From b3b50b687a62cb6a9632d0a07b2139e35b33319c Mon Sep 17 00:00:00 2001
From: arcter <varga.mate@kszk.bme.hu>
Date: Sat, 9 Oct 2021 11:43:29 +0000
Subject: [PATCH] Add Security tasks

---
 Ansible/tasks/Security/osquery.yml | 27 +++++++++++++++++++++++++++
 Ansible/tasks/Security/wazuh.yml   | 26 ++++++++++++++++++++++++++
 2 files changed, 53 insertions(+)
 create mode 100644 Ansible/tasks/Security/osquery.yml
 create mode 100644 Ansible/tasks/Security/wazuh.yml

diff --git a/Ansible/tasks/Security/osquery.yml b/Ansible/tasks/Security/osquery.yml
new file mode 100644
index 000000000..d33fd57cb
--- /dev/null
+++ b/Ansible/tasks/Security/osquery.yml
@@ -0,0 +1,27 @@
+---
+#Install OSquery
+- name: Add Osquery key
+  ansible.builtin.apt.key:
+    keyserver: hkp://keyserver.ubuntu.com:80
+    id: 1484120AC4E9F8A1A577AEEE97A80C63C9D8B80B
+    state: present
+
+- name: Add Osquery repository
+  ansible.builtin.apt_repository:
+    repo: deb [arch=amd64] https://pkg.osquery.io/deb deb main
+    state: present
+
+- name: Appdate apt cache
+  apt:
+    update_cache: yes
+
+- name: Install Osquery
+  apt:
+    - osquery
+
+- name: Enable Osquery
+  systemd:
+    daemon_reload: true
+    name: osquery
+    enabled: true
+    state: started
diff --git a/Ansible/tasks/Security/wazuh.yml b/Ansible/tasks/Security/wazuh.yml
new file mode 100644
index 000000000..39b640f65
--- /dev/null
+++ b/Ansible/tasks/Security/wazuh.yml
@@ -0,0 +1,26 @@
+---
+#Install Wazuh Agent
+- name: Add Wazuh GPG key
+  ansible.builtin.apt.key:
+    url: https://packages.wazuh.com/key/GPG-KEY-WAZUH
+    state: present
+
+- name: Add Wazuh repository
+  ansible.builtin.apt_repository:
+    repo: deb https://packages.wazuh.com/4.x/apt/ stable main
+    state: present
+
+- name: Appdate apt cache
+  apt:
+    update_cache: yes
+
+- name: Install Wazuh Agent
+  apt:
+    - wazuh-agent
+
+- name: Enable Wazuh agent
+  systemd:
+    daemon_reload: true
+    name: wazuh-agent
+    enabled: true
+    state: started
-- 
GitLab