root security.eu
root-security.eu is a blog dedicated to cybersecurity and technology. It features articles, tutorials, and resources for enthusiasts and professionals alike.
Building Audit Trails for Zoho Mail: Real-Time Admin Monitoring with Wazuh
A guide to integrating Zoho Mail administrative audit logs with Wazuh SIEM using Logstash, creating custom decoders and detection rules, and mapping events to ISO 27001 compliance controls.
Integrating Keeper Security Event Logs with Wazuh SIEM
A guide to forwarding Keeper enterprise suite audit logs to Wazuh for centralized security monitoring, creating custom decoders to parse authentication, vault access, and privileged session events, and building detection rules for suspicious activity.
Managed privileged access: implementing a KeeperPAM POC
From deployment to first connection: A step-by-step proof of concept showing how KeeperPAM delivers agentless privileged access management with just-in-time identity creation and secure session recording.