8000 GitHub - hazcod/miro2sentinel: Log ingestor that retrieves audit logs from Miro and stores them in Microsoft Sentinel SIEM>
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content

hazcod/miro2sentinel

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

43 Commits
.github
.github
 
 
.vsts
.vsts
 
 
cmd
cmd
 
 
config
config
 
 
pkg
pkg
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

miro2sentinel

A Go program that exports Miro audit logs to Microsoft Sentinel SIEM. Two tables are used; MiroAuditLogs.

Running

First create a yaml file, such as config.yml:

log:
  level: INFO

microsoft:
  app_id: ""
  secret_key: ""
  tenant_id: ""
  subscription_id: ""
  resource_group: ""
  workspace_name: ""
  retention_days: 90

  dcr:
    endpoint: ""
    rule_id: ""
    stream_name: ""

  expires_months: 6

miro:
  lookback_days: 7
  access_token: "" # non-expiring Miro access token

And now run the program from source code:

% make
go run ./cmd/... -config=dev.yml
INFO[0000] shipping logs                                 module=sentinel_logs table_name=MiroAuditLogs total=82
INFO[0002] shipped logs                                  module=sentinel_logs table_name=MiroAuditLogs
INFO[0002] successfully sent logs to sentinel            total=82

Or binary:

% miro2sen -config=config.yml

Building

% make build

About

Log ingestor that retrieves audit logs from Miro and stores them in Microsoft Sentinel SIEM>

Topics

sentinel siem miro

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 8

v1.3.1 Latest
Oct 14, 2024
+ 7 releases

Packages

 
 
 

Contributors 3

  •  
  •  
  •  

Languages
0