In short, just give it access to your alerts.json, default rules, custom rules, archives.json, and magic happens.
Cloud Security & SOC portfolio with AWS labs, SIEM monitoring, and threat analysis. AWS | Wazuh | Splunk | Python
WaZuh XDR and SIEM Enhancements
Wazuh is a free, open-source security platform that unifies SIEM and XDR. It is designed to protect endpoints, such as servers, virtual machines, and cloud workloads, by monitoring them for threats.
Automated Security Lab Infrastructure. A DevSecOps portfolio project demonstrating modular IaC using OpenTofu/Terraform on Proxmox, featuring automated verification, SIEM deployment, and hardening pipelines.
This project contains custom LKRG (Linux Kernel Runtime Guard) decoders and rules for Wazuh
Add a description, image, and links to the wazuh-siem topic page so that developers can more easily learn about it.
To associate your repository with the wazuh-siem topic, visit your repo's landing page and select "manage topics."