help for malware and other detection on local_decoder.xml
32 views
Skip to first unread message
Alfian Syahputra
Nov 9, 2025, 6:25:14 AM (2 days ago) Nov 9
to Wazuh | Mailing List
Hello Wazuh community, is there anyone who can share the contents of /var/ossec/etc/decoders/local_decoder.xml for malware triggers or other purposes? Looking at the MITRE attack, there are many commands, so I need help if anyone is willing to provide the contents of local_decoder.xml, Thank you.
Besides that path, is there anything else that needs to be changed or added to enhance those triggers?
Md. Nazmur Sakib
Nov 10, 2025, 12:08:30 AM (yesterday) Nov 10
to Wazuh | Mailing List
I have shared a resposne to your other post on this topic.
Please check.
https://groups.google.com/g/wazuh/c/c1J3oMKrkHg
Please check.
https://groups.google.com/g/wazuh/c/c1J3oMKrkHg
Reply all
Reply to author
Forward
0 new messages