Hello John,
Our documentation has a comprehensive guide about the capabilities of
active response and how to configure it,
https://documentation.wazuh.com/3.13/user-manual/capabilities/active-response/index.html
Also, we periodically release blog posts about different topics, some of
them may
Is there any deep dive on active response or a collection of use cases as to
how people are using it?
Just seems to be such a cool capability of OSSEC that is under utilized.
Sent from my T-Mobile 4G LTE Device
Original message
From: Daniel Folch
Date: 9/23/20 7:21 AM (GM