wazuh-kibana-app/README.md

# Wazuh Kibana App

[![Slack](https://img.shields.io/badge/slack-join-blue.svg)](https://goo.gl/forms/M2AoZC4b2R9A9Zy12)
[![Email](https://img.shields.io/badge/email-join-blue.svg)](https://groups.google.com/forum/#!forum/wazuh)
[![Documentation](https://img.shields.io/badge/docs-view-green.svg)](https://documentation.wazuh.com)
[![Documentation](https://img.shields.io/badge/web-view-green.svg)](https://wazuh.com)

Wazuh is a security detection, visibility, and compliance open source project. It was born as a fork of OSSEC HIDS, later was integrated with Elastic Stack and OpenSCAP evolving into a more comprehensive solution. You can read more in <https://wazuh.com/>

## Description

Visualize and analyze Wazuh alerts stored in Elasticsearch using our Kibana app plugin.

- Obtain statistics per agent, search alerts and filter by using the different visualizations.
- View the Wazuh manager configuration.
- File integrity monitoring.

## Documentation

- [Full documentation](https://documentation.wazuh.com)
- [Wazuh installation guide](https://documentation.wazuh.com/current/installation-guide/index.html)
- [Screenshots](https://documentation.wazuh.com/current/index.html#example-screenshots)

![Overview](https://documentation.wazuh.com/current/_images/overview-general.png)

## Requisites

- Wazuh HIDS 3.4.0
- Wazuh RESTful API 3.4.0
- Kibana 6.3.2
- Elasticsearch 6.3.2

## Installation

Install the app

```
/usr/share/kibana/bin/kibana-plugin install https://packages.wazuh.com/wazuhapp/wazuhapp-3.4.0_6.3.2.zip
```

Restart Kibana

- Systemd:

```
systemctl restart kibana
```

- SysV Init:

```
service kibana restart
```

## Upgrade

Stop Kibana

- Systemd:

```
systemctl stop kibana
```

- SysV Init:

```
service kibana stop
```

Remove the app using kibana-plugin tool

```
/usr/share/kibana/bin/kibana-plugin remove wazuh
```

Remove generated bundles

```
rm -rf /usr/share/kibana/optimize/bundles
```

Install the app

```
/usr/share/kibana/bin/kibana-plugin install https://packages.wazuh.com/wazuhapp/wazuhapp-3.x.x_6.x.x.zip
```

Restart Kibana

- Systemd:

```
systemctl restart kibana
```

- SysV Init:

```
service kibana restart
```

## Older packages

| Kibana version | Wazuh app version | Installation                                                                                               |
| :------------: | :---------------: | :--------------------------------------------------------------------------------------------------------- |
|      6.0.0     |       3.0.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.0.0_6.0.0.zip> |
|      6.0.1     |       3.0.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.0.0_6.0.1.zip> |
|      6.1.0     |       3.0.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.0.0_6.1.0.zip> |
|      6.1.0     |       3.1.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.1.0_6.1.0.zip> |
|      6.1.1     |       3.1.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.1.0_6.1.1.zip> |
|      6.1.2     |       3.1.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.1.0_6.1.2.zip> |
|      6.1.3     |       3.1.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.1.0_6.1.3.zip> |
|      6.1.0     |       3.2.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.1.0.zip> |
|      6.1.1     |       3.2.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.1.1.zip> |
|      6.1.2     |       3.2.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.1.2.zip> |
|      6.1.3     |       3.2.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.1.3.zip> |
|      6.2.0     |       3.2.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.2.0.zip> |
|      6.2.1     |       3.2.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.2.1.zip> |
|      6.2.2     |       3.2.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.2.2.zip> |
|      6.2.2     |       3.2.1       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.1_6.2.2.zip> |
|      6.2.3     |       3.2.1       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.1_6.2.3.zip> |
|      6.2.4     |       3.2.1       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.1_6.2.4.zip> |
|      6.2.4     |       3.2.2       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.2_6.2.4.zip> |
|      6.2.4     |       3.2.3       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.3_6.2.4.zip> |
|      6.2.4     |       3.2.4       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.4_6.2.4.zip> |
|      6.2.4     |       3.3.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.3.0_6.2.4.zip> |
|      6.2.4     |       3.3.1       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.3.1_6.2.4.zip> |
|      6.3.0     |       3.3.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.3.0_6.3.0.zip> |
|      6.3.0     |       3.3.1       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.3.1_6.3.0.zip> |
|      6.3.1     |       3.3.1       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.3.1_6.3.1.zip> |
|      6.3.1     |       3.4.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.4.0_6.3.1.zip> |
|      6.3.2     |       3.4.0       | /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.4.0_6.3.2.zip> |

