Automation for Wazuh agents inventory list

If you are using Wazuh in your security stack then this writeup can be very useful.

Source: https://wazuh.com

Currently, we can only check the inventory of Wazuh agents one by one via Wazuh Dashboard. So, I have created the Python script that will fetch the Inventory information of all Wazuh agents via Wazuh API and will the export the required data (Process Name, PID, Agent ID) in CSV sheet for further analysis.

Github Source: https://github.com/ashishsecdev/Wazuh-Inventory-Automation

Wazuh Automation by ~Ashishsecdev

Note: Querying thousands of agents can take lot of time, so you can also update the code to query via groupName or increase the API query limit.

I am also planning to include “List all Endpoint Inventory “ option in Wazuh’s dashboard by editing the frontend code, so the updated dashboard will look something like below.

Wazuh Dashboard with enhanced options for listing inventory

Please feel free to write back for any suggestions.

~Ashishsecdev