EN
All others
0%
Wazuh is an open-source platform for threat detection and incident response.
Wazuh pre-installed on servers in the Netherlands, Finland, Germany, Iceland, Turkey, USA, UK and France.
Rent a virtual (VPS) or a dedicated server with a pre-installed Wazuh - an open-source platform for threat detection and incident response. Simply choose Wazuh, configure a server and start working in just 15 minutes.
Wazuh is provided only for leased HOSTKEY servers. To get Wazuh, select it in the "App Marketplace" tab while ordering the server.
Rent a reliable VPS in the Netherlands, Finland, Germany, Iceland, Turkey, USA, UK and France.
Server delivery ETA: ≈15 minutes.
Rent a dedicated server with a full out-of-band management in the Netherlands, Finland, Germany, Iceland, Turkey, USA, UK and France.
Server delivery ETA: ≈15 minutes.
Wazuh is a free and open-source platform available under the GNU General Public License v2.0.
We guarantee that our servers are running safe and original software.
Officially supported operating systems for Wazuh server install are Linux distributions including Ubuntu 20.04/22.04, Debian, CentOS and RHEL. These OSes guarantee full compatibility, stability and access to the latest security updates. Using other operating systems may result in unexpected errors and compatibility issues when running Wazuh server install.
Installing a Wazuh server on a VPS or dedicated server is performed via the official installation script, which automates the process of deploying all components. The process includes updating the system, downloading the script and running it with root privileges. However, for a production environment, it is recommended to use pre-installed images from trusted providers to avoid configuration errors.
Typical problems when installing a Wazuh server are often related to dependency conflicts, insufficient server resources or network configuration errors. The solution may be to check the system requirements, analyze the installation logs and refer to the official documentation. For complex cases, it is recommended to contact the technical support of the hosting provider.
The deployment time of the Wazuh server depends on the chosen method. When using pre-installed cloud images, deployment takes less than 15 minutes. Self-installation on a clean OS can take from 30 minutes to several hours, depending on the administrator's experience and the complexity of the environment.
Wazuh server is a completely open and free solution (GPLv2 license). Payment may be required only for hosting services - computing resources, disk space and additional support from the provider. The software itself does not require license fees.
Yes, Wazuh server is fully compatible with cloud platforms, including AWS, Azure and Google Cloud. You can deploy it on a virtual machine in the cloud, use ready-made Marketplace images, or integrate with cloud services for log collection. This provides flexibility for hybrid infrastructure deployment.
Wazuh is a comprehensive open-source security monitoring platform. It provides various security features that help with threat detection, monitoring, compliance, and incident response.
Wazuh server hosting is a service for hosting and managing the central server of the Wazuh security platform in a cloud or dedicated infrastructure. Instead of deploying and maintaining the Wazuh server on their own, companies can use external hosting, which eliminates the need to manage the equipment, ensure its uninterrupted operation, perform updates and monitor scalability. This allows organizations to quickly launch a security monitoring system and focus resources on threat analysis, rather than on infrastructure support.
The key task of the hosted Wazuh server is to aggregate, analyze and store data that comes from Wazuh agents installed on protected workstations and servers. The service provider takes on all the technical parts of ensuring the operation of the manager and API, guaranteeing its high availability, security and performance. This approach is especially important for creating a centralized security system (SIEM), which requires significant computing power and expertise for continuous operation.
The officially supported operating systems for deploying Wazuh servers are Linux-based distributions, in particular Ubuntu 20.04, Ubuntu 22.04 and Debian. This guarantees full compatibility, stability and access to the latest security and software updates. Choosing one of these OSs ensures ease of installation and configuration thanks to detailed official documentation and community, which minimizes potential conflicts and dependency issues.
Using an unsupported operating system can lead to unstable operation of key platform components such as the manager, indexer and dashboard. Therefore, when choosing hosting for Wazuh server, it is extremely important to make sure that the provider offers images based on these OSs, which is the key to predictable and reliable operation of your entire security system.
The minimum hardware requirements for deploying a Wazuh server include a configuration with 2 vCPUs, 4 GB RAM, and 20 GB SSD disk space. This configuration is sufficient for test environments, processing events from a small number of agents (up to 50), or for familiarizing yourself with the platform's functionality. However, it is important to remember that these resources are designed for basic operation without taking into account peak loads and long-term data storage.
Deploying a production environment with such characteristics is not recommended, as this may lead to slower processing of security events, delays in analysis, and the inability to index large volumes of data in real time. Minimum requirements should be considered only as a starting point for evaluation, and not as a basis for real-world use.
