Wazuh is threat prevention, detection, and response platform that is free and open source. It can safeguard workloads on-premises, in virtualized, containerized, and cloud-based settings.
Wazuh’s solution is made up of an endpoint security agent. It is installed on the monitored systems and a management server that collects and analyses the data. These are collected by the agents. Wazuh is also fully integrated with the Elastic Stack, allowing customers to navigate through their security alerts using a search engine and data visualization tool.
Wazuh’s features include:
- Intrusion detection
- Analyzing log data is the second step.
- Detection of Vulnerabilities
- Incident response
- File integrity monitoring
- Cloud security
- Compliance with regulations
- Configuration evaluation
- Container security
Disclaimer: – The intended use for the tool is strictly educational and should not be used for any other purpose.
Download Link: https://github.com/wazuh/wazuh