## Contribute

If you want to contribute to our project please don't hesitate to send a pull request. You can also join our users [mailing list](https://groups.google.com/d/forum/wazuh), by sending an email to <mailto:wazuh+subscribe@googlegroups.com>, to ask questions and participate in discussions.

## Software and libraries used

- https://elastic.co
- https://material.angularjs.org
- https://angularjs.org
- https://nodejs.org
- https://npmjs.com

## Copyright & License

Copyright &copy; 2018 Wazuh, Inc.

This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.

Find more information about this on the [LICENSE](LICENSE) file.
Update README.md 2017-12-12 17:43:54 +00:00			`# Wazuh Kibana App`

			`[![Slack](https://img.shields.io/badge/slack-join-blue.svg)](https://goo.gl/forms/M2AoZC4b2R9A9Zy12)`
			`[![Email](https://img.shields.io/badge/email-join-blue.svg)](https://groups.google.com/forum/#!forum/wazuh)`
			`[![Documentation](https://img.shields.io/badge/docs-view-green.svg)](https://documentation.wazuh.com)`
			`[![Documentation](https://img.shields.io/badge/web-view-green.svg)](https://wazuh.com)`
Updating README.md - minor fix in link list - additional project description Conflicts: README.md 2017-10-04 18:33:13 +00:00
Added copyright and small enhancements to root project files 2018-04-22 18:52:55 +00:00			`Wazuh is a security detection, visibility, and compliance open source project. It was born as a fork of OSSEC HIDS, later was integrated with Elastic Stack and OpenSCAP evolving into a more comprehensive solution. You can read more in <https://wazuh.com/>`
Updating README.md - minor fix in link list - additional project description Conflicts: README.md 2017-10-04 18:33:13 +00:00
Added copyright and small enhancements to root project files 2018-04-22 18:52:55 +00:00			`## Description`
Updating README.md - minor fix in link list - additional project description Conflicts: README.md 2017-10-04 18:33:13 +00:00
			`Visualize and analyze Wazuh alerts stored in Elasticsearch using our Kibana app plugin.`

Updated README.md 2018-07-27 11:28:11 +00:00			`- Obtain statistics per agent, search alerts and filter by using the different visualizations.`
			`- View the Wazuh manager configuration.`
			`- File integrity monitoring.`
Updating README.md - minor fix in link list - additional project description Conflicts: README.md 2017-10-04 18:33:13 +00:00
			`## Documentation`

Updated README.md 2018-07-27 11:28:11 +00:00			`- [Full documentation](https://documentation.wazuh.com)`
			`- [Wazuh installation guide](https://documentation.wazuh.com/current/installation-guide/index.html)`
			`- [Screenshots](https://documentation.wazuh.com/current/index.html#example-screenshots)`
Updating README.md - minor fix in link list - additional project description Conflicts: README.md 2017-10-04 18:33:13 +00:00
Added new Wazuh App redesign screenshot 2018-02-14 08:15:41 +00:00			`![Overview](https://documentation.wazuh.com/current/_images/overview-general.png)`
Update README.md 2016-12-22 03:34:03 +00:00
			`## Requisites`

