보안

wazuh

From Theory to the Field: Proving Core Competencies of a Security Expert through Wazuh+ELK SIEM Implementation
Design and operate a Threat Hunting system, the core of security monitoring, firsthand. Through hands-on practice based on real-world attack scenarios, transform into a professional security engineer capable of delivering immediate results in the field.

zeromini

입문

초급

중급이상

리눅스

Linux

Microsoft Windows

security

ossec

Complete SIEM Deployment in One Go: First Steps in Threat Hunting Using Wazuh and ELK (Basics)

Hello, this is ZerominiPlease refer to the blog below to effectively perform threat hunting using the basic rules provided by Wazuh + Chainsaw + SigmaRule, and check the results in ELK through Wazuh Agent.<a target="_blank" rel="noopener noreferrer nofollow" href="https://socfortress.medium.com/wazuh-and-chainsaw-integration-for-near-real-time-sigma-detection-6f3e729e892">https://socfortress.medium.com/wazuh-and-chainsaw-integration-for-near-real-time-sigma-detection-6f3e729e892</a>

Windows threat hunting is possible by linking Chainsaw + Sigma Rule + Wazuh.