Wazuh | Mailing List

Hi Bitemir, We have an official blog post to integrate Wazuh with Shuffle. Please take a look at it.

Hi Tengku, You can create a custom rule with level 0 to use the above mentioned paths to avoid the

I would like to know if Wazuh plans to obtain certification and, consequently, be listed in the

Hi, To help us better understand the issue, could you please share a bit more information? Which

Could you please review the Wazuh manager-side logs to verify whether there are any issues related to

It triggers various 120071 alerts, but when i check the previous output on 110071 and fired times

Hello Max, Thank you for sharing these ClamAV logs. Having reviewed them, I can say these are

Where are you getting this error from? Is it from the Wazuh side? At first glance, you have a problem

Hello Jorge, Wazuh Server communication with the agent is secure, as the message protocol uses AES

I saw wazuh have like built in PCIDSS and HIPAA compliace check built in among others but I would

Hi Robby Hunters. Additional info: * logs can be queried inside manager and agents with: cat /var/

Hi Veera, Based on the requirements you described, what you are looking for goes beyond a File

Thank you for the detailed configuration and status The problem is that he Indexer restarted 7 hours

Hi Brenno, Yes, you can do it in Grafana with an OpenSearch data source, but the easiest place to

Hello Tengku, You can exclude the alert entirely. Follow the below steps to achieve that. 1. Edit the

The Wazuh Wodle runs at specific intervals, which could be contributing to the observed spikes.

I have the same error on Microsoft Graph API Event section and I don't know why. Alerts are being

Hello! C:\Program Files (x86)\ossec-agent\ossec.log is empty and doesn't contain any WPK entries

After setting check_mtime="yes" everything worked. Thanks. On Thursday, January 15, 2026 at

Hi Gabriele, Based on what you outlined, this behaviour is expected in small, single-node Wazuh

Hi Jacob, We are carefully reviewing your case and taking into account all the information you've

Hi After looking into this further and double-checking it with my reviewer, you're right that

Hello Ken, Sizing and scoping for an environment goes beyond just the number of monitored hosts, as

Hello @yazid, The reason the alerts weren't showing on the dashboard is because we didn't

Hi! You won't be able to test it locally as they are events coming from EventChannel and Wazuh (

HI Juan. As far as I remember, no, I haven't made any changes to the wazuh-templates json. I also

After updating Manager to v 4.14.2 cant update agents. Now i get this message: Failed upgrades: Agent

I have another question. I also have events from network equipment connected. How can I filter them

Glad to know the issue is resolved On Monday, January 12, 2026 at 12:51:26 PM UTC+5:30 doc dodo wrote

Hi, Apologies for the late response. Since you mentioned that the number of agents may grow in the