Join me as we walkthrough deploying the SOCFortress Provided Wazuh Content Pack Graylog Install: / part-2-graylog-install... Get started at: github.com/soc... 👨🏻💻 Professional Services: www.socfortres... 👾 Discord Channel: / discord
However Wazuh is still not fully compatible with Graylog. You won't be able to see events on Wazuh's dashboard when you'll connect Graylog to Wazuh stack.
Facing a error on clicking deploy "Failed to send GET request to /api/system with error: Expecting value: line 1 column 1 (char 0)" any got upto this video today ,thanks and a respect for your service Taylor
Taylor, is this from a new Graylog setup? I have followed your guides from a while back and love the Medium posts. I have tried to run this content pack and it just fails. " Installing content pack failed with status: FetchError: There was an error fetching a resource: . Additional information: Failed to install content pack . Could not install Content Pack with ID: 261577fe-d9a2-4141-af74-635f085eee54"
@@shakeralkmali630 Not sure what was wrong, looks like integration to streams/indices went wrong, or may be it was problem with grafana, because even with error, copilot create new entries in graylog. I install new graylog 5.2.6 server on mongo 6.0 and create new grafana organization for copilot -> all connects like it should be.
Because of this error it took me more than 1 hour to discover what it was, until I analyzed the graylog log, I almost wrote to Taylor to see what it could be xD. If you have been following Taylor's videos for a while, you probably have pipelines already made in your graylog and those names are probably the same as the names of the pipelines that come with the content packet, what you should do is either delete your pipelines or rename them and then use the ones that don't do the same action.
hey please make it docker file where we can easy to FULL SIEM stack including wazuh,greylog, all other application connect with each other if possible easy to everyone
Hi @Taylor I know this is on the wrong post, however, I'm trying to follow the video of Yara and Whazu and am getting a PUA VUlnerability error when running the script. Do you have any idea how I can resolve that? I'm trying to create a script that can scan the server for IoC's