Review on Wazuh - The Open Source Security Platform by Noah Trigg

It's easy to install & configure with few clicks of mouse (it also supports ansible by default). Very fast in detecting threats from an external network or firewall/proxy servers. Free version offers limited number of rules which makes it unsuitable if you have too many users who are using your server as web proxy / gateway etc. If there should be only one rule set then I would highly recommend this product! You can use wazuh against any linux platform including cloud native environments like Kubernetes without worrying about compatibility issues. We've been able to identify various attacks happening within our networks even when they were not visible through packet sniffing tools such as tcpdump.