Updated README.md 2018-07-27 11:28:11 +00:00			`- Wazuh HIDS 3.4.0`
			`- Wazuh RESTful API 3.4.0`
			`- Kibana 6.3.2`
			`- Elasticsearch 6.3.2`
Update README.md 2016-09-30 11:57:57 +00:00
Update README.md 2016-12-22 03:34:03 +00:00			`## Installation`
Update README.md 2016-09-30 11:57:57 +00:00
Updated README.md 2018-07-27 11:28:11 +00:00			`Install the app`

			```
			`/usr/share/kibana/bin/kibana-plugin install https://packages.wazuh.com/wazuhapp/wazuhapp-3.4.0_6.3.2.zip`
			```

Updated README.md (restart Kibana) 2018-07-27 11:29:35 +00:00			`Restart Kibana`

Updated README 2018-07-30 09:15:04 +00:00			`- Systemd:`

Updated README.md (restart Kibana) 2018-07-27 11:29:35 +00:00			```
			`systemctl restart kibana`
Updated README 2018-07-30 09:15:04 +00:00			```

			`- SysV Init:`
Updated README.md (restart Kibana) 2018-07-27 11:29:35 +00:00
Updated README 2018-07-30 09:15:04 +00:00			```
Updated README.md (restart Kibana) 2018-07-27 11:29:35 +00:00			`service kibana restart`
			```

Updated README.md 2018-07-27 11:28:11 +00:00			`## Upgrade`

			`Stop Kibana`

Updated README 2018-07-30 09:15:04 +00:00			`- Systemd:`

Updated README.md 2018-07-27 11:28:11 +00:00			```
			`systemctl stop kibana`
Updated README 2018-07-30 09:15:04 +00:00			```
Updated README.md 2018-07-27 11:28:11 +00:00
Updated README 2018-07-30 09:15:04 +00:00			`- SysV Init:`

			```
Updated README.md 2018-07-27 11:28:11 +00:00			`service kibana stop`
			```

			`Remove the app using kibana-plugin tool`

			```
			`/usr/share/kibana/bin/kibana-plugin remove wazuh`
			```

			`Remove generated bundles`

			```
			`rm -rf /usr/share/kibana/optimize/bundles`
			```

			`Install the app`

			```
			`/usr/share/kibana/bin/kibana-plugin install https://packages.wazuh.com/wazuhapp/wazuhapp-3.x.x_6.x.x.zip`
			```

Updated README.md (restart Kibana) 2018-07-27 11:29:35 +00:00			`Restart Kibana`

Updated README 2018-07-30 09:15:04 +00:00			`- Systemd:`

Updated README.md (restart Kibana) 2018-07-27 11:29:35 +00:00			```
			`systemctl restart kibana`
Updated README 2018-07-30 09:15:04 +00:00			```

			`- SysV Init:`
Updated README.md (restart Kibana) 2018-07-27 11:29:35 +00:00
Updated README 2018-07-30 09:15:04 +00:00			```
Updated README.md (restart Kibana) 2018-07-27 11:29:35 +00:00			`service kibana restart`
			```

