Skip to content
/ SentinelLogstash Public

A collection of pre-configured containers for Sentinel log ingest using logstash

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

N4SOC/SentinelLogstash

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

242 Commits
ciscoasa
ciscoasa
 
 
cloudhive
cloudhive
 
 
cyberark
cyberark
 
 
darktrace
darktrace
 
 
eset
eset
 
 
fortigate
fortigate
 
 
hytrust
hytrust
 
 
juniper
juniper
 
 
netflow
netflow
 
 
netscaler
netscaler
 
 
opnsense
opnsense
 
 
passwordstate
passwordstate
 
 
radius
radius
 
 
redirector
redirector
 
 
sonicwall
sonicwall
 
 
sophoscentral
sophoscentral
 
 
sophoscentral_api
sophoscentral_api
 
 
sophosxg
sophosxg
 
 
suricata
suricata
 
 
suricata_ids
suricata_ids
 
 
thycotic
thycotic
 
 
trend
trend
 
 
vmware
vmware
 
 
windows_legacy
windows_legacy
 
 
zeek
zeek
 
 
zeek_ids
zeek_ids
 
 
.gitignore
.gitignore
 
 
docker-compose.yml
docker-compose.yml
 
 
docker_install.sh
docker_install.sh
 
 
docker_refresh.sh
docker_refresh.sh
 
 
example.env
example.env
 
 
readme.md
readme.md
 
 

Repository files navigation

Azure Sentinel log collectors

Copy example.env to .env and replace variables for required modules cp example.env .env

To install docker & docker compose:

sudo bash docker_install.sh

To build a single profile:

docker-compse --profile ids build

To build multiple profiles:

docker-compse --profile ids --profile sophos build

To run (Foreground):

docker-compse --profile ids up

To run (Background):

docker-compse --profile ids up -d

To enable auto-update

Edit docker_refresh.sh to refelect correct path and profiles in use cp docker_refresh.sh /etc/cron.daily/

To enable remote management access

Add ngrok auth key into .env docker-compse --profile mgmt up -d

About

A collection of pre-configured containers for Sentinel log ingest using logstash

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages