Skip to content

Wazuh Ruleset 3.11.0

Compare
Choose a tag to compare
@vikman90 vikman90 released this 23 Dec 16:06
· 574 commits to master since this release

Added

  • Add rules and decoders for McAfee EPO. (#467)
  • Add PCI-DSS mapping to vulnerability detector rules. (#525)
  • Add a new base rule for Microsoft Windows Firewall With Advanced Security/Firewalls. (#532)

Changed

  • Let osquery daemon messages appear in alerts as the full log. (#531)
  • Make double-point termination optional in the postfix decoder (by @iasdeoupxe). (#245)

Fixed

  • Fix typo in network checks for SCA Debian 8 and 9 policies. (#514)
  • Fix path in audit checks for SCA Debian 8 and 9 policies. (#527)
  • Fix last space in regular expression for SCA check about NTP. (#521)
  • Unify SCA regular expressions about installed packages by dpkg. (#522)