Updated README.md 2018-07-27 11:28:11 +00:00			`## Older packages`

Added copyright and small enhancements to root project files 2018-04-22 18:52:55 +00:00			`\| Kibana version \| Wazuh app version \| Installation \|`
			`\| :------------: \| :---------------: \| :--------------------------------------------------------------------------------------------------------- \|`
			`\| 6.0.0 \| 3.0.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.0.0_6.0.0.zip> \|`
			`\| 6.0.1 \| 3.0.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.0.0_6.0.1.zip> \|`
			`\| 6.1.0 \| 3.0.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.0.0_6.1.0.zip> \|`
			`\| 6.1.0 \| 3.1.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.1.0_6.1.0.zip> \|`
			`\| 6.1.1 \| 3.1.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.1.0_6.1.1.zip> \|`
			`\| 6.1.2 \| 3.1.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.1.0_6.1.2.zip> \|`
			`\| 6.1.3 \| 3.1.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.1.0_6.1.3.zip> \|`
			`\| 6.1.0 \| 3.2.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.1.0.zip> \|`
			`\| 6.1.1 \| 3.2.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.1.1.zip> \|`
			`\| 6.1.2 \| 3.2.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.1.2.zip> \|`
			`\| 6.1.3 \| 3.2.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.1.3.zip> \|`
			`\| 6.2.0 \| 3.2.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.2.0.zip> \|`
			`\| 6.2.1 \| 3.2.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.2.1.zip> \|`
			`\| 6.2.2 \| 3.2.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.0_6.2.2.zip> \|`
			`\| 6.2.2 \| 3.2.1 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.1_6.2.2.zip> \|`
			`\| 6.2.3 \| 3.2.1 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.1_6.2.3.zip> \|`
Merge branch '3.2' into 3.2-add-copyright 2018-04-23 16:08:29 +00:00			`\| 6.2.4 \| 3.2.1 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.1_6.2.4.zip> \|`
Bump revision 2018-04-27 17:31:35 +00:00			`\| 6.2.4 \| 3.2.2 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.2_6.2.4.zip> \|`
Bump version and revision 391 2018-05-28 16:30:40 +00:00			`\| 6.2.4 \| 3.2.3 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.3_6.2.4.zip> \|`
Bump version 3.2.4 revision 392 2018-06-01 18:28:28 +00:00			`\| 6.2.4 \| 3.2.4 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.2.4_6.2.4.zip> \|`
Bump revision 394 2018-06-11 13:48:12 +00:00			`\| 6.2.4 \| 3.3.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.3.0_6.2.4.zip> \|`
Bump revision from latest release 2018-06-25 15:18:23 +00:00			`\| 6.2.4 \| 3.3.1 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.3.1_6.2.4.zip> \|`
Bump version to 3.3.0_6.3.0-397 2018-06-26 17:31:52 +00:00			`\| 6.3.0 \| 3.3.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.3.0_6.3.0.zip> \|`
Bump version to 3.3.1_6.3.0-397 2018-06-26 17:50:34 +00:00			`\| 6.3.0 \| 3.3.1 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.3.1_6.3.0.zip> \|`
Update README.md 2018-07-24 20:51:33 +00:00			`\| 6.3.1 \| 3.3.1 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.3.1_6.3.1.zip> \|`
			`\| 6.3.1 \| 3.4.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.4.0_6.3.1.zip> \|`
Updated README.md 2018-07-27 11:28:11 +00:00			`\| 6.3.2 \| 3.4.0 \| /usr/share/kibana/bin/kibana-plugin install <https://packages.wazuh.com/wazuhapp/wazuhapp-3.4.0_6.3.2.zip> \|`
Update README.md 2016-12-22 03:34:03 +00:00
			`## Contribute`

Added copyright and small enhancements to root project files 2018-04-22 18:52:55 +00:00			`If you want to contribute to our project please don't hesitate to send a pull request. You can also join our users [mailing list](https://groups.google.com/d/forum/wazuh), by sending an email to <mailto:wazuh+subscribe@googlegroups.com>, to ask questions and participate in discussions.`
Update README.md 2016-12-22 03:34:03 +00:00
			`## Software and libraries used`

Updated README.md 2018-07-27 11:28:11 +00:00			`- https://elastic.co`
			`- https://material.angularjs.org`
			`- https://angularjs.org`
			`- https://nodejs.org`
			`- https://npmjs.com`
Added copyright and small enhancements to root project files 2018-04-22 18:52:55 +00:00
			`## Copyright & License`

Updated README.md 2018-07-27 11:28:11 +00:00			`Copyright © 2018 Wazuh, Inc.`
Update README.md 2016-12-22 03:34:03 +00:00
Added copyright and small enhancements to root project files 2018-04-22 18:52:55 +00:00			`This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.`
Update README.md 2016-12-22 03:34:03 +00:00
Added copyright and small enhancements to root project files 2018-04-22 18:52:55 +00:00			`Find more information about this on the [LICENSE](LICENSE) file.`