Wazuh | Mailing List

Hello John, I have solved it by using only-future-events Best regards On Thursday, December 26, 2024

Hi Maan, Could you please verify if the Wazuh manager has an SSH connection to the monitored endpoint

Hi Srividya The Wazuh Indexer is based on OpenSearch and is responsible for indexing and searching

Can it also accommodate files which have few keywords and not necessarily end with same type of file

Thanks alot Stuti Gupta. On Fri, Dec 20, 2024, 13:47 'Stuti Gupta' via Wazuh | Mailing List

"Quick reminder: I'm in a hurry. Thank you for your assistance!" Le mercredi 25

Hi Gokul, The error message "No cached mapping for this field" typically occurs in the

Hi John, I'm using Ubuntu 24.04 LTS PFA of the alert On Thursday, December 26, 2024 at 12:18:34

Hi Aqeel, Wazuh can two ways to capture those network logs, You can directly config the syslog in the

Hi Isabella, Could you please run the following command on the Wazuh indexer and share the output? /

Hi Gul, You can use the command cat /var/ossec/var/run/wazuh-analysisd.state to retrieve the contents

Hi CJK, I am glad that the cluster health back to green. I would suggest you to please create a new

Hi, i know this is a very old post but i'm on the same situation right now. Have you found the

CBD gummies are a popular and easy way to experience the benefits of CBD (cannabidiol), a natural

Hello, To achieve this you need to configure syslog on the fortiweb device to forward the messages to

Hi Javier, I am interested in the subject. I will inform you later. Thank you. Best regards. 18

Hi Emiliano, Thank you for your response. Required details i mentioned below if any thing you need i

Hello Massimiliano, By default, Wazuh monitors RDP Login success and failure with the stock rules

Hi Hasitha, Thanks for the help. Kindly assist in creating rules for this decoder. Regards, Ekta On

Hi Olusegun Adenrele Oyebo, Thanks for the reply i am not able to see the logs in archive.json after

Cris, As a last resort, we can try rebuilding the agent's syscollector database forcefully. To do

We have Wazuh Setup using Amazon Images and we use it to collect logs from aws and send alert to the

Hi Farshin. For Linux distributions, Wazuh has preconfigured rules to trigger alerts if any new

Hello, From your query, It seem you integrated the log source directly to the Wazuh Manager, this is

Hi Massimiliano, You can navigate to Explore under Menu and select Discover tab to see all alerts. If

i have a test agent that was using memory of 4GB. it was generating a lot of logs on a daily basis

Here are a few things you can check to troubleshoot this issue: 1. Verify LDAP Configuration: -

Hi Frank, In this case you should enable the agent.debug=2 (Linux agent) option on the agent side (

Hi Gupta, Thank you for your reply, I wanted to do some drastic change regarding on the logs, alert,

I was afraid you would say that. That was a typo on my part meaning the "^" and the "$