Integrating Security tools
61 views
Skip to first unread message
Carl ocee
Mar 19, 2025, 7:47:46 AM3/19/25
to wa...@googlegroups.com
How do I integrate Suricata, TheHive, and MISP on my Wazuh agent that's running on a Windows OS
Alberto Marcelino Zárate
Mar 21, 2025, 7:40:38 AM3/21/25
to Wazuh | Mailing List
Hello,
For TheHive you can follow the next guide from our official Blog:
-Using Wazuh and TheHive for threat protection and incident response
For Suricata integration these ones:
-Responding to network attacks with Suricata and Wazuh XDR
-Network IDS integration
For MISP you will need to use the Wazuh Integrator module to connect MISP via API:
-Third-party integration
-External API Integration
Let me share with you additional documentation that could help you to work on each workflow:
-Decoders
-Configuring syslog on the Wazuh server
Thanks!
For TheHive you can follow the next guide from our official Blog:
-Using Wazuh and TheHive for threat protection and incident response
For Suricata integration these ones:
-Responding to network attacks with Suricata and Wazuh XDR
-Network IDS integration
For MISP you will need to use the Wazuh Integrator module to connect MISP via API:
-Third-party integration
-External API Integration
Let me share with you additional documentation that could help you to work on each workflow:
-Decoders
-Configuring syslog on the Wazuh server
Thanks!
Reply all
Reply to author
Forward
0 new messages