Alienvault integration
181 views
Skip to first unread message
reza fathi
Jul 26, 2023, 4:39:57 PM7/26/23
to Wazuh mailing list
Hi,
How can I integrate wazuh with alienvault in order to get malware hashes and use them with FIM to detect dangerous files in our network?
Regards,
Reza.
How can I integrate wazuh with alienvault in order to get malware hashes and use them with FIM to detect dangerous files in our network?
Regards,
Reza.
Mateo Cervilla
Jul 27, 2023, 7:01:42 PM7/27/23
to Wazuh mailing list
Hi,
File Integrity Monitoring (FIM) is a security process used to monitor the integrity of system and application files.
You can take a look to the documentation here:
FIM stores the files checksums and other attributes in a local FIM database. Upon a scan, the Wazuh agent reports any changes the FIM module finds in the monitored paths to the Wazuh server. The FIM module looks for file modifications by comparing the checksums of a file to its stored checksums and attribute values.
I don't know if this is the tool you are looking for. Can you elaborate a bit more about Alienvault and what you need to do with it?
Regards
Reply all
Reply to author
Forward
0 new messages