Host-based security monitoring has become increasingly important as the number and severity of threats keeps growing. In addition, network security monitoring tools are now harder to deploy, and not as efficient as they used to be.
Another driver for the adoption of host-based monitoring tools is the increased need to comply with security regulations (e.g. PCI DSS).
Wazuh started as a fork of the OSSEC project, and has quickly evolved into a more comprehensive solution. It now integrates OpenSCAP and Elastic Stack providing additional security monitoring and analysis capabilities.
In this session we will show you how to deploy and use Wazuh to: