wazuh-module-agents-001-general-1746079449

Uploaded by

Hendra Tanjung

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

11 views6 pages

wazuh-module-agents-001-general-1746079449

Uploaded by

Hendra Tanjung

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 6

info@wazuh.

com
https://wazuh.com

Threat hunting report

ID Name IP address Version Manager Operating system Registration date Last keep alive
001 sipenaemas 10.90.143.138 Wazuh v4.11.2 wazuh-manager- Ubuntu 24.04.1 Apr 18, 2025 @ May 1, 2025 @
master-0 LTS 14:58:54.000 06:04:00.000

Group: default

Browse through your security alerts, identifying issues and threats in your environment.

2025-04-30T14:04:09 to 2025-05-01T14:04:09
cluster.name: 6ff7k1vyg916 AND agent.id: 001

Copyright © Wazuh, Inc. Page 1 of 6

[email protected]
https://wazuh.com

Top 10 Alert groups evolution

Alerts

Copyright © Wazuh, Inc. Page 2 of 6

[email protected]
https://wazuh.com

Top 5 alerts

Top 5 rule groups

Top 5 PCI DSS Requirements

[email protected]
https://wazuh.com

Alerts summary

Rule ID Description Level Count

31101 Web server 400 error code. 5 2415
31151 Multiple web server 400 error codes from same source ip. 10 189
653 Host Blocked by host-deny Active Response 3 189
654 Host Unblocked by host-deny Active Response 3 12
31516 Suspicious URL access. 6 5
31509 CMS (WordPress or Joomla) login attempt. 3 2
31301 Nginx error message. 3 1
31303 Nginx critical message. 5 1
591 Log file rotated. 3 1

[email protected]
https://wazuh.com

Groups summary

Groups Count
web 2613
accesslog 2604
attack 2422
ossec 202
active_response 201
recon 189
web_scan 189
appsec 7
nginx 2

WUZUH_Security Information Event Management_Documentation
No ratings yet
WUZUH_Security Information Event Management_Documentation
59 pages
Wazuh
No ratings yet
Wazuh
32 pages
Wazuh-Elastic Stack Training: Deck 1
100% (2)
Wazuh-Elastic Stack Training: Deck 1
66 pages
Opensource Security Platformy Wazuh
No ratings yet
Opensource Security Platformy Wazuh
66 pages
Fhbj
No ratings yet
Fhbj
63 pages
01-Introduction & Installation
No ratings yet
01-Introduction & Installation
42 pages
Identifying Web Attacks Through Logs Study Guide
No ratings yet
Identifying Web Attacks Through Logs Study Guide
57 pages
Deployment Wazuh With High Availability Like A Production
No ratings yet
Deployment Wazuh With High Availability Like A Production
15 pages
Implementing Security Measures Using Managed Detection and Response (MDR)
No ratings yet
Implementing Security Measures Using Managed Detection and Response (MDR)
67 pages
Executive Report - 16mar2023 - 31mar2023
No ratings yet
Executive Report - 16mar2023 - 31mar2023
35 pages
Executive Report - 16jan2023 - 31jan2023
No ratings yet
Executive Report - 16jan2023 - 31jan2023
35 pages
Sept 7
No ratings yet
Sept 7
28 pages
scientific22.6
No ratings yet
scientific22.6
440 pages
Digital Pakistan Cybersecurity Hands-On Training - Day 2
No ratings yet
Digital Pakistan Cybersecurity Hands-On Training - Day 2
49 pages
Day 1
No ratings yet
Day 1
47 pages
Penetration Testing Slides
No ratings yet
Penetration Testing Slides
64 pages
Final_Capstone_Activity__SelfEnrolled__Student_version
No ratings yet
Final_Capstone_Activity__SelfEnrolled__Student_version
5 pages
A_Phun_Day_of_Hacking_the_Box__Offshore.docx
No ratings yet
A_Phun_Day_of_Hacking_the_Box__Offshore.docx
7 pages
Introduction To Threat Hunting
No ratings yet
Introduction To Threat Hunting
75 pages
5196-6666-1-PBF
No ratings yet
5196-6666-1-PBF
12 pages
CS Unit-2 VJ
No ratings yet
CS Unit-2 VJ
35 pages
13.Hacking webservers
No ratings yet
13.Hacking webservers
27 pages
Assignment 1
No ratings yet
Assignment 1
25 pages
Report Openvas
No ratings yet
Report Openvas
10 pages
Websheltz, SQL Injection and Cross-Site Scripting is Boring - Gimme a Command Prompt
No ratings yet
Websheltz, SQL Injection and Cross-Site Scripting is Boring - Gimme a Command Prompt
20 pages
Wazuh Cloud
No ratings yet
Wazuh Cloud
41 pages
Proof of Concept Guide
No ratings yet
Proof of Concept Guide
14 pages
ETHICAL HACKING Web Security.
No ratings yet
ETHICAL HACKING Web Security.
25 pages
Bug Bounty Tutorial
No ratings yet
Bug Bounty Tutorial
14 pages
Course Noteh
No ratings yet
Course Noteh
22 pages
Practice Test: Oracle 1z0-238
No ratings yet
Practice Test: Oracle 1z0-238
60 pages
Task Sheet 2
No ratings yet
Task Sheet 2
21 pages
Getting Started With Wazuh!!!
No ratings yet
Getting Started With Wazuh!!!
5 pages
Incident Response Plan
No ratings yet
Incident Response Plan
7 pages
Detecting Webshell
No ratings yet
Detecting Webshell
39 pages
Work Security in Linux
No ratings yet
Work Security in Linux
24 pages
How To Response Against Web Security Incident Signed
No ratings yet
How To Response Against Web Security Incident Signed
38 pages
IntruderReport - 06 Oct 2021
No ratings yet
IntruderReport - 06 Oct 2021
15 pages
How To Install SSL Certificate On Oracle Linux
No ratings yet
How To Install SSL Certificate On Oracle Linux
3 pages
(Divi Report) Tokenlab
No ratings yet
(Divi Report) Tokenlab
12 pages
SIEM Implementation
No ratings yet
SIEM Implementation
6 pages
2019 KY Toward A Deep Learning
No ratings yet
2019 KY Toward A Deep Learning
8 pages
45013140
No ratings yet
45013140
67 pages
Information Gathering - 3
No ratings yet
Information Gathering - 3
14 pages
DBMS 1
No ratings yet
DBMS 1
79 pages
A Review of Wazuh Tool Capabilities for
No ratings yet
A Review of Wazuh Tool Capabilities for
5 pages
SushantMohan-Project3
No ratings yet
SushantMohan-Project3
6 pages
IntruderReport - 04 Oct 2021
No ratings yet
IntruderReport - 04 Oct 2021
13 pages
Godawari College: Project Work Report
100% (1)
Godawari College: Project Work Report
19 pages
Web Server Security and Survey On Web Application Security
No ratings yet
Web Server Security and Survey On Web Application Security
6 pages
Trend Report
No ratings yet
Trend Report
21 pages
open source GIS
No ratings yet
open source GIS
7 pages
RSA Archer 6.6 Security Configuration Guide
No ratings yet
RSA Archer 6.6 Security Configuration Guide
121 pages
Target Server Attack Report
No ratings yet
Target Server Attack Report
6 pages
Unit I: Web and Internet Technologies (15A05605) III B.Tech II Sem (CSE)
No ratings yet
Unit I: Web and Internet Technologies (15A05605) III B.Tech II Sem (CSE)
50 pages
20 Linux Server Hardening Security Tips - NixCraft
No ratings yet
20 Linux Server Hardening Security Tips - NixCraft
28 pages
A Diafaan SMS Server
No ratings yet
A Diafaan SMS Server
141 pages
BSOTM LAB Complete
No ratings yet
BSOTM LAB Complete
7 pages
Test For Configuration and Deployment Aim: Description
No ratings yet
Test For Configuration and Deployment Aim: Description
8 pages
Web Developer Interview Questions PDF
