Intermediate Pro

Open Source SIEM Home-Lab with Wazuh

Build and Configure a Complete Security Information and Event Management (SIEM) System with Wazuh

Self-Paced by Rajneesh Gupta

Overview

Project Overview: Open Source SIEM Home Lab using Wazuh

This project guides you in building your own Wazuh SIEM environment for monitoring and analyzing security events in real time. You will deploy Wazuh on Ubuntu, connect agents from multiple systems, and visualize alerts from attacker simulations through the Wazuh dashboard.

  • Open-source SIEM and XDR platform
  • Real-time event collection, correlation, and visualization
  • Integration with Suricata IDS and other security tools
  • Centralized log management for Linux, Windows, and containers
  • Hands-on attack detection using Kali Linux attacker VM

What You'll Learn

  • Wazuh Installation & Setup

    Learn how to install and configure the Wazuh SIEM server and dashboard on Ubuntu.

  • Agent Deployment & Monitoring

    Deploy Wazuh agents on Windows and Linux systems for log collection and system monitoring.

  • Threat Detection & Visualization

    Simulate attacks using Kali Linux and analyze alerts through the Wazuh dashboard.

  • Integration & Automation

    Integrate Wazuh with Suricata IDS and Docker to extend detection and visibility.

Prerequisites

  • Basic understanding of Linux and networking
  • Virtualization software (VMware, VirtualBox, or Proxmox)
  • At least 4 GB RAM for all VMs (SIEM, Agents, Attacker)

Lab Environment

Experience hands-on learning with our carefully designed lab environment that mirrors real-world scenarios.

  • Real-world tools and interfaces
  • Step-by-step guided instructions
  • Interactive lab environment
  • Hands-on practice with live systems
Lab Environment Preview

About Trainer

Rajneesh Gupta

Rajneesh Gupta

Rajneesh Gupta is a seasoned cybersecurity professional with over 11 years of industry experience. With a remarkable career focused on incident response, penetration testing, security compliance, and risk management, Rajneesh has established himself as a leading expert in the field. He is also an accomplished author, having penned the book "Hands-on with Blockchain and Cybersecurity". As a dedicated educator, Rajneesh has made a significant impact on the cybersecurity community by training over 60,000 students globally.

LinkedIn YouTube GitHub

Related Projects

Threat Hunting Home-Lab(using Velociraptor)
Pro Beginner

Threat Hunting Home-Lab(using Velociraptor)

Deploy, Configure, and Hunt Threats with Velociraptor Forensics Platform

AWS GuardDuty Findings Ingestion in Splunk using S3 and KMS Encryption
Pro Intermediate

AWS GuardDuty Findings Ingestion in Splunk using S3 and KMS Encryption

Build a secure pipeline to export GuardDuty security findings to an encrypted S3 bucket and automatically ingest them into Splunk for centralized threat monitoring and analysis.

AWS GuardDuty logs Ingestion in Splunk
Pro Beginner

AWS GuardDuty logs Ingestion in Splunk

Build a near real-time event-driven pipeline to stream GuardDuty security findings through EventBridge, SNS, and SQS into Splunk for immediate threat detection and incident response.