Skip to content
/ hpfeeds-arcsight Public
forked from pwnlandia/hpfeeds-logger

Small App for reading from MHN's hpfeeds broker and writing splunk logs

0 stars 16 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

keepwatch/hpfeeds-arcsight

BranchesTags
 
 

Repository files navigation

Hpfeeds Logger

A simple utility for logging hpfeeds events to files compatible with Splunk and ArcSight (coming soon).

Installation

git clone https://github.com/threatstream/mhn-logger.git
cd mhn-logger
virtualenv env
. env/bin/activate
pip install -r requirements.txt

Configuration

Add an hpfeeds user that is capable of subscribing to all channels listed in your config. (see add_user.py from ThreatStream's fork of hpfeeds).

Create your config.

cp logger.json.example logger.json
vi logger.json

Running

. env/bin/activate
python logger.py logger.json

Notes

This application is designed to fail fast and should be run using supervisord or upstart configured to auto restart upon exitting.

About

Small App for reading from MHN's hpfeeds broker and writing splunk logs

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 90.0%
  • Shell 10.0%