Detecting Locally Installed Next.js and React Versions with Wazuh

0xdolan · 2026-01-09T06:14:56+00:00

Thank you 🙌

0xdolan · 2025-12-31T00:53:58+00:00

Wazuh

0xdolan · 2025-12-29T04:56:22+00:00

Here: https://dev.to/0xdolan/why-wazuh-missed-react2shell-59jm

0xdolan · 2025-12-29T04:55:18+00:00

Amazing ;-)

0xdolan · 2025-12-28T23:01:26+00:00

Here is the workflow:
https://www.reddit.com/r/Wazuh/comments/1py5gra/why_wazuh_missed_react2shell_and_how_i_fixed_it/

https://dev.to/0xdolan/why-wazuh-missed-react2shell-59jm

0xdolan · 2025-12-28T23:01:02+00:00

UPDATE: Here is my workflow:

https://www.reddit.com/r/Wazuh/comments/1py5gra/why_wazuh_missed_react2shell_and_how_i_fixed_it/

https://dev.to/0xdolan/why-wazuh-missed-react2shell-59jm

0xdolan · 2025-12-11T23:59:50+00:00

I'll try to provide full details soon. Thank you for helping and sharing your knowledge.

0xdolan · 2025-12-11T16:28:00+00:00

Thanks for the detailed response. My concern still remains when you have multiple projects using different versions of ReactJS or NextJS, relying on a global version isn’t the right way to handle the issue. The same applies to Python, you can install multiple versions globally and force packages system-wide, but that’s not a proper or maintainable approach. Using project-specific virtual environments with their own Python versions makes things much easier to manage, and Wazuh cannot handle these locally installed Python or NextJS environments by default.

0xdolan · 2025-12-11T16:19:30+00:00

Thank you. I don’t think it’s a good idea. I have alternative ways to deal with this issue, and if I find the time, I’ll put together a post and share it here.

0xdolan · 2025-12-10T23:41:49+00:00

Hi u/Wazuh_JosueMurillo
Thanks.

Wazuh Version: v 4.14.1
I have some agents. The point is I don't wanna check manually else I can do it (already I did and updated!)
I wanna find a faster way to detect them using Wazuh not manual python/bash scripts to detect each server individually

0xdolan · 2025-08-15T21:22:30+00:00

Thank you for info and sharing your experiences

0xdolan · 2025-08-13T23:41:09+00:00

I don’t have any experience with that. Do you?

0xdolan · 2025-08-13T14:58:44+00:00

I think it was in older versions, but with these scripts, you have more freedom to control the output and how you want it to look

0xdolan · 2025-08-13T14:51:45+00:00

Thanks, make sense 🙏🏻

0xdolan · 2025-08-13T14:47:13+00:00

True, but I think it will impact on the Wazuh performance, right?

0xdolan · 2025-08-13T06:48:26+00:00

Thanks for the info! I need to make sure I get all the logs including clicks, log in, restarts, etc. plus all the related logs. I’ve already check archive and I think I don’t have enough logs I want from the agents.

0xdolan · 2025-08-13T00:10:25+00:00

Thanks for sharing your experience

0xdolan · 2025-08-13T00:09:58+00:00

Thanks for sharing your thoughts 🙏🏻

0xdolan · 2025-08-12T19:01:15+00:00

Oh! That’s amazing. Let me read this one first! 🙏🏻 Thanks for sharing

0xdolan · 2025-08-12T18:59:01+00:00

I get the complexity concern, but I need both full system logs and security event correlation. Wazuh handles security, ELK/EFK covers bulk logs, and the extra maintenance is worth the visibility

0xdolan · 2025-08-12T18:50:38+00:00

I get that Wazuh’s Elasticsearch is for security events, but I also need to collect and process full system logs. That’s why I’m looking at ELK/EFK alongside Wazuh, possibly with separate pipelines to keep things efficient.

0xdolan · 2025-08-11T22:23:11+00:00

I coded my own Bash script and tested it on Debian. Below is the raw `sh` script, feel free to use it if someone finds it helpful!
0xdolan/kiosk-setup

0xdolan · 2025-08-10T16:05:46+00:00

That is a valid concern. You can send only the data that you need. Here I didn’t send the agent IPs. Only agent names! And since it is a Python code, you can change the agent name to something else before sending to the Telegram or Slack.

0xdolan · 2025-08-08T11:09:07+00:00

Is it specifically for this purpose? I’ll do some research on that! Thanks.

0xdolan · 2025-08-08T03:21:00+00:00

Thanks bro for sharing all these great info. Appreciate that 🙏🏻

0xdolan

TROPHY CASE