This room introduced me to Wazuh, an open-source security monitoring platform that combines endpoint detection, log analysis, and SIEM features. I explored how it can be deployed and used to monitor systems for threats and anomalies.
By working with Wazuh, I learned how it integrates endpoint monitoring with centralized alerting, making it a powerful tool for SOC teams. It tied together a lot of the concepts from earlier rooms by showing how detection and monitoring come together in one solution.
