Overview

Dive into the world of intrusion detection with this comprehensive tutorial on Wazuh, an open-source security platform that unifies multiple security functions into a single agent and platform architecture. Learn how to protect public clouds, private clouds, and on-premise data centers using Wazuh's powerful features. Explore the platform's architecture, deployment process, and key modules through a practical demonstration. Set up your own Wazuh server, configure it for the first time, and understand how to manage agents effectively. Discover how to monitor events, implement integrity monitoring, prevent brute force attacks, and leverage filtering techniques. Gain insights into vulnerability management and learn how to utilize Mitre intelligence for enhanced security. By the end of this tutorial, you'll have a solid foundation in using Wazuh for robust intrusion detection and overall cybersecurity management.

Syllabus

Introduction
What We’ll Be Covering
Wazuh Prerequisites
Introduction to Wazuh
Wazuh Features
How Does Wazuh Work?
About Our Lab Environment
Deploying Wazuh
Beginning the Practical Demo
Create Your Own Wazuh Server
How to Access Your Wazuh Server
Configuring Wazuh for the First Time
An Overview of Wazuh Modules
An Overview of the Management Area
How to Setup Wazuh Agents
What Events an Agent Display?
All About Integrity Monitoring
How to Stop the Brute Force
Back to Integrity Monitoring
How to use Filtering
About Vulnerabilities
Making Use of Mitre Intelligence
Conclusion

Taught by

Linode

Reviews

4.6 rating, based on 15 Class Central reviews

Start your review of Intrusion Detection with Wazuh - Blue Team Series with Hackersploit

RNJudas @rnjudas

A little dated in terms of WAZUH as the overall interface from 4.2 to 4.8 has had a major overhaul.

However!

It is a fairly noteworthy introductory course. The coinciding SSH attack during the training demo really aided in the demonstration on the delivery of how to utilize the SIEM.
Saidur Rahman @Etharsec

I have little knowledge about SIEM and Wazuh. It is a good course I love it and the mentor is awesome. Thanks, Alexis for making this course
Ahmadjan Ataniyazov

Great instructor with hands-on experience! I’m learning this tool now, it is really exciting. I’m wondering how we can implement this using docker containers.
Yurizan Cadavid De La Pava

Excelente, entendi mas el SIEM de wazuh, se entendio el como esta herramienta puede evitar vulnerabilidades con analisis
Rashmin Gimhani

I recently completed the course on Coursera, and I must say it was an excellent experience. The course was well-structured and suitable for beginners. The instructor explained concepts clearly and provided practical examples. The course also inclu…

I recently completed the course on Coursera, and I must say it was an excellent experience. The course was well-structured and suitable for beginners. The instructor explained concepts clearly and provided practical examples.

The course also included hands-on exercises and assignments, allowing me to apply what I learned. The assignments were challenging but doable, and they helped reinforce my understanding of the material.

The course forum was a great place to interact with other learners and get help when I faced difficulties. The community was supportive, and the instructors were responsive to questions.

One thing I appreciated was the flexibility of the course. I could work at my own pace and fit it into my schedule. The video lectures were of high quality, and the quizzes at the end of each module helped me test my knowledge.
Rogelio Rodrigues

The course is very well structured. I had already worked with the Wazuh system, it served to recap some topics and improve my use. There should be a certificate of completion so that it can be shared on social media.
Le Hai

This course is helpfull. Because when i study it done. I can control my system it well.it help me saving many more money to invest buy many device to servere for security.thanks so much.
Dmitry Ivanov

Very informative. Unexpected real-life example of a brute-force attack and how to react to it using Wazuh.
Thank you.
Justin Pineda

Thank you as this helps me configured wazuh in my macOS host to monitor it and my VMs. Got a lot of videos but it wasn't that clear and I keep on getting errors.
Assoc. Prof. Ts. Dr. Asif Iqbal Hajamydeen

Really helpful in understanding the fundamentals of Wazuh and how to detect intrusions. Looking forward for further courses along these lines.
Shahswiene

Got the basics from the tutorial and has informative information. This course would help beginners to understand the grasp of wazuh.
Alberto Barba

Easy to understand and to start learning wazuh! It's very nice, i like it so much and i'll do more courses of this platform! thank you!! :D
Anele Daniel

Thank you for the course I have learnt a lot about Wazuh.
Im looing forward to more courses of this nature in the future
Kabelo J Rashoalane

Awesome, just experienced live attack and remediation.... I totally recommend it to anyone interested in blueteam cybersecurity.
Bla Bla

Taught by

Intrusion Detection with Suricata - Blue Team Series with Hackersploit

Installing and Configuring Wazuh for SIEM - Blue Team Operations

Secure Azure services and workloads with Microsoft Defender for Cloud regulatory compliance controls

Blue Team Hacking - Intrusion Detection with Snort

Linux Red Team Exploitation Techniques - Red Team Series

Monitor in Real-Time with OSSEC - See What’s Taking Place in Your Server

Never Stop Learning.