Awesome
Wazuh Agent
[!NOTE] Work in progress: This project is currently under development. It is not functional and is not compatible with the official release version of the Wazuh manager.
Table of Contents
Introduction
Wazuh is a free and open-source platform for threat prevention, detection, and response, capable of protecting workloads across on-premises, virtualized, containerized, and cloud-based environments.
This repository contains the Wazuh Agent, a key component in the Wazuh solution. The agent is deployed on monitored systems to collect data, which is then sent to the Wazuh Server for analysis. Wazuh has full integration with OpenSearch, offering powerful search capabilities and visualization tools for navigating security alerts.
Installation
To install the Wazuh Agent, follow the steps below:
- Clone the repository:
git clone https://github.com/wazuh/wazuh-agent.git cd wazuh-agent - Build and install the agent: see BUILD.md.
For more detailed installation instructions, please refer to the Wazuh documentation.
3rd Party Software Used
This project uses the following third-party software:
| Software | Description | License | Version |
|---|---|---|---|
| Boost Asio | Cross-platform C++ library for network programming | Boost Software License 1.0 | 1.85.0 |
| Boost Beast | Library built on Boost Asio for HTTP and WebSocket communication | Boost Software License 1.0 | 1.85.0 |
| Boost Uuid | Provides support for universally unique identifiers (UUIDs) | Boost Software License 1.0 | 1.85.0 |
| cjson | Ultralightweight JSON parser in ANSI Clone | MIT licensed | 1.7.17 |
| curl | A library for transferring data with URLs | curl AND ISC AND BSD-3-Clause | 8.5.0 |
| fmt | A formatting library for C++ | MIT License | 10.2.1 |
| gtest | Google's C++ testing framework | BSD-3-Clause | 1.15.2 |
| jwt-cpp | C++ library for handling JSON Web Tokens (JWT) | MIT License | 0.7.0 |
| libarchive | Library for reading and writing streaming archives | 3-Clause New BSD License | 3.7.5 |
| libdb | Database management library | AGPL-3.0 | 18.1.40 |
| libplist | A library to handle Apple Property List format in binary or XML | LGPL-2.1-or-later | 2.2.0 |
| libpopt | Library for parsing command line parameters | MIT licensed | 1.16 |
| librpm | RPM package manager | GPL-2.0 | 4.18.2 |
| lua | A powerful, fast, lightweight, embeddable scripting language | MIT licensed | 5.4.1 |
| nlohmann-json | JSON parsing and serialization library for C++ | MIT License | 3.11.3 |
| OpenSSL | Toolkit for SSL/TLS protocols | Apache 2.0 and OpenSSL License | 3.3.2 |
| procps | Utilities for monitoring system processes and resources | GPL-2.0 | 3.3.0 |
| spdlog | Fast C++ logging library | MIT License | 1.14.1 |
| sqlite3 | SQLite is a software library that implements a self-contained serverless, zero-configuration, transactional SQL database engine | Public Domain (no restrictions) | 3.45.0 |
| SQLiteCpp | C++ wrapper around the SQLite database library | MIT License | 3.3.2 |
| toml11 | C++11 TOML parser library | MIT License | 4.0.0 |
| zlib | A compression library | Zlib | 1.3.1 |
License
© 2024 Wazuh Inc.
This project is licensed under the AGPL-3.0 License.