Atomicorp

Security for Everyone
https://forums.atomicorp.com/

How configure openvas to send logs to SIEM

https://forums.atomicorp.com/viewtopic.php?t=8581

Page 1 of 1

How configure openvas to send logs to SIEM

Posted: Thu Jul 20, 2017 1:02 pm
by edgarsblackanom
Greetings,

Anyone know or can tell me how to configure the sending of logs (syslogs) from Openvas to an SIEM, I need to centralize these logs on a server.

Thank you very much.

Regards

3dg4rsbl4ck4n0m

Re: How configure openvas to send logs to SIEM

Posted: Wed Jul 26, 2017 4:38 pm
by scott
Or ossec for that matter.... scan results dont end up in any logs at all. There are some export options that we could take advantage of with OSSEC to grab those, but Ive never tried to automate that.

Do you think you could look through openvas to see if it can write events to a fixed directory on a schedule or something? If we have that we could write something in ossec to grab and import/export that to a SIEM automatically
All times are UTC-04:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited