-
Notifications
You must be signed in to change notification settings - Fork 1.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
DDS: Wazuh Integration v1.0.0 #18646
base: master
Are you sure you want to change the base?
Conversation
3c446ed
to
3461a35
Compare
We have set the version to 7.58.0. If this is intended for any future release, please let us know, as an update will be necessary for this PR. Thank you! |
Created Jira ticket for Docs Team review. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Approved with some minor suggestions.
wazuh/README.md
Outdated
|
||
#### Configure syslog message forwarding from Wazuh | ||
|
||
1. Log in to the Wazuh UI. Navigate to the Left side Menu. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
1. Log in to the Wazuh UI. Navigate to the Left side Menu. | |
1. Log in to the Wazuh UI. Navigate to the left side Menu. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Have updated as per suggestion
What does this PR do?
PR for a new integration Wazuh 1.0.0
Additional Notes
-- OOTB detection rules JSON would be shared separately with the required teams as a part of separate repository .
-- Since during the standard attribute remapping we are not preserving the source attributes as per suggested best practices, it would result in filters using these standard attributes populating the values of other integrations as well as per current datadog behavior.
-- Please note that we have utilized the sample logs provided by Wazuh for integration development.
Review checklist (to be filled by reviewers)
qa/skip-qa
label if the PR doesn't need to be tested during QA.backport/<branch-name>
label to the PR and it will automatically open a backport PR once this one is merged