Home

Welcome to the Wazuh for Splunk app wiki!

Wazuh helps you to gain deeper security visibility into your infrastructure by monitoring hosts at an operating system and application level. It provides an updated log analysis ruleset and a RESTful API that allows you to monitor the status and configuration of all Wazuh agents. All this security data generated by the Wazuh agents and received by the Wazuh managers can be forwarded to a Splunk Indexer in order to extract relevant information. Additionally, the app uses the Wazuh RESTful API directly and show all of that information on panels and dashboards with several charts and metrics.

In this wiki, you can find useful resources/knowledge about customizing your Wazuh app, build custom packages, easy development flow, and a few other interesting things.

• How to build a custom app package
• How to develop a new feature for the app
• About branches and tags
• Compatibility

Not the answer you are looking for?

• Feel free to open a new issue: https://github.com/wazuh/wazuh-splunk/issues
• Join our users mailing list, by sending an email to mailto:wazuh+subscribe@googlegroups.com