In some environments the hardest part of the deployment process is the installation of OSSEC on Windows endpoints. Wazuh has created a tool to install, register and connect Windows agents using the capabilities of the RESTful API combined with a PowerShell script.
- Wazuh HIDS v2.0+
- Wazuh RESTful API v2.0+
- Powershell v2.0+ (built-in Windows Server 2008 R2 or superior)
The Powershell script covers two different processes in order to deploy an agent.
The first one is the installation. The script will run the agent installer, once complete, OSSEC will be installed by default at C:\ossec-agent\ folder.
The second one is the registering the agent, […]