wazuh-kubernetes-helm-chart

Wazuh is a centralized Security Information and Event Management (SIEM) platform offering vulnerability intelligence and threat monitoring capabilities.

Generating Certificates

To generate the necessary certificates, refer to the instructions available here.

Retrieving Hashes

To retrieve hashes, execute the following command:

docker run --rm -ti wazuh/wazuh-indexer:4.12.0 bash /usr/share/wazuh-indexer/plugins/opensearch-security/tools/hash.sh`

Automatic Configuration Updates

Any changes made to the indexer configuration or secrets will be automatically applied via job hooks. The reloader monitors for updates to ensure seamless application of changes. For a practical example of a production configuration, check the example folder.

Compatibility

This Helm chart has been tested with Wazuh version 4.12.0. Please note:

Wazuh supports only a single master node and multiple worker nodes. Although the configuration is prepared for a multi-master setup, Wazuh does not currently support this feature. All XML configuration files are automatically updated through init containers.

Contributing

This fork welcomes contributions and is open to transitioning into the official Wazuh project repository. Contributions are encouraged and appreciated.

Values

To see all values and instructions, refer to the README.md of the chart.