From b3b50b687a62cb6a9632d0a07b2139e35b33319c Mon Sep 17 00:00:00 2001 From: arcter <varga.mate@kszk.bme.hu> Date: Sat, 9 Oct 2021 11:43:29 +0000 Subject: [PATCH] Add Security tasks --- Ansible/tasks/Security/osquery.yml | 27 +++++++++++++++++++++++++++ Ansible/tasks/Security/wazuh.yml | 26 ++++++++++++++++++++++++++ 2 files changed, 53 insertions(+) create mode 100644 Ansible/tasks/Security/osquery.yml create mode 100644 Ansible/tasks/Security/wazuh.yml diff --git a/Ansible/tasks/Security/osquery.yml b/Ansible/tasks/Security/osquery.yml new file mode 100644 index 000000000..d33fd57cb --- /dev/null +++ b/Ansible/tasks/Security/osquery.yml @@ -0,0 +1,27 @@ +--- +#Install OSquery +- name: Add Osquery key + ansible.builtin.apt.key: + keyserver: hkp://keyserver.ubuntu.com:80 + id: 1484120AC4E9F8A1A577AEEE97A80C63C9D8B80B + state: present + +- name: Add Osquery repository + ansible.builtin.apt_repository: + repo: deb [arch=amd64] https://pkg.osquery.io/deb deb main + state: present + +- name: Appdate apt cache + apt: + update_cache: yes + +- name: Install Osquery + apt: + - osquery + +- name: Enable Osquery + systemd: + daemon_reload: true + name: osquery + enabled: true + state: started diff --git a/Ansible/tasks/Security/wazuh.yml b/Ansible/tasks/Security/wazuh.yml new file mode 100644 index 000000000..39b640f65 --- /dev/null +++ b/Ansible/tasks/Security/wazuh.yml @@ -0,0 +1,26 @@ +--- +#Install Wazuh Agent +- name: Add Wazuh GPG key + ansible.builtin.apt.key: + url: https://packages.wazuh.com/key/GPG-KEY-WAZUH + state: present + +- name: Add Wazuh repository + ansible.builtin.apt_repository: + repo: deb https://packages.wazuh.com/4.x/apt/ stable main + state: present + +- name: Appdate apt cache + apt: + update_cache: yes + +- name: Install Wazuh Agent + apt: + - wazuh-agent + +- name: Enable Wazuh agent + systemd: + daemon_reload: true + name: wazuh-agent + enabled: true + state: started -- GitLab