wazuh / wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
https://wazuh.com/
Other
11.13k stars 1.69k forks source link

Create a standard protocol for internal communication between Wazuh components #5927

Open chemamartinez opened 4 years ago

chemamartinez commented 4 years ago

Description

The aim of this issue is to set a standard communication protocol for all the daemons and components of the Wazuh core product.

Once the protocol is defined it must be applied to all the components that exchange messages internally, in both agent and manager.

High-level tasks

chemamartinez commented 4 years ago

Unix sockets list

Wazuh DB

queue/db/wdb

Clients

Auth daemon

queue/ossec/auth

Clients

Analysis and agent daemons

queue/ossec/queue

Clients

queue/ossec/analysis

Clients

Remote daemon

queue/ossec/request

Clients

Wazuh modules

queue/alerts/cfgaq

Clients -Analysis daemon

queue/alerts/cfgarq

Clients -Remote daemon

queue/ossec/control

Clients

queue/ossec/download

Clients

queue/ossec/krequest

Clients

queue/ossec/wmodules

Clients

Logcollector daemon

queue/ossec/logcollector

Clients

Syscheck daemon

queue/ossec/syscheck

Clients

Exec daemon

queue/ossec/com

Clients

queue/alerts/execq

Clients

queue/alerts/execa

Clients

queue/alerts/ar

Clients

Mail daemon

queue/ossec/mail

Clients

Agentless daemon

queue/ossec/agentless

Clients

Integrator daemon

queue/ossec/integrator

Clients

Syslog daemon

queue/ossec/csyslog

Clients

Monitor daemon

queue/ossec/monitor

Clients

Cluster daemon

queue/ossec/c-internal.sock

Clients