• Online, Self-Paced
Course Description

In this Challenge Lab, you will configure Wazuh as a host-based intrusion detection system. First, you will install and configure a Wazuh server, and then you will install and configure Filebeat for Wazuh. Next, you will install Kibana for Wazuh, and then you will configure clients to be monitored by Wazuh. Finally, you will view the configured clients and security events in Wazuh. Note: Once you begin the Challenge Lab, you will not be able to pause, save, or exit and then return to your Challenge Lab. Please ensure that you have set aside enough time to complete the Challenge Lab before you start.

Learning Objectives

In this Challenge Lab, you will configure Wazuh as a host-based intrusion detection system. First, you will install and configure a Wazuh server, and then you will install and configure Filebeat for Wazuh. Next, you will install Kibana for Wazuh, and then you will configure clients to be monitored by Wazuh. Finally, you will view the configured clients and security events in Wazuh. Note: Once you begin the Challenge Lab, you will not be able to pause, save, or exit and then return to your Challenge Lab. Please ensure that you have set aside enough time to complete the Challenge Lab before you start.

Framework Connections

The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.