Wazuh SIEM & XDR Agent Installation - Virtual Lab Building Series: Ep9

Hey all and welcome to my channel! In Episode 9 of our cyber security virtual lab building series, we are going to install and explore the Wazuh Security Platform which is a SIEM (Security Incident & Event Management) platform, as well as its Linux and Windows XDR/EDR agents.

In this lab we will look at how to deploy the prebuilt Wazuh OVA image into Virtualbox, VMWare and Hyper-V and configure its static IP address connecting it to our lab network. We will then deploy Wazuh agents to our Ubuntu 20.04 server as well as our Windows 10 Pro desktop.

This video is the first addition to our Security Operations Center (SOC ) building series, so please don't forget to turn on notifications so you can be immediately notified of future videos I will be publishing, next up is the installation of TheHive, MISP and Cortex so don't miss it!

If you have been enjoying this series so far, please don't forget to like and subscribe!

Links used in video:
https://wazuh.com/
https://docs.vmware.com/en/VMware-vSp...
https://documentation.wazuh.com/curre...

Commands Used:
Ip add
sudo vi /etc/sysconfig/network-scripts/ifcfg-eth0
Shift+ :wq (save and quit)
Sudo systemctl restart network

Usernames and Passwords:
Username: wazuh-user
Password: wazuh (all lower case)
Dashboard: admin/admin


NOTE: I am not sponsored by or affiliated to any of the products or services mentioned in this video, all opinions are my own based on personal experiences.

DISCLAIMER: All information, techniques and tools showcased in these videos are for educational and ethical penetration testing purposes ONLY. NEVER attempt to use this information to gain unauthorized access to systems without the EXCPLICIT consent of its owners. This is a punishable offence by law in most countries.

#CybserSecurity #Wazuh #SIEM