Wazuh SIEM and XDR

Wazuh is Security Information and Event Management (SIEM) and Extended Detection and Response (XDR), which is capable of

• Security monitoring

• IT assets protection using its capabilities

• File Integrity Monitoring (FIM)

• Security Configuration Assessment (SCA)

• Vulnerability Detection

• To enhance Organization's cybersecurity posture enhancement

Use cases

• Configuration Management

• Malware Detection

• File Integrity Monitoring

• Threat Hunting

• Log Data Analysis

• Vulnerability Detection

• Incident Response

• Regulatory Compliance

• IT Hygiene

• Cloud Security

• Containers Security

• Posture Management

• Workload Protection

Wazuh Components

• Wazuh Indexer

• Wazuh Server

• Wazuh Dashboard

• Wazuh Endpoint

Wazuh Architecture

Reference https://documentation.wazuh.com/current/getting-started/architecture.html

References:

Wazuh - Open Source XDR. Open Source SIEM.Wazuh

Wazuh documentationwazuh

Architecture - Getting started with Wazuh · Wazuh documentationwazuh

WazuhGitHub