Wazuh to scan AWS environment for vulnerabilities
337 views
Skip to first unread message
Slava G.
May 8, 2019, 3:33:01 AM5/8/19
to Wazuh mailing list
Hi,
Is it possible to scan aws environment as it does for example scanning Linux servers ?
It could be nice if it can do that.
Thanks
Cristóbal López
May 8, 2019, 4:55:14 AM5/8/19
to Wazuh mailing list
Hi Slava,
It is possible to monitor vulnerabilities in Linux environments with Wazuh. You have 2 alternatives:
- You can use OpenSCAP integration to audit vulnerabilities in Linux products. For more information and use cases, you can check our documentation.
- You can also use our native and centralized module (only runs on the manager) to detect vulnerabilities in agents and managers: Vulnerability Detector.
Feel free to ask if you have any questions about of these solutions.
Best regards,
Cristobal Lopez.
It is possible to monitor vulnerabilities in Linux environments with Wazuh. You have 2 alternatives:
- You can use OpenSCAP integration to audit vulnerabilities in Linux products. For more information and use cases, you can check our documentation.
- You can also use our native and centralized module (only runs on the manager) to detect vulnerabilities in agents and managers: Vulnerability Detector.
Feel free to ask if you have any questions about of these solutions.
Best regards,
Cristobal Lopez.
Slava G
May 8, 2019, 5:03:54 AM5/8/19
to Cristóbal López, Wazuh mailing list
Hi, actually my question was regarding to monitor AWS environment not the Linux servers (this was just an example for monitoring that I would like to do with Wazuh).
Thanks
--
You received this message because you are subscribed to the Google Groups "Wazuh mailing list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To post to this group, send email to wa...@googlegroups.com.
Visit this group at https://groups.google.com/group/wazuh.
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/4ef7fbd8-5cc6-41e7-9a0b-0be28d5ee295%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Jeremy Phillips
May 8, 2019, 7:47:36 AM5/8/19
to Slava G, Cristóbal López, Wazuh mailing list
Hi Slava,
Taking a leap, I'm guessing that when you state "scan aws environment", you are looking for an equivalent to OpenSCAP for configuration and compliance? There are lots of 3rd party services for checking the configuration and compliance of AWS, but personally I'm partial to Prowler https://github.com/toniblyx/prowler. This will check AWS accounts against CIS benchmarks and other "best practice" configurations. There is even a wrapper for running Prowler by Wazuh and feeding the results in: https://github.com/toniblyx/prowler/tree/master/integrations/wazuh
Jeremy
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/CAP6s8-ryC6iS2C0zVR8Kc-011TVh1sXTpnEh7QcbQ-M7GMfiAA%40mail.gmail.com.
Slava G
May 8, 2019, 8:02:36 AM5/8/19
to Jeremy Phillips, Cristóbal López, Wazuh mailing list
Thanks Jeremy,
Exactly, this is what I was thinking.
Will check powler soon.
I was thinking to integrate (somehow) CloudSploit to wazuh.
Thanks a lot.
Reply all
Reply to author
Forward
0 new messages