#wazuh

4d ago · 6 min read · We’ve all seen it happen. An alert fires off at 2:00 AM: Disk Space Usage Critical: 100% on /. The server is unresponsive. SSH drops. The application has completely locked up because the OS can't even

Join discussion

VPVeer Pratap Singhveer-tech.hashnode.dev

0

Automating Wazuh Hot/Cold Storage on Azure

5d ago · 6 min read · If you’ve spent any time in the trenches as a Cloud & DevOps Engineer, you know the lifecycle of a SIEM deployment. Day 1: "Look at all these amazing security events!" Day 90: "Why is our Premium SSD

Join discussion

VPVeer Pratap Singhveer-tech.hashnode.dev

0

Building a DORA-Compliant SOC Logging Architecture

Feb 10 · 6 min read · Building a DORA-Compliant SOC Logging Architecture with Wazuh and Azure Blob Storage When working with a European client in the financial domain, one of the key requirements we had to address was comp

Join discussion

LJLee Jonesblog.hastylabs.com

0

SIEM installation

Feb 6 · 2 min read · Today’s focus was expanding the home lab by deploying Wazuh SIEM on a second laptop. To keep things flexible, I opted for a Docker container deployment. Since this is a testing phase, I’m not overly concerned about potential issues; I plan to have a ...

Join discussion

JCJoseph Chisom Ofonagorochisom.hashnode.dev

0

A Clean Dashboard Doesn't Imply Security: Here's Why

Feb 1 · 4 min read · I recently uncovered a concerning security blind spot in an enterprise case study—a flaw that highlights the dangerous assumption many make when it comes to cybersecurity: that 'no alerts' equals 'no threats'. Security is inherently complex, but the ...

Join discussion

PHPrayush Hadaprayush.hashnode.dev

0

Wazuh Password Reset Guide

Feb 1 · 2 min read · Part I: For Docker Installations In Docker, you must change the persistent files on the host first, then apply them inside the container. 1. Generate the Password Hash Access the indexer container to use the hash tool: docker exec -it -u 0 single-no...

Join discussion

NTNguyễn Tài Nguyênneyugniat.hashnode.dev

0

Homelab: Windows + Linux Monitoring & Security Stack

Jan 14 · 5 min read · Giới thiệu Sau khi đã tìm hiểu và thực hành với các công cụ quản trị hệ thống, giám sát hạ tầng, IDS/IPS và tường lửa, mình nhận ra rằng việc học từng công cụ riêng lẻ là chưa đủ. Điều quan trọng hơn là hiểu cách chúng được triển khai và phối hợp với...

Join discussion

SFSantiago Fernandezblog.santiagoagustinfernandez.com

0

Kubernetes Runtime Security. De una curiosidad a un flujo de Seguridad inteligente.

Dec 1, 2025 · 11 min read · Introducción Todos hemos vivido ese momento: alguien abre un pod en producción, ejecuta un printenv y revisa una variable sensible. A veces es por curiosidad, otras por necesidad técnica… pero ¿y si no fue un desarrollador? ¿y si fue una cuenta compr...

Join discussion

FMFPT Metrodata Indonesianews.fmisec.com

0

16. Wazuh Rule Collection

Nov 16, 2025 · 2 min read · Summary of Custom Wazuh Rulesets on GitHub Below is a personal collection of custom Wazuh rulesets gathered from various community and organizational sources. These rules can be used for reference, customization, or direct application in your own set...

Join discussion

FMFPT Metrodata Indonesianews.fmisec.com

0

18. Wazuh OPNSense Rule

Nov 16, 2025 · 2 min read · OPNsense Logs in Wazuh: Matching pfSense Rules and the Need for Custom Parsing 1. Problem Summary When forwarding logs from OPNsense to Wazuh, many entries are matched by existing decoders/rules (mostly written for pfSense/pf), leading to: Wazuh ass...

Join discussion

Tag feed

Tag feed

#wazuh

Linux Disk & OS Drive

Automating Wazuh Hot/Cold Storage on Azure