1. Introduction - Fooster171/Wazuh-SEIM-Home-Lab GitHub Wiki

The purpose of this setup is to create place for log ingestion and alert creation for Blue Team perspectives on various home lab experiments. The Wazuh installation will remain in use for future labs, however this first setup will focus on a small network with a Active Directory Domain Controller, a windows workstation and a network firewall. Outside the firewall will be the Wazuh server and the Windows machine. Below is a network diagram of the setup.

This will be the basis for several lab exercises with steps detailing the attack from the Kali Linux machine and the resulting logs on the Wazuh server. This repository is largely for my own personal education but made public for anyone who is curious.