Modified ossim-agent to allow elasticsearch connections
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Failed to load latest commit information.
.gitignore
Agent.py
Config.py
Conn.py
Control.py
ControlError.py
ControlInventory.py
ControlNmap.py
ControlSniffer.py
ControlUtil.py
ControlVAScanner.py
Database.py
Detector.py
ElasticDetector.py
Event.py
EventList.py
Exceptions.py
InventoryTask.py
InventoryTask_LDAP.py
InventoryTask_NMAP.py
InventoryTask_Nagios.py
InventoryTask_OCS.py
InventoryTask_WMI.py
Logger.py
Monitor.py
MonitorCommand.py
MonitorDatabase.py
MonitorHTTP.py
MonitorScheduler.py
MonitorSession.py
MonitorSocket.py
NetScreenMap.py
Output.py
PacketUtils.py
ParserDatabase.py
ParserElastic.py
ParserFormattedSnort.py
ParserFtp.py
ParserJson.py
ParserLog.py
ParserRemote.py
ParserSDEE.py
ParserSnort.py
ParserUnifiedSnort.py
ParserUtil.py
ParserWMI.py
Profiler.py
README.md
SSHConnection.py
SambaClient.py
SessionParser.py
SiteProtectorMap.py
Stats.py
TailFollow.py
TailFollowBookmark.py
Task.py
Threshold.py
Utils.py
Watchdog.py
__init__.py
command.py
ossim-agent
pySDEE.py
wmiMonitor.py

README.md

ossim-agent-elasticsearch

This Repository contanins the necessary code to integrate Ossim with ElasticSearch API. It's based on OSSIM 5.4.2

It requires the library elasticsearch-py for python:

pip install elasticsearch

After install elasticsearch for python you have to copy this repository into your OSSIM installation directory.

See https://github.com/berni69/ossim-plugins-elasticsearch to view example configurations.