Wazuh +

Automate Malicious File Detection with Wazuh + n8n | Free Workflow Tutorial

In this video, you’ll learn how to set up a free automation workflow that enriches malicious file alerts from Wazuh using VirusTotal, then automatically creates an incident in ServiceNow — no manual triage needed.

✅ What this workflow does:
Listens for Wazuh alerts related to malicious file activity
Extracts file hashes (MD5, SHA1, SHA256) from the alert
Sends them to VirusTotal for threat intelligence
Automatically creates a detailed incident in ServiceNow

🔧 What you need:
Wazuh (with alert forwarding)
n8n (self-hosted or cloud)
VirusTotal API key
ServiceNow API access

💡 This is just one part of our complete Wazuh Automation Pack. Try it free — upgrade anytime.

👉 Follow me on LinkedIn and subscribe here on YouTube for more cybersecurity automation workflows:
🔗 linkedin.com/in/rajneeshgupta01

#Wazuh #n8n #MalwareDetection #CyberSecurity #SOAR #ThreatIntelligence #Automation