Greetings,
Anyone know or can tell me how to configure the sending of logs (syslogs) from Openvas to an SIEM, I need to centralize these logs on a server.
Thank you very much.
Regards
3dg4rsbl4ck4n0m
How configure openvas to send logs to SIEM
-
- New Forum User
- Posts: 2
- Joined: Thu Jul 20, 2017 12:52 pm
- Location: Ecuador
-
- Atomicorp Staff - Site Admin
- Posts: 8355
- Joined: Wed Dec 31, 1969 8:00 pm
- Location: earth
- Contact:
Re: How configure openvas to send logs to SIEM
Or ossec for that matter.... scan results dont end up in any logs at all. There are some export options that we could take advantage of with OSSEC to grab those, but Ive never tried to automate that.
Do you think you could look through openvas to see if it can write events to a fixed directory on a schedule or something? If we have that we could write something in ossec to grab and import/export that to a SIEM automatically
Do you think you could look through openvas to see if it can write events to a fixed directory on a schedule or something? If we have that we could write something in ossec to grab and import/export that to a SIEM automatically