Difference between revisions of "Wazuh"

From 24PinTech Wiki
Jump to navigation Jump to search
(Created page with "Agent Config (Agent Side) net stop wazuh net start wazuh Restart-Service -Name wazuh Agent Config (Server Side) /var/ossec/bin/manage_agents -a <agent_IP> -n <agent_name> /var/ossec/bin/manage_agents -l | grep <agent_name> /var/ossec/bin/manage_agents -e <agent_id> Server Config - Nano systemctl start/status/stop/restart wazuh-manager /usr/share/kibana/data/wazuh/config/wazuh.yml /var/ossec/etc/shared/dbms/agent.conf /var/ossec/etc/ossec.conf /etc/filebeat/f...")
 
Line 1: Line 1:
Agent Config (Agent Side)
=== Commands: ===


====<u>Agent Config (Agent Side)</u>====
net stop wazuh
net stop wazuh


Line 6: Line 7:


Restart-Service -Name wazuh
Restart-Service -Name wazuh
 
==== <u>Agent Config (Server Side)</u>====
Agent Config (Server Side)
 
/var/ossec/bin/manage_agents -a <agent_IP> -n <agent_name>
/var/ossec/bin/manage_agents -a <agent_IP> -n <agent_name>


Line 14: Line 13:


/var/ossec/bin/manage_agents -e <agent_id>
/var/ossec/bin/manage_agents -e <agent_id>
 
====<u>Server Config - Nano</u>====
Server Config - Nano
 
systemctl start/status/stop/restart wazuh-manager
systemctl start/status/stop/restart wazuh-manager


Revision as of 20:01, 15 September 2022

Commands:

Agent Config (Agent Side)

net stop wazuh

net start wazuh

Restart-Service -Name wazuh

Agent Config (Server Side)

/var/ossec/bin/manage_agents -a <agent_IP> -n <agent_name>

/var/ossec/bin/manage_agents -l | grep <agent_name>

/var/ossec/bin/manage_agents -e <agent_id>

Server Config - Nano

systemctl start/status/stop/restart wazuh-manager

/usr/share/kibana/data/wazuh/config/wazuh.yml

/var/ossec/etc/shared/dbms/agent.conf

/var/ossec/etc/ossec.conf

/etc/filebeat/filebeat.yml

/etc/kibana/kibana.yml

/var/ossec/bin/wazuh-control -j info

/var/ossec/logs/active-responses.log

Retrieved from "https://wiki.24pin.tech/index.php?title=Wazuh&oldid=1951"