install.fairie/home/dot_local/bin/post-installx/executable_post-wazuh.sh

#!/usr/bin/env bash
# @file Wazuh Client Install
# @brief Installs the Wazuh client and connects to the manager if configured to do so through secrets / environment variables

if [ -d /Applications ] && [ -d /System ]; then
    ### macOS
    if ! csrutil status | grep enabled > /dev/null; then
        cd /tmp
        logg info 'Downloading the macOS Wazuh agent pkg'
        curl -sSL https://packages.wazuh.com/4.x/macos/wazuh-agent-4.4.4-1.pkg > wazuh-agent.pkg
        sudo launchctl setenv WAZUH_MANAGER "$WAZUH_MANAGER"
        logg info 'Installing the Wazuh agent pkg'
        sudo installer -pkg wazuh-agent.pkg -target /
        sudo chmod 755 /Library/Ossec
        sudo chmod 755 /Library/Ossec/bin
        rm /tmp/wazuh-agent.pkg
        logg info 'Running sudo wazuh-control start'
        sudo wazuh-control start
    else
        logg warn "Skipping Wazuh Agent installation because System Integrity Protection is enabled. Disabling it requires booting into recovery and running csrutil disable, installing Wazuh Agent normally, and then re-enabling it again in recovery mode."
    fi
else
    if command -v apt-get > /dev/null; then
        logg info 'Importing GPG-KEY-WAZUH'
        curl -s https://packages.wazuh.com/key/GPG-KEY-WAZUH | sudo gpg --no-default-keyring --keyring gnupg-ring:/usr/share/keyrings/wazuh.gpg --import
        sudo chmod 644 /usr/share/keyrings/wazuh.gpg
        echo "deb [signed-by=/usr/share/keyrings/wazuh.gpg] https://packages.wazuh.com/4.x/apt/ stable main" | sudo tee -a /etc/apt/sources.list.d/wazuh.list
        sudo apt-get update
        logg info 'Installing the Wazuh agent'
        sudo apt-get install -y wazuh-agent
    elif command -v dnf > /dev/null; then
        logg info 'Configuring /etc/yum.repos.d/wazuh.repo'
        echo "[wazuh]" | sudo tee -a /etc/yum.repos.d/wazuh.repo && echo "gpgcheck=1" | sudo tee -a /etc/yum.repos.d/wazuh.repo
        echo "gpgkey=https://packages.wazuh.com/key/GPG-KEY-WAZUH" | sudo tee -a /etc/yum.repos.d/wazuh.repo
        echo "enabled=1" | sudo tee -a /etc/yum.repos.d/wazuh.repo
        echo "name=EL-\$releasever - Wazuh" | sudo tee -a /etc/yum.repos.d/wazuh.repo
        echo "baseurl=https://packages.wazuh.com/4.x/yum/" | sudo tee -a /etc/yum.repos.d/wazuh.repo
        echo "protect=1" | sudo tee -a /etc/yum.repos.d/wazuh.repo
        logg info 'Importing GPG-KEY-WAZUH'
        sudo rpm --import https://packages.wazuh.com/key/GPG-KEY-WAZUH
        logg info 'Installing Wazuh agent'
        sudo dnf install -y wazuh-agent
    elif command -v zypper > /dev/null; then
        logg info 'Configuring /etc/zypp/repos.d/wazuh.repo'
        echo "[wazuh]" | sudo tee -a /etc/zypp/repos.d/wazuh.repo
        echo "gpgcheck=1" | sudo tee -a /etc/zypp/repos.d/wazuh.repo
        echo "gpgkey=https://packages.wazuh.com/key/GPG-KEY-WAZUH" | sudo tee -a /etc/zypp/repos.d/wazuh.repo
        echo "enabled=1" | sudo tee -a /etc/zypp/repos.d/wazuh.repo
        echo "name=EL-$releasever - Wazuh" | sudo tee -a /etc/zypp/repos.d/wazuh.repo
        echo "baseurl=https://packages.wazuh.com/4.x/yum/" | sudo tee -a /etc/zypp/repos.d/wazuh.repo
        echo "protect=1" | sudo tee -a /etc/zypp/repos.d/wazuh.repo
        logg info 'Importing GPG-KEY-WAZUH'
        sudo rpm --import https://packages.wazuh.com/key/GPG-KEY-WAZUH
        logg info 'Installing Wazuh agent'
        sudo zypper install -y wazuh-agent
    elif command -v apk > /dev/null; then
        logg info 'Importing Wazuh repository'
        sudo wget -O /etc/apk/keys/alpine-devel@wazuh.com-633d7457.rsa.pub https://packages.wazuh.com/key/alpine-devel%40wazuh.com-633d7457.rsa.pub
        echo "https://packages.wazuh.com/4.x/alpine/v3.12/main" | sudo tee -a /etc/apk/repositories
        logg info 'Running sudo apk update'
        sudo apk update
        logg info 'Installing Wazuh agent'
        sudo apk add wazuh-agent
    fi
fi