![]() Trying rule: 2550 - rshd messages grouped. ![]() Trying rule: 420 - Rules for Wazuh API events. ![]() Trying rule: 400 - Rules for Wazuh API events. *Rule 1 matched *Trying child rules Trying rule: 600 - Active Response Messages Grouped Trying rule: 650 - Active Response JSON Messages Grouped Trying rule: 200 - Grouping of wazuh rules. name: 'BlueTool ' parent: 'BlueTool ' message: ' Unable to open /dev/cu.BLTH: No such file or directory ' **Rule debugging: Trying rule: 1 - Generic template for all syslog rules. full event: ' 17:56:07.398259-0400 localhost BlueTool: Unable to open /dev/cu.BLTH: No such file or directory ' timestamp: ' 17:56:07.398259-0400 ' program_name: 'BlueTool ' **Phase 2: Completed decoding. wazuh-user]# /var/ossec/bin/wazuh-logtest -v Starting wazuh-logtest v4.4.2 Type one log per line 17:56:07.398259-0400 localhost BlueTool: Unable to open /dev/cu.BLTH: No such file or directory **Phase 1: Completed pre-decoding.The definition of done for this one is the validation of the conclusions and the test results from all auditors.Īll checks from below must be accepted in order to close this issue. This report can be used by the auditors to dig deeper into any possible failures and details. Please attach any documents, screenshots, or tables to the issue update with the results. ![]() There is at least one expected failure or skipped test and no failures.Īny failing test must be properly addressed with a new issue, detailing the error and the possible cause.Īn extended report of the test results must be attached as a ZIP or TXT file. Virtual Machine (OVA), Installing Wazuh agentsĭeploy Wazuh with the following design: ComponentĬreate rule for macOS native logs and use wazuh-logtest command line tool in verbose mode and also try the WUI log test Test report procedureĪll test results must have one of the following statuses: ![]() The following issue aims to run the specified test for the current release candidate, report the results, and open new issues for any encountered errors. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |