Wazuh SIEM & Zenarmor NGFW Integration using Syslog

  Рет қаралды 6,910

LS111 Cyber Security Education

LS111 Cyber Security Education

10 ай бұрын

NOTE: This video is sponsored by Zenarmor and I do receive a small percentage back for every referral that signs up using the link, which gets put towards my Zenarmor subscription.
Welcome to my channel!
In this video, we are going to integrate Zenarmor NGFW with the open-source Wazuh SIEM/SDR by ingesting Syslog messages generated by Zenarmor. I will walk you through the setting up of custom Wazuh decoders and rules and we are going to test how Zenarmor blocks access to a potential phishing website and creates the event alerts in Wazuh for further analysis.
This video supplements my cyber security lab building series, so if you want to learn how to install Wazuh and Zenarmor before attempting this integration I have included the Wazuh installation tutorial as well as the Zenarmor installation tutorial in the playlists linked below.
P.S. Please don't forget to like and subscribe and share with your friends!
🔗Sign up link: sunnyvalley.cloud/?r=SVNRUZSU...
Zenarmor Playlist:
• Improve your cyber sec...
Cyber Security Lab Building Series Playlist:
• Virtual Cyber Security...
Blog post:
ls111.me/integrating-zenarmor...
DISCLAIMER: All information, techniques, and tools showcased in these videos are for educational and ethical penetration testing purposes ONLY. NEVER attempt to use this information to gain unauthorized access to systems without the EXPLICIT consent of its owners. This is a punishable offense by law in most countries.
#zenarmor #wazuh #SIEM #XDR #NGFW #cybersecurity #soc #blueteam

Пікірлер: 9
@azizihack6593
@azizihack6593 Ай бұрын
I hope to see more videos from this channel, very informative, detailed and organized content.
@kirennguyen1140
@kirennguyen1140 8 ай бұрын
Can't wait for the whole series. Thank you for your sharing
@l4te4oot91
@l4te4oot91 9 ай бұрын
This channel is a gold mine of knowledge. Super excited to go through these videos for my OPNSense journey and learn about other technologies. Thank you friend for the great content and passion to share your expertise.
@ls111cyberEd
@ls111cyberEd 9 ай бұрын
Thanks for watching!
@amjads8971
@amjads8971 6 ай бұрын
Can you only monitor and install agents on ec2/vietual machines or you can also install it in kubernetes to monitor cluster nodes/pods/services ?
@paz5655
@paz5655 5 ай бұрын
I see this is sponsored by ZenArmor. But can you answer, for example on OPNsense or pfSense, why not just use the built-in syslog or wazuh agent over zenarmor adding another layer of complexity?
@Samran_Shahzad
@Samran_Shahzad 3 ай бұрын
Hi, anyone tell me that how can I confirm that my linux rsyslog is coming in wazuh dashboard how to check that?? How to configure rsyslog of kali linux without adding as an agent ??
@jcevo2308
@jcevo2308 2 ай бұрын
ngrep is your friend when trying to figure out if Wazuh is "seeing" it in the first place!
@Ian-sj9id
@Ian-sj9id 8 ай бұрын
*promo sm* 🍀
Юрий Медведев - Wazuh как DevSecOps-платформа
44:36
Юрий Медведев - Wazuh как DevSecOps-платформа
DevOops
Рет қаралды 3,5 М.
How to benefit from Zenarmor NGFW protection anywhere using OPNSense and Zerotier
16:52
How to benefit from Zenarmor NGFW protection anywhere using OPNSense and Zerotier
LS111 Cyber Security Education
Рет қаралды 6 М.
Whyyyy? 😭 #shorts by Leisi Crazy
00:16
Whyyyy? 😭 #shorts by Leisi Crazy
Leisi Crazy
Рет қаралды 20 МЛН
Super gymnastics 😍🫣
00:15
Super gymnastics 😍🫣
Lexa_Merin
Рет қаралды 99 МЛН
100❤️
00:20
100❤️
Nonomen ノノメン
Рет қаралды 74 МЛН
🍟Best French Fries Homemade #cooking #shorts
00:42
🍟Best French Fries Homemade #cooking #shorts
BANKII
Рет қаралды 64 МЛН
Why You Shouldn't Pay For Cybersecurity Tools - 9 Open Source Options for Small Companies
16:26
Why You Shouldn't Pay For Cybersecurity Tools - 9 Open Source Options for Small Companies
The Infosec Academy
Рет қаралды 80 М.
Active Response and XDR with WAZUH SIEM Tool
37:55
Active Response and XDR with WAZUH SIEM Tool
Technify Networks
Рет қаралды 408
Graylog 6: The Best Open Source Logging Tool Got Better!
9:36
Graylog 6: The Best Open Source Logging Tool Got Better!
Lawrence Systems
Рет қаралды 26 М.
Wazuh Agent Install - World's Best OpenSource EDR Agent!
20:47
Wazuh Agent Install - World's Best OpenSource EDR Agent!
Taylor Walton
Рет қаралды 19 М.
Zenarmor Next-Gen Firewall - Exploring the advanced security features & paid subscription
10:45
Zenarmor Next-Gen Firewall - Exploring the advanced security features & paid subscription
LS111 Cyber Security Education
Рет қаралды 13 М.
Visualising Network Threats
16:53
Visualising Network Threats
Pro Tech Show
Рет қаралды 6 М.
FREE SIEM Stack in Seconds! - Deploy a Wazuh SIEM Within Seconds with Docker!
18:44
FREE SIEM Stack in Seconds! - Deploy a Wazuh SIEM Within Seconds with Docker!
Taylor Walton
Рет қаралды 25 М.
Build a Powerful Home SIEM Lab Without Hassle! (Step by Step Guide)
13:17
Build a Powerful Home SIEM Lab Without Hassle! (Step by Step Guide)
Gerald Auger, PhD - Simply Cyber
Рет қаралды 131 М.
Automate Your InfoSec Tasks with Wazuh's API!
29:14
Automate Your InfoSec Tasks with Wazuh's API!
Taylor Walton
Рет қаралды 7 М.
Whyyyy? 😭 #shorts by Leisi Crazy
00:16
Whyyyy? 😭 #shorts by Leisi Crazy
Leisi Crazy
Рет қаралды 20 МЛН