Wazuh | Mailing List

Hi Team! I am going to deploy the Wazuh agent to Mac OS clients at scale with intune. I have a script

Both options would be nice. A command to get all active rules and a command to list all rules. When I

Hi professionals, In my infrastructure there are approx. 40 servers with wazuh agents which are

Hi WENWEN You can achieve this using the active response and command module You can refer to https://

Can you give more background like system specs... network config and specs of the wazuh servers...

Thanks for the guide. Could you please assist with the necessary steps or any documents to be

Hi Nazmur, Thank you for the reply. I posted the question on Slack and Reddit after my post was

Hi Johan, I'm not from wazuh, but your setup is interesting to me, and I've already

While the Wazuh agent can monitor files and directories for changes (FIM), it's unlikely to block

Hi, Has anyone successfully implemented external threat intelligence integrations with Wazuh? I

Hi team, I'm auditing dependencies on a Wazuh 4.9.2 deployment and noticed libdb-5.3.so is

Run the command with the other certificate you have curl -u admin:<password> --cacert /etc/

Hi Javier I applied the " bootstrap.memory_lock: true" configuration in the opensearch.yml

Ok, perfect, if you have identified another field that can be used, instead of the agent name, maybe

I did it this way and it worked. I can receive the alert. <group name="arquivos,">

Hello, Oda I apologize for the late response. There is nothing on the log that could be indicating an

Hi Wilco, Please share us a log sample to test a custom rule. In any case, I write this one for you:

Hello Todor, What is the OS version of the endpoint where the agent is installed? What is the OS

Hi John, Thanks for your prompt response. I have tried all the documents you have shared. I have to

Hello, You can refer to the custom active response script documentation for further reference, the

Hi Henadence Anyam, Edit: I saw that there is a file agent.conf in C:\Program Files (x86)\ossec-agent

FYI this fixed the same issue for me, Thank you! On Thursday, April 27, 2023 at 3:06:59 PM UTC-4

Hello, Thank you for your answer. I have re-deployed everything and purged the volumes/data and now

Hello Jaime, Please see attached for reference, if the ports are opened, you should get something

Hello Sergio, Reviewing the information you sent, I noticed a misconfiguration in your /etc/wazuh-

Hola a todos: En internet algunos comentan que es posible integrar wazuh con Openvas para poder

what should I configure , because I am completely stuck in here On Tuesday, March 25, 2025 at 4:03:02

Hello Felipe, Can you show me your script please, because I have the same problem. Thank you in

Thanks for the reply. Sorry for the stupid question, but how do I figure out what kind of database I

Hi, i've got a CCS architecture and from the dashboard im trying to restrict users from choosing