Just started getting into Wazuh for the lab, playing around with it’s rule management and alerting has been really fun.
I also didn’t realize it had automated responses similar to an EDR/XDR using a VirusTotal API key, but it’s really good! Picks up the VirusTotal samples as well as real “declawed” malware really well!
1 Like