SOC Lab Series

Hands-on detection engineering and security monitoring with Wazuh

Articles

Investigation of User Creation and Privilege Escalation on Linux
Let’s see how to configure the SIEM to detect and alert on user creation and privilege assignment activities on Linux systems.
Detecting User Creation and Privilege Escalation on Windows
In this part, we implement detection and alerting for user creation and privilege assignment activities on Windows systems.
Agent Onboarding on Linux with Bash
This simple Bash script helps deploy Wazuh agents on Linux systems.