SIEMonster XDR consists of a multitude of modules that performs various functions. Originally a branch of ossec, Wazuh is the industry standard for large scale event collection/correlation and file integrity monitoring for compliance such as PCI DSS. SIEMonster has now forked and rebranded it as SIEMonster XDR.
XDR has the following default classification sections and subsections that can be access to review the information generated by events.
Security Information management:
Google Cloud Platform*
Auditing and Policy monitoring
Security configuration assessment
Threat Detection and Response
* These modules are hidden from the default dashboard until they have been toggled on.
🔖 NOTE: Some modules are functional and populated as soon as events flow into the environment. Others require additional setup.https://youtu.be/7aNGAoaROp8