Skip to content

Issues: wazuh/wazuh-ruleset

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
84 Open 262 Closed
84 Open 262 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Milestones
Filter by milestone
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Decoder Inconsistencies - proto versus protocol
#877 by jonahseeabear was closed Apr 8, 2024 updated Apr 8, 2024
1
Writing Custom decoder for web_accesslog. #decoders
#871 by git-SwitchBlade was closed Dec 25, 2023 updated Dec 25, 2023
1
Drop events / Ignore events from Windows Service accounts community question
#459 by perfecthoogie was closed Aug 6, 2019 updated Nov 5, 2023
@Lopuiz
10
Network vulnerability assesment community question
#497 by WazuhUser was closed Feb 12, 2020 updated Sep 6, 2023
@Lopuiz
3
MongoDB log line from the decoder example is not matched
#347 by slavag was closed Apr 22, 2019 updated Sep 8, 2022
@Lopuiz
4
Is it possible for ossec to detect DDoS ?
#152 by gagantous was closed Aug 28, 2018 updated Aug 28, 2022
4
Not Receiving Agent Events on Wazuh Console
#850 by rumi-20 was closed Oct 2, 2021 updated Oct 2, 2021
Cisco Accesslog and firewall rules doesn't match operations threatintel Threat Intelligence
#208 by migruiz4 was closed Sep 16, 2021 updated Sep 16, 2021
1
@72nomada
2
Turn repository to read-only
#845 by jcruzlp was closed Sep 1, 2021 updated Sep 1, 2021
3 tasks
@jcruzlp
<use_own_name> Not behaving correctly bug operations threatintel Threat Intelligence
#236 by elwali10 was closed Aug 10, 2021 updated Aug 10, 2021
@72nomada
1
Improve RHEL 7 CIS benchmark for the SCA module operations SCA SCA policies related issues threatintel Threat Intelligence
#615 by havidarou was closed Feb 27, 2021 updated Aug 6, 2021 100+
@72nomada
19
Problem with non working $(dstport) variable usage in rules, works if renamed bug community
#836 by deajan was closed Jul 8, 2021 updated Jul 8, 2021
@Dwordcito
2
SonicWall decoder does not decode srcip and dstip fields correctly. bug decoders Decoders related issues
#760 by danimegar was closed Jul 6, 2021 updated Jul 6, 2021
@danimegar
1
Development of SCA policies for SQL Server 2016 operations SCA SCA policies related issues threatintel Threat Intelligence
#693 by eliasgrana was closed Jun 23, 2021 updated Jun 23, 2021
@mesanchez
3
Add new decoder and rules for HAProxy to detect brute force attack community decoders Decoders related issues rules Rules related issues
#588 by josema0097 was closed Jun 23, 2021 updated Jun 23, 2021
1
@palaciosjeremias
4
Cylance Integration decoders Decoders related issues enhancement operations rules Rules related issues threatintel Threat Intelligence
#489 by joselopezrio was closed Jun 23, 2021 updated Jun 23, 2021
@72nomada
1
[Rules and Decoders] Gitlab Integration decoders Decoders related issues enhancement rules Rules related issues threatintel Threat Intelligence
#476 by joselopezrio was closed Jun 16, 2021 updated Jun 16, 2021
1
@joselopezrio
1
Rule 5720 missing timeframe and ignore bug operations rules Rules related issues threatintel Threat Intelligence
#374 by havidarou was closed Jun 15, 2021 updated Jun 15, 2021
@72nomada
1
MS Logs rule 83200 error bug operations threatintel Threat Intelligence
#244 by migruiz4 was closed Jun 1, 2021 updated Jun 1, 2021
2
@jcruzlp
1
related to Rule 18107 ignore a system user #110 community
#832 by green0tree22 was closed May 21, 2021 updated May 21, 2021
@juliancnn
2
PIX/ASA decoder disabled by Cisco IOS decoder bug operations threatintel Threat Intelligence
#269 by candlerb was closed May 5, 2021 updated May 5, 2021
2
@72nomada
5
Update_ruleset binary is not updating SCA policies bug SCA SCA policies related issues threatintel Threat Intelligence
#429 by chemamartinez was closed May 5, 2021 updated May 5, 2021
@daescar
1
Cisco IOS rules level enhancement operations threatintel Threat Intelligence
#210 by migruiz4 was closed May 5, 2021 updated May 5, 2021
1
@72nomada
1
Cisco ios doesn't match logs with seq. number and no timezone enhancement operations threatintel Threat Intelligence
#207 by migruiz4 was closed Apr 30, 2021 updated Apr 30, 2021
1
@72nomada
Rule 18107 ignore a system user
#110 by arielravi was closed Apr 30, 2018 updated Apr 27, 2021
@frgv
5
ProTip! Exclude everything labeled bug with -label:bug.