Hi there, i runned script “attack.sh” on terminal, but get the following errors:
[ERROR] could not resolve address: soc
[ERROR] could not connect to ssh:…
So, when refreshing the dashboard with “Last 15 min” is empty, and can’t get anwers 3 & 4 for Tasks.
How can I correct the script to make the force attack with hydra & get the anwers?
Thanks in advance
Hey there - could you please specify the name of the lab and the part/step?
This is SIEM basics 1.2 and I am having the exact same issue. I even changed “soc” to 127.0.0.1 and the script runs but the attack events never show up.
I will also add that I see the wazuh agent is disconnected, I have restarted this lab over 10 times and the agent never connects. There is also no hosts file entry for the “soc” host. Going to request a refund if this doesnt get fixed in a timely manner.
Thanks, I was able to reproduce this issue and fix it. Apologies for the inconvenience.
