AWSDetonationLab
AWSDetonationLab copied to clipboard
Add support for Wazuh v3.9.x and ELK 7.1.0
Hi @sonofagl1tch and @mgmacias95,
since the release of Wazuh v3.9.1, Wazuh is compatible with Elastic 7.1.0 but now, Logstash and Java aren't necessary, so the installation process from installWazuh.sh needs some changes.
In addition, Elastic 7.1.0 includes some security features out of the box. More info at https://www.elastic.co/es/blog/getting-started-with-elasticsearch-security.
Requested changes:
- [ ] Bump Wazuh version to v3.9.1.
- [ ] Remove Logstash.
- [ ] Remove Java.
- [ ] Install Filebeat and the new template.
Some helpful links:
- https://documentation.wazuh.com/current/installation-guide/installing-wazuh-server/wazuh_server_rpm.html#wazuh-server-rpm
- https://documentation.wazuh.com/current/installation-guide/installing-wazuh-server/wazuh_server_deb.html#wazuh-server-deb
- https://documentation.wazuh.com/current/installation-guide/installing-elastic-stack/elastic_server_rpm.html
- https://documentation.wazuh.com/current/installation-guide/installing-elastic-stack/elastic_server_deb.html.
Best regards, Braulio.
@BraulioV thanks for letting us know! My apologies for not replying sooner but the notification ended up in my spam folder for some reason. I will put these updates on the roadmap so we can stay current. thanks!