Revision history of "Re-indexing the archives.json file in Wazuh"

From Notes_Wiki

Diff selection: Mark the radio buttons of the revisions to compare and hit enter or the button at the bottom.
Legend: (cur) = difference with latest revision, (prev) = difference with preceding revision, m = minor edit.

  • curprev 08:46, 14 July 2025Sunilvarma talk contribs 5,205 bytes +5,205 Created page with " Home > Wazuh > Re-indexing the archives.json file in Wazuh = What Is archive.json? = * <code>archive.json</code> contains the **original raw logs** collected from Wazuh agents or syslog. * These logs are stored **before any correlation, alerting, or rule evaluation** is applied. * This is different from <code>alerts.json.gz</code>, which only contains logs that matched Wazuh rules and triggered alerts. * The file is typically generated when JSON..."
Retrieved from "http://www.sbarjatiya.com/notes_wiki/index.php/Re-indexing_the_archives.json_file_in_Wazuh"