Wazuh

Wazuh is an enterprise-ready platform used for security monitoring. It is a free and open-source platform that is used for threat detection, incident response and compliance, and integrity monitoring. Wazuh is capable of protecting workloads across virtualized, on-premises, containerized, and cloud-based environments.

Wazuh Server

This app is installed directly on Lungo

Port

Purpose

1514

Agent connection

1515

Agent enrollment

514

Syslog Collector

55000

Server RESTful API

9200

Indexer RESTful API

5601

Web UI

Wazuh Agent

The agent is pushed via Ansible and installed directly on each host

PreviousGoogle OpenID Auth NextCrowdSec

Last updated 1 year ago

Was this helpful?