Hello, I was wondering if there are any tutorials for customizing OSSEC to check for processes running. I would assume this could be done within the syscheck process, but I do not see from the installation instructions or within the config files where to add my own processes to check for. It's fairly straightforward to check for Windows processes, as I just add them to win_applications_rcl.txt.
-Reggie
