Wazuh! Powerful, Open Source Endpoint Security Monitoring!

Рет қаралды 13,214

Күн бұрын

Пікірлер

@domiflichi 12 күн бұрын

Wazuh is one of the most awesome pieces of open source. The documentation is excellent, the support is amazing. I've been using it for a couple years and just love it!

@AwesomeOpenSource 11 күн бұрын

1000% Awesome!

@Klatchan 12 күн бұрын

I was just looking for a way to do this for a volunteer organization with zero budget. Thanks for pointing this out.

@AwesomeOpenSource 11 күн бұрын

My pleasure.

@ctrlesc-xyz 11 күн бұрын

I've been interested in Wazuh for a while. It looks like it is just and alternate front-end that sits on top of Kibana. That is pretty neat.

@AwesomeOpenSource 10 күн бұрын

Haven't investigated the stack, but it makes getting going with improved security a lot faster IMO.

@KenPryor 11 күн бұрын

I've used Wazuh for a few years and it's excellent. Even though I've used it a good while, I'm far from an expert with it. Still much to learn!

@AwesomeOpenSource 11 күн бұрын

It's a pretty in-depth tool, and I am sure you're going to find more and more of its capabilities the longer you use it.

@parl-88 7 күн бұрын

Great Video! Thanks for the content and knowledge sir.

@AwesomeOpenSource 5 күн бұрын

Thanks for watching!

@JoeKingstonS 11 күн бұрын

I have been using it for years and think it's one of the best security tools.

@AwesomeOpenSource 11 күн бұрын

It's really an awesome tool. And super powerful.

@mohamedelwakell9295 11 күн бұрын

Thank you very much for your wonderful effort and exceptional explanation.

@AwesomeOpenSource 11 күн бұрын

My pleasure.

@thjrq 11 күн бұрын

This is great, would it be possible to create part 2 of this video including using Wazuh as Centralized SysLog server for Firewalls VMware ESXi, and etc. and SIEM, creating alerts and notification etc?

@AwesomeOpenSource 11 күн бұрын

I'll see what I can do.

@surgical_17 12 күн бұрын

Any working Docker Containers for this? I had a look at it before and had some issues getting a working Docker container for it

@AwesomeOpenSource 11 күн бұрын

As complicated as this software seemed, I didn't look for one. I just used a dedicated container (Incus / LXD / LXC) for it.

@LEFA.Digital 11 күн бұрын

Good

@AwesomeOpenSource 10 күн бұрын

Glad you think so!

@jasoncollins1007 11 күн бұрын

How is this any different than Elastic?

@krzychaczu 10 күн бұрын

Simpler to deploy, requires much less configuration, has CIS benchmark checks and vulnerability scanner out of the box...

@AwesomeOpenSource 10 күн бұрын

I think there is quite a bit of difference, but this is more of a ready to go out of the box experience.

@justintyme6920 11 күн бұрын

Weird. Running 4.10, don't see endpoint summary. *update- now under agents summary

@AwesomeOpenSource 11 күн бұрын

Just updating now. I recorded this a while back, and just getting to posting it now.

@-someone-. 11 күн бұрын

This should be available for pi5 16gb model. Any ideas for plans?

@AwesomeOpenSource 11 күн бұрын

No, but here's a github thread where you can jump in and let them know you'd also like this: github.com/wazuh/wazuh/issues/18048

@krzychaczu 10 күн бұрын

It collects, stores and processes tons of logs, so it can be storage volume and io intensive. So are you sure you want to run it on RPi?

@-someone-. 10 күн бұрын

@@krzychaczu yes, definitely. SSD’s are cheap if an sd card wouldn’t be able to handle it, but you’d be surprised at what a pi can handle.