No ratings yet
Web Developer Interview Questions PDF
24 pages
checklist
No ratings yet
checklist
27 pages
_Unit 3 IOT Programming
No ratings yet
_Unit 3 IOT Programming
18 pages
WCDirectoryServerAdminGuide PDF
No ratings yet
WCDirectoryServerAdminGuide PDF
70 pages
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1"> <TITLE>ERROR: The requested URL could not be retrieved</TITLE> <STYLE type="text/css"></STYLE> </HEAD><BODY> <H1>ERROR</H1> <H2>The requested URL could not be retrieved</H2> <HR noshade size="1px"> <P> While trying to process the request: <PRE> TEXT http://www.scribd.com/titlecleaner?title=Presentation1.ppt HTTP/1.1 User-Agent: Opera/9.80 (Windows NT 6.1; U; en) Presto/2.10.229 Version/11.61 Host: www.scribd.com Accept-Language: en-US,en;q=0.9 Accept-Encoding: gzip, deflate Proxy-Authorization: Basic a3VtYXJzYW5kaXA6OTE5OTQwOTgxNXJz Referer: http://www.scribd.com/upload-document?archive_doc=76043007&metadata=%7B%22page%22%3A%22read%22%2C%22platform%22%3A%22web%22%2C%22action%22%3A%22down
No ratings yet
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <HTML><HEAD><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1"> <TITLE>ERROR: The requested URL could not be retrieved</TITLE> <STYLE type="text/css"></STYLE> </HEAD><BODY> <H1>ERROR</H1> <H2>The requested URL could not be retrieved</H2> <HR noshade size="1px"> <P> While trying to process the request: <PRE> TEXT http://www.scribd.com/titlecleaner?title=Presentation1.ppt HTTP/1.1 User-Agent: Opera/9.80 (Windows NT 6.1; U; en) Presto/2.10.229 Version/11.61 Host: www.scribd.com Accept-Language: en-US,en;q=0.9 Accept-Encoding: gzip, deflate Proxy-Authorization: Basic a3VtYXJzYW5kaXA6OTE5OTQwOTgxNXJz Referer: http://www.scribd.com/upload-document?archive_doc=76043007&metadata=%7B%22page%22%3A%22read%22%2C%22platform%22%3A%22web%22%2C%22action%22%3A%22down
40 pages
HTTP Transformer Installation Guide - Grass Valley - PDF Room
No ratings yet
HTTP Transformer Installation Guide - Grass Valley - PDF Room
30 pages
Socio-technicalSystems-TransformingTheoryintoPractice
No ratings yet
Socio-technicalSystems-TransformingTheoryintoPractice
31 pages
task 1
No ratings yet
task 1
7 pages
Brian
No ratings yet
Brian
2 pages
Applying_organizational_psychology_as_a_design_sci-1
No ratings yet
Applying_organizational_psychology_as_a_design_sci-1
31 pages
Screenshot 2024-11-27 at 6.33.19 PM
No ratings yet
Screenshot 2024-11-27 at 6.33.19 PM
1 page
The Eight Unique Features of E-Commerce Technology
No ratings yet
The Eight Unique Features of E-Commerce Technology
7 pages
AWS Vs GCP: Services: Compute, Database, Storage, and Networking
No ratings yet
AWS Vs GCP: Services: Compute, Database, Storage, and Networking
29 pages
Hack Sheet
100% (2)
Hack Sheet
3 pages
5 Perencanaan Audit
No ratings yet
5 Perencanaan Audit
26 pages
Futuredirections
No ratings yet
Futuredirections
18 pages
08 J2EE Perf Best Practices
100% (1)
08 J2EE Perf Best Practices
58 pages
Portal Frame
No ratings yet
Portal Frame
152 pages
Webserver Checklist Pentest
No ratings yet
Webserver Checklist Pentest
5 pages
Ineffective Renal Tissue Perfusion
100% (4)
Ineffective Renal Tissue Perfusion
2 pages
IV Semester C Se
No ratings yet
IV Semester C Se
12 pages
Vulnhub - Kioptrix - Level 1.1 (#2) - Guillermo Cura
No ratings yet
Vulnhub - Kioptrix - Level 1.1 (#2) - Guillermo Cura
1 page
Ganti Tampilan Login
No ratings yet
Ganti Tampilan Login
15 pages
88-103 Agung Noviantoro, Amelia Belinda Silviana, Risma Rahmalia Fitriani, Hanum Putri Permatasari
No ratings yet
88-103 Agung Noviantoro, Amelia Belinda Silviana, Risma Rahmalia Fitriani, Hanum Putri Permatasari
16 pages
report
No ratings yet
report
12 pages
Citrix Access Suite Disaster Recovery Planningand Configuration
No ratings yet
Citrix Access Suite Disaster Recovery Planningand Configuration
94 pages
C# Down Loader Final Doc (New) 03
No ratings yet
C# Down Loader Final Doc (New) 03
92 pages
Aioseo Gatheringlittlescom
No ratings yet
Aioseo Gatheringlittlescom
13 pages
The Challenges and Opportunities of Public Governa
No ratings yet
The Challenges and Opportunities of Public Governa
7 pages
Jadwal Kuliah Semester Genap 2023-2024 Prodi TI-SI-2
No ratings yet
Jadwal Kuliah Semester Genap 2023-2024 Prodi TI-SI-2
10 pages
Security Tools Overview
100% (1)
Security Tools Overview
12 pages
We Updated The Drupal User Guide For Drupal 11
No ratings yet
We Updated The Drupal User Guide For Drupal 11
8 pages
Hack of Ip Add
100% (1)
Hack of Ip Add
4 pages
Ourlog 5804
No ratings yet
Ourlog 5804
5 pages
Timebox Manual
No ratings yet
Timebox Manual
42 pages
Voss Fulltech
No ratings yet
Voss Fulltech
14 pages
WT Lab Index
No ratings yet
WT Lab Index
3 pages
VMware vSphere Troubleshooting
From Everand
VMware vSphere Troubleshooting
Munir Muhammad Zeeshan
No ratings yet
Mastering SaltStack
From Everand
Mastering SaltStack
Joseph Hall
No ratings yet
SSL VPN : Understanding, evaluating and planning secure, web-based remote access
From Everand
SSL VPN : Understanding, evaluating and planning secure, web-based remote access
Tim Speed
No ratings yet