A security platform that integrates and manages diverse endpoints is critical for contemporary security operations. As businesses move towards cloud infrastructure, containerized applications and a broader set of workstation options for employees, XDR solutions are becoming a staple. Wazuh offers an open source alternative to existing XDR and SIEM solutions. It incorporates and extends multiple free and open source components to make a cohesive and proven platform.
This learning module is an overview of the Wazuh platform for analysts. The goal is to make you as effective as possible with this tool as quickly as possible. To accomplish this, we will dive into the capabilities that are the most relevant for detection, hunting and investigative purposes. As we progress, we will test drive the platform by walking through a simple compromise scenario.
The events in your SIEM can be found in the following timespan: 4 Nov 2023 - 6 Nov 2023.
> Please note, Wazuh may take up to a minute longer to start than OpenSearch](https://assets.aceresponder.com/meta/082c1f9e-59e7-439e-83a3-efb740c2e149.png)
Intro to Wazuh
Prerequisites:
A security platform that integrates and manages diverse endpoints is critical for contemporary security operations. As businesses move towards cloud infrastructure, containerized applications and a broader set of workstation options for employees, XDR solutions are becoming a staple. Wazuh offers an open source alternative to existing XDR and SIEM solutions. It incorporates and extends multiple free and open source components to make a cohesive and proven platform.
This learning module is an overview of the Wazuh platform for analysts. The goal is to make you as effective as possible with this tool as quickly as possible. To accomplish this, we will dive into the capabilities that are the most relevant for detection, hunting and investigative purposes. As we progress, we will test drive the platform by walking through a simple compromise scenario.
The events in your SIEM can be found in the following timespan: 4 Nov 2023 - 6 Nov 2023.
Please note, Wazuh may take up to a minute longer to start than OpenSearch
Analyst
$17.49
/mo
Explore realistic pre-recorded attacks
Master full-featured defensive platforms
Browser-based challenges and modules
Extended attack videos
Grants access to Analyst content. You can cancel any time by returning to this page and following the cancellation steps.
Defender
$44.49
/mo
Instant fully interactive labs
Hands-on prevention and detection
Master offensive techniques
Security engineering exercises
Highly realistic and dynamic scenarios
Access to all Analyst-level content
Grants access to all Defender content, Analyst content and interactive lab environments. You can cancel any time by returning to this page and following the cancellation steps.