Monitoring a Kubernetes cluster involves deploying and utilizing the Wazuh agent within the Kubernetes environment.
Making Wazuh Deployment Easy
This script is for demo purposes only. It deploys a bare minimum, single-node Docker host and Wazuh stack running as a docker-compose stack.
A template for Wazuh Agent status monitoring that works without external scripts.
Wazuh SIEM alerts into Signal Messenger groups using Signal-CLI
Setting up a Home Intrusion Detection System Lab for Linux and Windows.
Setting Up Wazuh SIEM/XDR Homelab and Integration of Microsoft Defender into it.
On progress
Implementing a comprehensive and scalable security monitoring solution for Windows endpoint.
This repository contains automation scripts and configurations for Security Operations Centers (SOC). It includes tools for incident response, log management, and security alerting, aimed at streamlining SOC workflows and enhancing security event monitoring and management.
Kubernetes Operator for deployment Wazuh Agent
A quick and easy solution to removing Wazuh Agents from Windows, Mac, and Linux systems.
This repository facilitates the installation of the Wazuh agent on Arch Linux systems. It comprehensively provides the requisite files and instructions to efficiently build and deploy the agent, thereby enhancing system security through advanced threat management capabilities.
SOC Home Lab with Ubuntu (host), Wazuh SIEM, Windows endpoint (victim) with Sysmon, and Kali Linux (attacker). Simulates real-world attacks for aspiring SOC analysts. Practice threat detection, log analysis, and incident response using Wazuh and Sysmon in a controlled environment.
This repo is about my take on simulating a brute force on my homelab.
Automated Wazuh SIEM Installation & Configuration
Add a description, image, and links to the wazuh-agent topic page so that developers can more easily learn about it.
To associate your repository with the wazuh-agent topic, visit your repo's landing page and select "manage topics."