Wazuh | Mailing List

Hello, Gokul The field mappings in your wazuh-alerts-* index pattern are derived from the mappings of

In the steps above, we are basically setting up the following workflow: When custom rule 100600 is

Dennis, I got it fixed on both. The error message (invalid username or password is VERY misleading)

Here's the begining of the ossec.conf: <ossec_config> <global> <jsonout_output>

Hi In the logs you shared, we can see the following warning: [WARN ][oomjJvmGcMonitorService] [node-1

Hí, I'll review all of that. For now: Ollama is running remotely. I execute the script on the

You Sir, are an absolute legend !!! Thanks a million 🥳 On Fri, Sep 19, 2025 at 1:10 PM 'Md.

I have created a custom decoder for Azure JSON logs using the <plugin_decoder>JSON_Decoder</

Hi Musbau, I checked the logs again after a reboot and haven't seen anything relevant. Also re-

Hi Sylvain Before we dig in — could you tell me which OS and version you installed on (eg, Ubuntu

Hello Arun, I believe some of the things you asked were answered in my previous response, however, I

Hi Hein, I successfully configured the Yara integration for Windows by following the documentation.

Hello Harish, Wazuh is a SIEM and XDR. To understand Wazuh, you need to understand what SIEM and XDR

Hi QC! You can consult the introduced changes and improvements in each version in the public Wazuh

hello, team CLI-based upgrades don't work the same way on other server versions. I solved this

Any suggestion ...? On Monday, September 15, 2025 at 11:41:46 AM UTC+3 Somer Rabee wrote: Hi Hasitha,

It is difficult for me to replicate this as I do not have access to an MS Teams subscription. "

We've been running some tests on our side to better understand the behavior you described with

Hello Gabriel, I apologize for the delayed response. I have replicated this and I can confirm to you

You can try performing the installation with verbose mode enabled to obtain the log and share it,

Your information was very helpful. The problem was solved. Thank you very much! Em ter., 16 de set.

Thank you Olamilekan, This is precisely what I needed. On Monday, 15 September 2025 at 14:50:30 UTC+1

I created an issue to fix the duplicate entries. You can track the process here: https://github.com/

Hi Alen, Sorry for the delay in my response. I'll reach out to the team in charge of the agent to

hey Kumawat, how are you? Looks like to me that you are asking essentially how to build a Wazuh SaaS

I want to build the macOS agent from scratch for my org. Need my branding: agent name Agent-ABC, my

Hello, both of you. I also encountered the same situation. However, I found a vulnerability in "

Here is my ossec.conf file: The log files are being generated, I even turned logging off and the

Hello Olamilekan, Thank you! Best regards, Joaquim António A segunda-feira, 15 de setembro de 2025 à(

Hi, Thank you Yusuf for your message ! :) Indeed, the effort is quite substantial, but validating the