Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hello everyone
I am a student. My thesis is compare samhain and wazuh. my teacher said me to demonstrate an easy attack and detect with samhain and wazuh. but i dont have idea and my knowledge of samhain is very basic. Please hint me and help me to detect this (i will custom this)
don't forget to read the rules:
Do not post homework assignments verbatim. We're happy to assist if you have specific questions or have hit a stumbling point, however. Let us know what you've already tried and what references you have used (including class notes, books, and searches) and we'll do our best to help. Keep in mind that your instructor might also be an LQ member.
Hello everyone
I am a student. My thesis is compare samhain and wazuh. my teacher said me to demonstrate an easy attack and detect with samhain and wazuh. but i dont have idea and my knowledge of samhain is very basic. Please hint me and help me to detect this (i will custom this)
So if we look things up for you, and write things for you, you'll 'custom' it and turn it in?? When do you actually learn, if this is your 'thesis'???
So if we look things up for you, and write things for you, you'll 'custom' it and turn it in?? When do you actually learn, if this is your 'thesis'???
Don't be so harsh, it is Xmas time here.
As an example, my brother (as a geophysicist) helped his wife write her thesis (that is, he wrote it for her) on an interesting part of Chinese cultural history.
Don't be so harsh, it is Xmas time here.
As an example, my brother (as a geophysicist) helped his wife write her thesis (that is, he wrote it for her) on an interesting part of Chinese cultural history.
The OP showed zero effort, and its far different helping ones spouse, rather than asking volunteers on a forum to not only research things, but write it up too. A hand up is different than a hand-out.
So if we look things up for you, and write things for you, you'll 'custom' it and turn it in?? When do you actually learn, if this is your 'thesis'???
In my days as an Electronics techie, I met far too many engineers who had got their degrees and their jobs that way. Then they hired a techie (me) to do their work.
My vote goes to letting him learn now. Otherwise, with no clue about his thesis, and passing his exams by Knowledge Bulimia (cram it for the test, forget it after), we would be complicit in giving him a counterfeit degree.
Last edited by business_kid; 12-19-2023 at 10:34 AM.
Sorry for my question.
I done my thesis about 80%, Wazuh is can do it, but Samhain is difficult for me. I read Samhain documentation but I have no idea to compare with Wazuh.
ChatGPT will not be annoyed by you asking it homework questions!
Quote:
Samhain and Wazuh are both security tools, but they serve different purposes.
1. **Samhain:**
- **Type:** Host-based intrusion detection system (HIDS).
- **Functionality:** Monitors system logs, file integrity, and detects suspicious activity on individual hosts.
- **Use Cases:** Focuses on host-level security, providing alerts for potential intrusions or unauthorized changes on a specific system.
- **Features:** File integrity checking, log analysis, rootkit detection.
2. **Wazuh:**
- **Type:** Integrated security information and event management (SIEM) solution.
- **Functionality:** Offers a broader scope, collecting and analyzing logs from various sources across a network to provide a comprehensive security overview.
- **Use Cases:** Suitable for centralized monitoring and management of security events across multiple systems.
- **Features:** Log analysis, intrusion detection, vulnerability detection, threat intelligence.
In summary, Samhain is more focused on individual host security with an emphasis on file integrity and log analysis, while Wazuh is a comprehensive SIEM solution that covers a wider range of security aspects across a network. The choice between them depends on your specific security needs and the scale of your environment.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.