
1:42 AM
Muhammad Ali Khan
, …
Sathya Narayana Bhat
7
1:10 AM
SIEM integration with Cloudflare
Hi, As specified above the logpush and log pull features are avaliable for enterprise plans only so
unread,
SIEM integration with Cloudflare
Hi, As specified above the logpush and log pull features are avaliable for enterprise plans only so
1:10 AM
M V
, …
Md. Nazmur Sakib
8
Feb 18
freebsd14: sca does not work
We do not have any SCA conditions validator at this moment like the ruleset test tool. I will suggest
unread,
freebsd14: sca does not work
We do not have any SCA conditions validator at this moment like the ruleset test tool. I will suggest
Feb 18
Aleksander B
,
Nicolás Edgardo Rocca
2
Feb 18
Add package location to vulnerability alert
Hi Aleksander, There're a couple of points I'd like to visit about your question: About the
unread,
Add package location to vulnerability alert
Hi Aleksander, There're a couple of points I'd like to visit about your question: About the
Feb 18
Mohamed Maslouh
, …
MOUSSA EL HAJRAOUI
5
Feb 18
Increase severity of LSA registry folder modification alerts
Hi You need to check which rule that fires the alert (level 5) and override it with if_sid <group
unread,
Increase severity of LSA registry folder modification alerts
Hi You need to check which rule that fires the alert (level 5) and override it with if_sid <group
Feb 18
Thaynara Soares
,
Juan Elías Jorge Lujan
8
Feb 18
DLP Rule
My archives.log is disabled due to the amount of logs, rule 91531 cannot be completely disabled as it
unread,
DLP Rule
My archives.log is disabled due to the amount of logs, rule 91531 cannot be completely disabled as it
Feb 18
Henrique Avelino
Feb 18
Add agent.labels in Wazuh-states-vulnerability-*
Hi everyone, Is it possible to add agent.lables.X in Wazuh-states-vulnerability-* ? Thanks
unread,
Add agent.labels in Wazuh-states-vulnerability-*
Hi everyone, Is it possible to add agent.lables.X in Wazuh-states-vulnerability-* ? Thanks
Feb 18
Hunter Goncalves
Feb 18
delete indices locally
Hello. I have run into a problem - I have SSO authentication turned on and Basic Authentication
unread,
delete indices locally
Hello. I have run into a problem - I have SSO authentication turned on and Basic Authentication
Feb 18