OwlH Standard on-prem configuration

What is OwlH in Standard on-premises configuration?


Among others, this scenario has:

  • one or more locations, data centers, departmental network, etc
  • one or more OlwH Nodes with Suricata and Zeek (there is no limitation in nodes number)
  • each node is connected to a SPAN port or Port mirror
  • one sing OwlH Master and OwlH UI to manage all them


  • A wazuh infrastructure to integrate with.

OwlH - current v0.11.x - Nov - OwlH Changelog

documentation last updated - Jan 21, 2020