Wazuh is an open-source security platform that provides unified XDR and SIEM protection for endpoints and cloud workloads. It offers: 1. Endpoint Security: Configuration assessment, malware detection, and file integrity monitoring. 2. Threat Hunting: Log data analysis and vulnerability detection. 3. Security Operations: Incident response and regulatory compliance. 4. Cloud Security: Container security, posture management, and workload protection. The platform integrates historically separate functions into a single agent and platform architecture, covering public clouds, private clouds, and on-premise data centers. Wazuh includes real-time correlation and context for analysts, with active response capabilities for on-device remediation. As a SIEM solution, Wazuh provides monitoring, detection, and alerting of security events and incidents. It is designed to be flexible, scalable, and free from vendor lock-in, with no license costs. The platform is supported by a large community and is widely used in enterprise environments.
FEATURES
This tool is not verified yet and doesn't have listed features.
Did you submit the verified tool? Sign in to add features.
Are you the author? Claim the tool by clicking the icon above. After claiming, you can add features.
ALTERNATIVES
Incident Response Documentation tool for tracking findings and tasks.
Collection of scripts and resources for DevSecOps, Security Automation and Automated Incident Response Remediation.
Check if your email address has been involved in a data breach.
Modular SOAR implementation in Python for security orchestration, automation, and response.
A standardized framework for describing and classifying cybersecurity incidents
A compilation of suggested tools for each component in a detection and response pipeline, with real-world examples, to design effective threat detection and response pipelines.