2024-04-28 20:27:23 +02:00
|
|
|
---
|
|
|
|
|
#start of yaml
|
|
|
|
|
|
|
|
|
|
# This is the yaml config file for both the wazuh-ntfy-notifier.py and wazuh-discord-notifier.py.
|
|
|
|
|
# The yaml needs to be in the same folder as the wazuh-ntfy-notifier.py and wazuh-discord-notifier.py
|
|
|
|
|
|
2024-05-03 16:33:38 +02:00
|
|
|
# COMMON (custom-wazuh-notifiers.py) configuration settings start here.
|
2024-04-28 20:27:23 +02:00
|
|
|
# 1 = messages will be sent through this message server. 0 = messages will NOT be sent through this message server.
|
|
|
|
|
|
2024-05-08 22:13:12 +02:00
|
|
|
targets: "discord,ntfy"
|
2024-04-28 20:27:23 +02:00
|
|
|
|
2024-05-04 22:05:41 +02:00
|
|
|
# Exclude rules that are listed in the ossec.conf active response definition.
|
|
|
|
|
|
2024-05-07 17:08:03 +02:00
|
|
|
excluded_rules: "5401, 5403"
|
2024-05-04 22:05:41 +02:00
|
|
|
excluded_agents: "999"
|
|
|
|
|
|
2024-05-07 17:08:03 +02:00
|
|
|
# Priority mapping from 1-12 (Wazuh events) to 1-5 (Discord and ntfy notification)
|
|
|
|
|
|
|
|
|
|
notifier_priority_1: 12, 11, 10
|
|
|
|
|
notifier_priority_2: 9, 8
|
|
|
|
|
notifier_priority_3: 7, 6
|
|
|
|
|
notifier_priority_4: 5, 4
|
|
|
|
|
notifier_priority_5: 3 ,2, 1
|
|
|
|
|
|
2024-05-08 22:13:12 +02:00
|
|
|
sender: "Wazuh (IDS)"
|
|
|
|
|
click: "https://google.com"
|
2024-04-28 20:27:23 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
#end of yaml
|
|
|
|
|
...
|
|
|
|
|
|
