We use it to find any aberration in our endpoint devices. For example, if someone installs a game on their company laptop, Wazuh will detect it and inform us of the unauthorized software or unintended use of the devices provided by the company.
Wazuh automatically scans the host for CIS benchmarks for the latest updates and vulnerabilities and gives a host score. It provides a percentage of perceived risk due to of non patches or any missing patches on that work.
Manager Cloud Security Operations at TraceLink, Inc.
Consultant
2022-08-01T13:01:54Z
Aug 1, 2022
Wazuh's logging features integrate seamlessly with AWS cloud-native services. There are also Wazuh agent configurations for different use cases, like vulnerability scanning, host-based intrusion detection, and file integrity monitoring.
GISO - Global Information Security Officer at Beyon Connect
Real User
2022-07-10T15:39:18Z
Jul 10, 2022
I like the cloud-native infrastructure and that it's free. We didn't have to pay anything, and it has the capabilities of many premium solutions in the market. We could integrate all of our services and infrastructure in the cloud with Wazuh. From an integration point of view, Wazuh is pretty good. I had a good experience with this platform.
I find the PCI DSS feature the most valuable, along with the feature that monitors the compliance of Windows and the CIS benchmarks on other devices like Unix or Linux systems.
Vice President Information Technology and Security at a comms service provider with 201-500 employees
Real User
2022-04-08T20:34:00Z
Apr 8, 2022
My company implemented Wazuh because it was relatively inexpensive. They could quickly get their hands on it to check a box for some audit and compliance.
It's very easy to integrate Wazuh with other environments, cloud applications, and on-prem applications. So, the advantage is that it's easy to implement and integrate with other solutions.
Wazuh is an enterprise-ready platform used for security monitoring. It is a free and open-source platform that is used for threat detection, incident response and compliance, and integrity monitoring. Wazuh is capable of protecting workloads across virtualized, on-premises, containerized, and cloud-based environments.
It consists of an endpoint security agent and a management server. Additionally, Wazuh is fully integrated with the Elastic Stack, allowing users the ability to navigate...
One of the most beneficial features of Wazuh, particularly in the context of security needs, is the machine learning data handling capability.
Wazuh's most beneficial features for our security needs are flexibility, built-in rules, integration capabilities, and documentation.
The product is easy to customize.
Integrates with various open-source and paid products, allowing for flexibility in customization based on use cases.
The main thing I like about it is that it has an EDR.
The tool is stable.
It is excellent in terms of visualization and indexing services, making it a powerful tool for malware detection.
I like Wazuh because it is a lot like ELK, which I was already comfortable with, so I didn't have to learn from scratch.
The product’s interface is intuitive.
We use it to find any aberration in our endpoint devices. For example, if someone installs a game on their company laptop, Wazuh will detect it and inform us of the unauthorized software or unintended use of the devices provided by the company.
Wazuh offers numerous features, such as the ability to define custom rules for detecting malicious activities and remembering behaviors.
It is a stable solution.
If they support a solution, it is easy to do an integration.
Wazuh offers an enhanced HDR version that outperforms its competitors.
Good for monitoring, active response, and for vulnerabilities.
The most valuable features are the modules and metrics.
Wazuh automatically scans the host for CIS benchmarks for the latest updates and vulnerabilities and gives a host score. It provides a percentage of perceived risk due to of non patches or any missing patches on that work.
Wazuh has very flexible and robust features.
The configuration assessment and Pile integrity monitoring features are decent.
Wazuh's best features are syscheck, its ability to immediately resolve vulnerabilities, and that it's open source.
Wazuh's logging features integrate seamlessly with AWS cloud-native services. There are also Wazuh agent configurations for different use cases, like vulnerability scanning, host-based intrusion detection, and file integrity monitoring.
I like the cloud-native infrastructure and that it's free. We didn't have to pay anything, and it has the capabilities of many premium solutions in the market. We could integrate all of our services and infrastructure in the cloud with Wazuh. From an integration point of view, Wazuh is pretty good. I had a good experience with this platform.
I find the PCI DSS feature the most valuable, along with the feature that monitors the compliance of Windows and the CIS benchmarks on other devices like Unix or Linux systems.
My company implemented Wazuh because it was relatively inexpensive. They could quickly get their hands on it to check a box for some audit and compliance.
The most valuable feature of Wazuh is the ELK for doing an investigation.
The log monitoring and analysis tools are great in addition to SIEM file activity monitoring.
It's very easy to integrate Wazuh with other environments, cloud applications, and on-prem applications. So, the advantage is that it's easy to implement and integrate with other solutions.
The MITRE ATT&CK correlation is most valuable.