offline-update about vulnerability-detection

[QC L]

The Windows vulnerabillity feed msu-updates.json.gz is maintained by wazuh，I am very interested in how to automate the integration of this data，Can anyone share the implementation ideas and logic?

[Francis Timilehin Jeremiah]

Hello,

Do you have internet connection on the Wazuh server? Is that the reason why you are doing the offline update? You can simply configure the Vulnerability detector module normally. If you still want to use the offline method then maybe configure a script to periodically download the MSU feed to the Wazuh server.