Thank you very much for this blue team series. I really appreciate it. Thank for sharing with us that knowledge, you explain very well I love your videos. Cheers from Mexico my friend, much respect.
thanks it did work very well in my configuration, we tested with the wazuh cloud, the only difference was in the client configuration, the log format was: json
thanks for the session. It's good for beginners like me. However, I cannot figure out what is the difference between snort and Suricata. What is the use cases that we must use snort instead of Suricata?. thanks.
Thanks alot for such an informative session. I have a query is it possible that I can send my suricata alerts to a newly created indice rather than sending it to wazuh_alerts*? can you please guide me in this regard
I'm following your work here in Brazil!!!! your channel is very good.
Thank you very much for this blue team series. I really appreciate it. Thank for sharing with us that knowledge, you explain very well I love your videos. Cheers from Mexico my friend, much respect.
thanks it did work very well in my configuration, we tested with the wazuh cloud, the only difference was in the client configuration, the log format was: json
Thank you so much for the explication
I have a query, why are you using this wazuh? and how to connect a Suricata on "switch/router" to collect all logs connected to my network?
always Best and very helpful for everyone
Nailed it! Can I ask for the link for Blue Team Series part 1?
If we use wazuh for logs analysis,ids and ips then why we learn about snort and suricata and why we use these tools?
12:13 wasn't that you were looking? It's there!
thanks for the session. It's good for beginners like me. However, I cannot figure out what is the difference between snort and Suricata. What is the use cases that we must use snort instead of Suricata?. thanks.
How to use Suricata as inline IPS and forward logs to any SIEM(Wazuh/splunk/Alienfualt)
Could you please show us how to install Suricata on Windows? Thanks
is it possible to forward suricata logs to graylog too?
i like you man good luck
How would I get the logs from Suricata into Wazuh if Suricata is running on a separate PC?
Nevermind. I somehow missed the fact that you used the Wazuh agent on the Suricata PC. Thanks for the video!
can you connect the suricata windows logs to Wazuh?
If so can anyone explain how?
Wazuh detect ssh brutte force attacks?
Thanks alot for such an informative session. I have a query is it possible that I can send my suricata alerts to a newly created indice rather than sending it to wazuh_alerts*? can you please guide me in this regard
Hi! Did you solve your doubt?
Regards.
brilliant, and am following
Very nice video !!
Can this be done with Windows?
Great video!
Muy bien. Te voy siguiendo.
quick remark for me it didn't work on ubuntu in ossec.conf syslog but when i change it to json i started receiving the logs in wazuh manager
Thanks
Bro i challenge can you hack Awaken monster battle adventure it is not available in playstore
Nice