Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Config of Core Dump generation on Windows OS of wazuh agents (HOWTO) #7287

Closed
2 tasks
Tracked by #9913
tdrauncieal opened this issue May 3, 2024 · 2 comments · Fixed by #7299
Closed
2 tasks
Tracked by #9913

Config of Core Dump generation on Windows OS of wazuh agents (HOWTO) #7287

tdrauncieal opened this issue May 3, 2024 · 2 comments · Fixed by #7299
Assignees
@tdrauncieal
Labels
Documentation improvements Documentation improvements documentation level/task Task issue type/change Change requested

Comments

@tdrauncieal
Copy link

Related issue
wazuh/wazuh#9910

Description

The aim is to document the processes and steps necessary to enable/disable the generation of coredumps in the Windows OS, as part of the installation process of the wazuh agent

Goals

Agents for Windows are included in this development

  • Document the process to enable/disable coredumps generation
  • User authorization must be requested to make modifications to the host OS as well as to upload the collected data (only for Windows agents)

DoD

  • enable/disable Windows agents coredump configuration
  • user authorization process at Windows agents installation
@tdrauncieal tdrauncieal added documentation Documentation improvements Documentation improvements level/task Task issue type/change Change requested labels May 3, 2024
@ncvicchi ncvicchi mentioned this issue May 3, 2024
Closed
9 tasks
@tdrauncieal tdrauncieal mentioned this issue May 3, 2024
Closed
2 tasks
@ncvicchi ncvicchi mentioned this issue May 3, 2024
Open
14 tasks
@tdrauncieal tdrauncieal self-assigned this May 8, 2024
@tdrauncieal
Copy link
Author

tdrauncieal commented May 9, 2024
edited

To document the enabling process to generate coredump in user processes, (a.k.a. user mode dumps),
the necessary steps have been followed, consulted in the Collecting User-Mode Dumps, official published documentation.

After applying the steps, which will be published in this job, they were tested in a Windows virtual environment using an application specifically prepared to generate a coredump.

Image

@tdrauncieal
Copy link
Author

Exploring the specialization capacity offered, which allows configuring the generation of coredump categorized by application, the successful operation of this feature is verified.
To do this, just follow the steps described in the official documentation, previously provided.
image

@tdrauncieal tdrauncieal mentioned this issue May 9, 2024
Merged
1 task
@tdrauncieal tdrauncieal linked a pull request May 9, 2024 that will close this issue
Coredump generation config on Windows endpoints #7299
Merged
1 task
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tdrauncieal tdrauncieal

Labels
Documentation improvements Documentation improvements documentation level/task Task issue type/change Change requested
Projects
Release 4.9.0
Status: Done
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Coredump generation config on Windows endpoints wazuh/wazuh-documentation
2 participants
@ncvicchi @tdrauncieal