# Wazuh Kibana App
[](https://goo.gl/forms/M2AoZC4b2R9A9Zy12)
[](https://groups.google.com/forum/#!forum/wazuh)
[](https://documentation.wazuh.com)
[](https://wazuh.com)
Wazuh is a security detection, visibility, and compliance open source project. It was born as a fork of OSSEC HIDS, later was integrated with Elastic Stack and OpenSCAP evolving into a more comprehensive solution. You can read more in
## Description
Visualize and analyze Wazuh alerts stored in Elasticsearch using our Kibana app plugin.
- Obtain statistics per agent, search alerts and filter by using the different visualizations.
- View the Wazuh manager configuration.
- File integrity monitoring.
## Documentation
- [Full documentation](https://documentation.wazuh.com)
- [Wazuh installation guide](https://documentation.wazuh.com/current/installation-guide/index.html)
- [Screenshots](https://documentation.wazuh.com/current/index.html#example-screenshots)
## Requisites
- Wazuh HIDS 3.7.2
- Wazuh RESTful API 3.7.2
- Kibana 6.5.4
- Elasticsearch 6.5.4
## Installation
Install the app
```
sudo -u kibana NODE_OPTIONS="--max-old-space-size=3072" /usr/share/kibana/bin/kibana-plugin install https://packages.wazuh.com/wazuhapp/wazuhapp-3.7.2_6.5.4.zip
```
Restart Kibana
- Systemd:
```
systemctl restart kibana
```
- SysV Init:
```
service kibana restart
```
## Upgrade
Stop Kibana
- Systemd:
```
systemctl stop kibana
```
- SysV Init:
```
service kibana stop
```
Remove the app using kibana-plugin tool
```
/usr/share/kibana/bin/kibana-plugin remove wazuh
```
Remove generated bundles
```
rm -rf /usr/share/kibana/optimize/bundles
```
Update file permissions. This will avoid several errors prior to updating the app:
```
chown -R kibana:kibana /usr/share/kibana/optimize
chown -R kibana:kibana /usr/share/kibana/plugins
```
Install the app
```
sudo -u kibana NODE_OPTIONS="--max-old-space-size=3072" /usr/share/kibana/bin/kibana-plugin install https://packages.wazuh.com/wazuhapp/wazuhapp-3.7.2_6.5.4.zip
```
Restart Kibana
- Systemd:
```
systemctl restart kibana
```
- SysV Init:
```
service kibana restart
```
## Older packages
| Kibana version | Wazuh app version | Installation |
| :------------: | :---------------: | :--------------------------------------------------------------------------------------------------------- |
| 6.0.0 | 3.0.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.0.1 | 3.0.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.1.0 | 3.0.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.1.0 | 3.1.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.1.1 | 3.1.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.1.2 | 3.1.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.1.3 | 3.1.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.1.0 | 3.2.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.1.1 | 3.2.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.1.2 | 3.2.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.1.3 | 3.2.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.2.0 | 3.2.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.2.1 | 3.2.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.2.2 | 3.2.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.2.2 | 3.2.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.2.3 | 3.2.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.2.4 | 3.2.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.2.4 | 3.2.2 | /usr/share/kibana/bin/kibana-plugin install |
| 6.2.4 | 3.2.3 | /usr/share/kibana/bin/kibana-plugin install |
| 6.2.4 | 3.2.4 | /usr/share/kibana/bin/kibana-plugin install |
| 6.2.4 | 3.3.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.2.4 | 3.3.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.3.0 | 3.3.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.3.0 | 3.3.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.3.1 | 3.3.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.3.1 | 3.4.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.3.2 | 3.4.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.3.2 | 3.5.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.4.0 | 3.5.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.3.2 | 3.6.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.4.0 | 3.6.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.3.2 | 3.6.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.4.0 | 3.6.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.4.1 | 3.6.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.4.2 | 3.6.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.4.3 | 3.6.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.4.2 | 3.7.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.4.3 | 3.7.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.5.0 | 3.7.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.5.1 | 3.7.0 | /usr/share/kibana/bin/kibana-plugin install |
| 6.5.1 | 3.7.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.5.2 | 3.7.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.5.3 | 3.7.1 | /usr/share/kibana/bin/kibana-plugin install |
| 6.5.3 | 3.7.2 | /usr/share/kibana/bin/kibana-plugin install |
| 6.5.4 | 3.7.2 | /usr/share/kibana/bin/kibana-plugin install |
## Contribute
If you want to contribute to our project please don't hesitate to send a pull request. You can also join our users [mailing list](https://groups.google.com/d/forum/wazuh), by sending an email to , to ask questions and participate in discussions.
## Software and libraries used
- https://elastic.co
- https://material.angularjs.org
- https://angularjs.org
- https://nodejs.org
- https://npmjs.com
## Copyright & License
Copyright © 2018 Wazuh, Inc.
This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.
Find more information about this on the [LICENSE](LICENSE) file.