migrate to git.charlotte.sh
This commit is contained in:
Charlotte Croce
commit
fbd588721e
412 changed files with 13750 additions and 0 deletions
19
net-sec-controls-sec350/osquery_project/06_conclusion.md
Normal file
19
net-sec-controls-sec350/osquery_project/06_conclusion.md
Normal file
|
|
@ -0,0 +1,19 @@
|
|||
|[HOME](README.md)|[RESEARCH](01_research.md)|[INSTALLATION](02_install_rocky.md)|[CLIENT APP](03_client_app.md)|[INTEGRATION](04_wazuh_integration.md)|[DEMONSTRATION](05_demonstration.md)|[CONCLUSION](06_conclusion.md)|
|
||||
|-|-|-|-|-|-|-|
|
||||
# Conclusion
|
||||
|
||||
## Pros
|
||||
- open source
|
||||
- lightweight
|
||||
- works on Linux, macOS, and Windows
|
||||
## Cons
|
||||
- stores current system state, which means it doesn't store historical data
|
||||
|
||||
|
||||
## Overview
|
||||
|
||||
In conclusion, the OSQuery project demonstrates the potential of integrating OSQuery with Wazuh for enhanced security monitoring. OSQuery provides a powerful tool for querying and monitoring system data, while Wazuh offers robust endpoint detection and response capabilities. The integration of these tools allows for real-time event detection and analysis, offering significant benefits in terms of security visibility and incident response. However, considerations regarding complexity and resource requirements are important when implementing such a system. Overall, the integration of OSQuery with Wazuh presents a promising approach to strengthening corporate security infrastructure.
|
||||
|
||||
___
|
||||
|[<<<<](05_demonstration.md)||
|
||||
|-|-|
|
||||
Loading…
Add table
Add a link
Reference in a new issue