mirror of https://github.com/valitydev/wazuh-docker.git synced 2024-11-06 17:55:21 +00:00

Wazuh - Docker containers

Go to file

AlfonsoRBJ 8913df6284 Bump version 3732		2019-01-04 11:53:19 +01:00
kibana	Kibana env variables (#89 )	2019-01-03 16:10:32 +01:00
logstash	Update Elastic Stack version to 6.5.4	2018-12-21 11:40:19 +01:00
nginx	fix indent	2018-12-28 11:48:27 +01:00
wazuh	Update Filebeat configuration (#88 )	2019-01-03 15:37:48 +01:00
CHANGELOG.md	Update CHANGELOG.md	2019-01-04 11:52:43 +01:00
docker-compose.yml	Update Elastic Stack version to 6.5.4	2018-12-21 11:40:19 +01:00
LICENSE	added license file to match https://github.com/wazuh/wazuh	2018-10-02 08:32:55 -05:00
README.md	Update Elastic Stack to version 6.5.4	2018-12-21 11:43:39 +01:00
VERSION	Bump version 3732	2019-01-04 11:53:19 +01:00

README.md

Wazuh containers for Docker

In this repository you will find the containers to run:

wazuh: It runs the Wazuh manager, Wazuh API and Filebeat (for integration with Elastic Stack)
wazuh-logstash: It is used to receive alerts generated by the manager and feed Elasticsearch using an alerts template
wazuh-kibana: Provides a web user interface to browse through alerts data. It includes Wazuh plugin for Kibana, that allows you to visualize agents configuration and status.
wazuh-nginx: Proxies the Kibana container, adding HTTPS (via self-signed SSL certificate) and Basic authentication.

In addition, a docker-compose file is provided to launch the containers mentioned above. It also launches an Elasticsearch container (working as a single-node cluster) using Elastic Stack Docker images.

Documentation

Current release

Containers are currently tested on Wazuh version 3.7.2 and Elastic Stack version 6.5.4. We will do our best to keep this repository updated to latest versions of both Wazuh and Elastic Stack.

Directory structure

wazuh-docker
├── docker-compose.yml
├── kibana
│   ├── config
│   │   ├── entrypoint.sh
│   │   └── kibana.yml
│   └── Dockerfile
├── LICENSE
├── logstash
│   ├── config
│   │   ├── 01-wazuh.conf
│   │   └── run.sh
│   └── Dockerfile
├── nginx
│   ├── config
│   │   └── entrypoint.sh
│   └── Dockerfile
├── README.md
├── CHANGELOG.md
├── VERSION
├── test.txt
└── wazuh
    ├── config
    │   ├── data_dirs.env
    │   ├── entrypoint.sh
    │   ├── filebeat.runit.service
    │   ├── filebeat.yml
    │   ├── init.bash
    │   ├── postfix.runit.service
    │   ├── wazuh-api.runit.service
    │   └── wazuh.runit.service
    └── Dockerfile

Branches

stable branch on correspond to the last Wazuh-Docker stable version.
master branch contains the latest code, be aware of possible bugs on this branch.
Wazuh.Version_ElsaticStack.Version (for example 3.7.0_6.4.3) branch. This branch contains the current release referenced in Docker Hub. The container images are installed under the current version of this branch.

Credits and Thank you

These Docker containers are based on:

"deviantony" dockerfiles which can be found at https://github.com/deviantony/docker-elk
"xetus-oss" dockerfiles, which can be found at https://github.com/xetus-oss/docker-ossec-server

We thank you them and everyone else who has contributed to this project.

License and copyright

Web references

Wazuh website