The recommended configuration for full-fledged operation of Wazuh server in a production environment includes 8 vCPU, 16 GB RAM and a 200+ GB NVMe disk. A powerful processor and a significant amount of RAM are necessary for fast processing and correlation of security events from several hundred or thousands of agents, as well as for the smooth operation of Elasticsearch, which is a resource-intensive component
. Using a high-speed NVMe drive is critical for the performance of the storage system and data indexing. It ensures low latency when writing and reading large amounts of information, which directly affects the response speed of the web interface and the execution of search queries. This recommended configuration is designed to ensure high availability and fault tolerance of the system under significant loads.
The network infrastructure for Wazuh server should have a dedicated gigabit port (1 Gbps port) to ensure smooth transfer of large amounts of data from all agents without delays and packet losses. To protect against external attacks, comprehensive DDoS protection is required, which will protect the central server from denial of service attempts, which can paralyze the entire monitoring system.
Support for both Internet protocols IPv4/IPv6 support is a modern standard and provides flexibility for deploying agents in heterogeneous network environments. This allows you to scale the security infrastructure and ensure that all agents, regardless of the protocol used, can reliably and reliably connect to the manager.
Security
The security of the Wazuh server itself is a critical aspect. It must be ensured by a strict firewall configuration that limits incoming and outgoing traffic, allowing connections only on the necessary ports and from trusted IP addresses. This minimizes the surface for a potential attack on the central control node.
The implementation of role-based access control (RBAC) allows for detailed delineation of user rights in the web interface, preventing unauthorized access to confidential data and settings. In addition, the automated updates system for the operating system and Wazuh components must be configured to promptly apply vulnerability patches and ensure the maximum level of server protection.
By using Wazuh Hosting you will get the following benefits:
For large enterprises, Wazuh server is the cornerstone of a comprehensive security strategy, providing centralized monitoring of a hybrid infrastructure. It allows you to correlate events from thousands of workstations, servers, and network devices, identifying complex multi-stage attacks. Quick deployment via Wazuh server install from a trusted provider allows you to scale your security system in line with business growth, without diverting internal IT resources to support the infrastructure.
Cybersecurity teams have a powerful tool for threat detection, incident investigation, and automated response. Wazuh server provides them with a single control panel for attack analysis, vulnerability management, and policy compliance monitoring. The pre-installed solution relieves specialists from the routine Wazuh server install and configuration, allowing them to focus on analytics and proactively protecting company assets.
For employees responsible for regulatory compliance, Wazuh server serves as an indispensable tool for evidence collection and automated auditing. It provides ready-made reports and dashboards for standards such as PCI DSS, GDPR and HIPAA, significantly simplifying the process of preparing for audits. Using pre-installed hosting ensures that the system is initially deployed with all the necessary compliance settings, eliminating the risks associated with self-installation.
For managed service providers (MSPs), Wazuh server is an ideal platform for building a Managed Detection and Response (MDR) service for their customers. They can deploy a multi-tenant architecture and centrally manage the security of multiple organizations. The optimized Wazuh server install allows MSPs to quickly onboard a new customer, offering them a ready-made security service without capital expenditures on their part.
Developers and cybersecurity researchers use Wazuh server as a platform for testing their applications, analyzing malware and validating hypotheses in a controlled environment. Quick Wazuh server install via pre-configured images allows them to deploy a lab in minutes without wasting time on routine configuration. This speeds up the development cycle of security tools and research in the field of information security.
Unlike many commercial SIEM solutions, such as Splunk or IBM QRadar, Wazuh server offers a completely open and free open source platform, which provides unprecedented flexibility and transparency. This is a key advantage for organizations that want to avoid high licensing fees and vendor lock-in.
While commercial counterparts often charge for the amount of indexed data per day, deploying your own Wazuh server allows you to scale without hidden costs, making the solution predictable from a budget perspective. In addition, Wazuh's open architecture makes it easy to integrate with other tools via a RESTful API, which can be more difficult or expensive to implement in proprietary systems
However, compared to commercial counterparts, Wazuh server may require more in-depth technical knowledge for initial setup and fine-tuning for a specific IT infrastructure. Solutions like Splunk provide a more polished user interface and extensive technical support out of the box.
However, Wazuh's active community and detailed documentation successfully compensate for this gap. For many companies, especially those with a limited security budget, Wazuh server becomes the optimal choice, combining powerful functionality, including EDR, file integrity monitoring and compliance, without the initial investment in licenses.
Cooperation with HOSTKEY brings the following benefits:
+31 20 820 3777
Support 
Documentation 
Login 