wazuh / wazuh-ruleset Public

Notifications
Fork 201
Star 400

Code
Issues 84
Pull requests 52
Actions
Projects
Wiki
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Projects
Wiki
Security
Insights

Issues: wazuh/wazuh-ruleset

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts

84 Open 262 Closed

Author

Filter by author

Label

Filter by label

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Milestones

Filter by milestone

Assignee

Filter by who’s assigned

Assigned to nobody

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Issues list

Agent event queue is flooded. Check the agent configuration.

#879 opened Apr 30, 2024 by cortera updated Apr 30, 2024

Health - check rules Windows audit failure event.

#878 opened Apr 30, 2024 by cortera updated Apr 30, 2024

add decoder for vpn aaa failure to cisco asa decoders

#873 opened Feb 7, 2024 by kai-hier updated Apr 5, 2024

0380-windows_decoders.xml issue matching spaces in dhcp log

#876 opened Mar 15, 2024 by fredtj updated Mar 15, 2024

Feature Request: Include previous_output in Alert Description for Child Rules.

#875 opened Mar 4, 2024 by sakib789 updated Mar 4, 2024

Wrong field value from checkpoint-smart1 decoder

#874 opened Feb 29, 2024 by kai-hier updated Feb 29, 2024

The rule 60204 is inaccurate enhancement rules

Rules related issues

windows

#487 opened Sep 23, 2019 by crolopez updated Feb 9, 2024

How to import syslog raw data from file

#872 opened Jan 26, 2024 by Ondjultomte updated Jan 26, 2024

SCA commands randomly fails

#870 opened Dec 1, 2023 by Jaz470 updated Dec 1, 2023

Customize rule usage

#869 opened Nov 28, 2023 by muddlelife updated Nov 28, 2023

Unable to use fields srcuser and dstuser in custom rule

#868 opened Nov 8, 2023 by selivan updated Nov 8, 2023

MacOS fails SCA is a major new OS release is available, but is otherwise patched

#867 opened Oct 4, 2023 by ChristopherSchultz updated Oct 4, 2023

Deploy Arch Linux SCA policy

#866 opened Oct 1, 2023 by D3vil0p3r updated Oct 1, 2023

Rocky System problems

#865 opened Sep 19, 2023 by SouthWind017 updated Sep 19, 2023

Unifi device logs match overly generic Symantec-av decoder

#840 opened Aug 17, 2021 by kmfreder1 updated Jun 30, 2023

Drop or ignore alers from Debian

#864 opened Jun 11, 2023 by xaled1 updated Jun 11, 2023

Drop or ignore events from windows

#863 opened May 8, 2023 by giorgiosld updated May 8, 2023

Creation of rules and decoders for Mostonet AntiVirus/Endpoint/Server Protection

#858 opened Dec 20, 2022 by mostonet updated Dec 20, 2022

Multiple SQL injection attempts is missing defined rules

#854 opened Sep 12, 2022 by kaiwoe updated Sep 12, 2022

redundancy wazuh community

#848 opened Sep 7, 2021 by luffy1947 updated Oct 8, 2021

Rules for Windows Active Directory enhancement operations rules

Rules related issues

threatintel

Threat Intelligence

windows

#488 opened Sep 26, 2019 by paroma96 updated Sep 23, 2021

wazuh ruleset cis_centos7_linux.yml is missing rules.

#851 opened Sep 20, 2021 by RonnyMaas updated Sep 21, 2021

CentOS CIS rule 4.1.6: remediation does not seem to match check

#849 opened Sep 15, 2021 by jovial updated Sep 15, 2021

sshd_config CIS benchmarks checks under SCA getting failed incorrectly

#846 opened Sep 1, 2021 by gobind-singh updated Sep 1, 2021

data.win.eventdata.ipAddress ::ffff:

#842 opened Aug 24, 2021 by ozgursuder updated Aug 26, 2021

Previous 1 2 3 4 Next

Previous Next

ProTip! no:milestone will show everything without a milestone.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly