secubox-openwrt/package/secubox/secubox-app-wazuh/files/etc/config/wazuh

config wazuh 'main'
	option enabled '0'
	option manager_ip ''
	option manager_port '1514'
	option agent_name ''
	option registration_password ''
	option protocol 'tcp'

config agent 'agent'
	option installed '0'
	option version ''
	option agent_id ''
	option status 'disconnected'

config monitoring 'monitoring'
	option syslog '1'
	option auth_log '1'
	option firewall_log '1'
	option crowdsec_alerts '1'
	option file_integrity '1'
	option rootcheck '1'
	option sca '1'

config fim 'fim'
	list directories '/etc'
	list directories '/usr/sbin'
	list directories '/etc/config'
	list directories '/etc/init.d'
	option realtime '1'
	option report_changes '1'

config integration 'crowdsec'
	option enabled '1'
	option alerts_path '/var/log/crowdsec.log'
	option sync_bans '1'