Kaspersky
Question

Creating regex for Wazuh

  • 4 June 2021
  • 1 reply
  • 67 views

Hi, I wanted to create alerts in Wazuh, integrating the Logs of KSC. Where can i find the formats of Syslog, Archsight or Splunk. I´m searching for something like this: https://support.kaspersky.com/ScanEngine/1.0/en-US/186631.htm with all the fields documented.


This topic has been closed for comments

1 reply

Please kindly see this kb article regarding exporting  events to SIEM systems.

https://support.kaspersky.com/KSC/13/en-US/151332.htm