SitoRBJ
SitoRBJ
We have created rules and decoders for CyberArk events. ``` Sep 21 13:49:33 GADC-VAULT001 CEF:0|Cyber-Ark|Vault|1.10.0000|165|Retrieve password|1|act=Retrieve password suser=PasswordManager fname=Root\Operating System-HP-WindowsServerLocalAccounts dvc= SessionDuration= shost=192.168.1.2 dhost=gadc-spfsrvp01. duser=GSH001 SessionID=1 ApplicationType=2 UUID=3 Protocol=4 Command=5...
Hello team, We have added new decoders and rules for Avecto. It is now possible to get alerts from Avecto and extract the available information from the corresponding events. ```...
Hello team, Based on #141, we have added two twin decoders in order to get the "dstuser" field when the event contains the user. The new decoders: ``` nginx-errorlog user...
Hello team, When we register an agent and then deregister it, Ansible does not have the ability to re-register it due to the conditions of the registration tasks. `check_keys.stat.exists ==...
Hello team! A community upgrading his environment from v4.2 to v4.3 suffered problems with his manager because he had not updated his `api.yaml`. The cause is this change: https://github.com/wazuh/wazuh/pull/11410 It...
Hello team, Since the Docker image was updated [here](https://github.com/wazuh/wazuh-docker/commit/3f75dbdd39efa9f200f1405bfb6ac5dc56c3c572), we are able to create an Elasticsearch cluster in a more efficient way and it would be necessary to add the...
|Wazuh version|Component|Install type|Install method|Platform| |---|---|---|---|---| | 4.0 | Logcollector | Manager/Agents | Packages/Sources | All | - Google groups: https://groups.google.com/u/1/g/wazuh/c/CJCuzgzZbag Hello team, We believe that it is necessary an option...
## Your Question Hello everyone, a pleasure to write here and first of all I would like to say that I love the project and you guys are great! Secondly,...
Hello team, Would it be possible to add a default configuration, the fragment and the necessary parameters to be able to deploy the AWS S3 wodle more comfortably? Right now...
#### Share the context Compliance-operator installation in EKS via Helm Chart #### Description of problem: When installing the compliance-operator using the Helm Chart we have encountered the following problem: ```bash...