gandalf/secubox-openwrt
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
d9bcf1c09b
secubox-openwrt/package/secubox/secubox-app-wazuh/Makefile
CyberMind-FR 6f777761e7 feat(wazuh): Add Wazuh security agent package 
New package secubox-app-wazuh provides:
- Wazuh Agent installation and management for ARM64/OpenWrt
- File Integrity Monitoring (FIM) for /etc, /usr/sbin, /etc/config
- Log analysis: syslog, CrowdSec, firewall
- Rootcheck and Security Configuration Assessment
- CrowdSec integration for threat sync
- CLI: wazuhctl with install/configure/register/status commands

Wazuh provides SIEM/XDR capabilities complementing CrowdSec:
- Endpoint detection and response
- Compliance monitoring (PCI-DSS, GDPR, HIPAA)
- Vulnerability detection
- Active response automation

Requires external Wazuh Manager or future secubox-wazuh-manager LXC.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-02-14 13:28:00 +01:00

54 lines
1.2 KiB
Makefile
Raw Blame History

include $(TOPDIR)/rules.mk
PKG_NAME:=secubox-app-wazuh
PKG_VERSION:=1.0.0
PKG_RELEASE:=1
PKG_MAINTAINER:=CyberMind <contact@cybermind.fr>
PKG_LICENSE:=GPL-2.0
include $(INCLUDE_DIR)/package.mk
define Package/secubox-app-wazuh
SECTION:=secubox
CATEGORY:=SecuBox
SUBMENU:=Security
TITLE:=Wazuh Security Agent
DEPENDS:=+bash +curl +ca-bundle +coreutils-stat
PKGARCH:=all
endef
define Package/secubox-app-wazuh/description
Wazuh security monitoring agent for SecuBox.
Provides endpoint detection, file integrity monitoring,
log analysis, and SIEM integration.
Features:
- Wazuh Agent installation and management
- Integration with CrowdSec threat data
- OpenWrt system log monitoring
- File integrity monitoring (FIM)
- Security configuration assessment
- CLI: wazuhctl
endef
define Package/secubox-app-wazuh/conffiles
/etc/config/wazuh
endef
define Build/Compile
endef
define Package/secubox-app-wazuh/install
$(INSTALL_DIR) $(1)/usr/sbin
$(INSTALL_BIN) ./files/usr/sbin/wazuhctl $(1)/usr/sbin/
$(INSTALL_DIR) $(1)/etc/config
$(INSTALL_CONF) ./files/etc/config/wazuh $(1)/etc/config/
$(INSTALL_DIR) $(1)/etc/init.d
$(INSTALL_BIN) ./files/etc/init.d/wazuh $(1)/etc/init.d/
endef
$(eval $(call BuildPackage,secubox-app-wazuh))
Reference in New Issue View Git Blame Copy Permalink