Overview
Ubuntu is a well-maintained GNU/Linux distribution. This AMI product has ship a Ubuntu server with a SIEM/XDR solution based on Wazuh. The Ubuntu has been comprehensive security hardening by default. This AMI is also provide Wazuh to work with VED (Vault Exploit Defense) which extending the alert dimension of SIEM/XDR to the Linux kernel.
- Ubuntu 22.04, x86_64
- Security baselines including CIS and STIG, easily to integrate your business with compliance
- Wazuh manager and WEB UI ** Vulnerability management ** Audit system with Wazuh
- ClamAV anti-virus
- AIDE, File system integrity management
- Auditd for monitoring
- VED (Vault Exploit Defense), Linux kernel runtime protection. It's able to protect your digital asset from advanced threats, e.g: 0-day Linux kernel exploit of privilege escalation, container escape and rootkits etc.
- ETC
Highlights
- SIEM (Security information and event management) and XDR (Extended detection and response)
- Vulnerability management and regular audit system
- Security product need to be protected as well. Solve the "Who's watching the watcher" issue by hardening the system running SIEM/XDR
Details
Typical total price
$0.433/hour
Pricing
- $199.00/month
- ...
Instance type | Product cost/hour | EC2 cost/hour | Total/hour |
---|---|---|---|
t2.large | $0.35 | $0.093 | $0.443 |
t2.xlarge | $0.35 | $0.186 | $0.536 |
t2.2xlarge | $0.35 | $0.371 | $0.721 |
t3.large Recommended | $0.35 | $0.083 | $0.433 |
t3.xlarge | $0.35 | $0.166 | $0.516 |
t3.2xlarge | $0.35 | $0.333 | $0.683 |
t3a.large | $0.35 | $0.075 | $0.425 |
t3a.xlarge | $0.35 | $0.15 | $0.50 |
t3a.2xlarge | $0.35 | $0.301 | $0.651 |
m2.2xlarge | $0.35 | $0.49 | $0.84 |
Additional AWS infrastructure costs
Type | Cost |
---|---|
EBS General Purpose SSD (gp2) volumes | $0.10/per GB/month of provisioned storage |
Vendor refund policy
We do not support refund but you can feel free to cancel subscription.
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Hardened Wazuh server with VED integration.
Additional details
Usage instructions
Usage Instructions: To connect to your instance, you will need to use SSH or standard AWS methods as described: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AccessingInstancesLinux.html
Hardened Wazuh server must add agent's IP into the white list via: ./fw-add-agent.sh add IP_ADDR
You can access the Wazuh web interface https://PUBLIC_IP
Please note that the username and password of the Wazuh system will be displayed during SSH login. As a security precaution, we strongly recommend changing all passwords, including the Wazuh system and system accounts (such as ubuntu and root), as soon as you take control. This will help to ensure that your system remains secure and protected against unauthorized access.
Resources
Vendor resources
Support
Vendor support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.