This post goes to the community members that collect events from Azure
Event Hub. Maybe some of you have noticed, that after a certain version
the AZURE PYTHON SDK method stopped working by default. THE PROBLEM:
From Python 3.9+ Azure modules for Pyt...
And why do you think the results are not OK? In the first screenshot you
run it for just 7 days.In the CMDB report, it shows devices which are
not sending logs from 2024....In the Advanced Search, your query is not
right and equal to the one you have...
@adem_netsys Hi,I was going to ask the same question as @DHNX - Are
these devices in the CMDB at all? If not, there is nothing you can do
about it. If they managed to register to the CMDB one way or another,
but currently their "Event Status" in CMDB...
Hi there,You are trying to reinvent the wheel @Redbeard mate ;)Stick to
the default PHCustomJsonParser as a base for your parser.And just take a
look here:Ingesting JSON Formatted Events Received via HTTP(S) POST Pay
attention the the optional separa...
Hmmm, I am starting to get the puzzle together. Indeed a scheme or
diagram of your complete setup and architecture would have been nice. :)
Anyways. The log you showed me I am almost certain you found this in the
supervisor ssl_access_log? Or not? By...
Hello @Yoseph , SIEM solutions in general rely on various log sources to
correlate, analyze, enrich etc. data and provide meaningful insights and
information. So the short answer to your question is yes, you really
need to ingest the logs from all sy...
