Skip to content

Commit

Permalink
[SIEM] Office 365 module (#16386) (#17158)
Browse files Browse the repository at this point in the history 
This includes a new fileset, o365.audit, that uses the o365audit input
to ingest logs using the Office 365 Management API.

(cherry picked from commit 1cc1d33)
  • Loading branch information
@adriansr
adriansr authored Mar 20, 2020
1 parent f29bc2f commit c03dec4
Show file tree
Hide file tree
Showing 49 changed files with 34,858 additions and 3 deletions.
1 change: 1 addition & 0 deletions CHANGELOG.next.asciidoc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -269,6 +269,7 @@ https://github.com/elastic/beats/compare/v7.0.0-alpha2...master[Check the HEAD d
- Add pattern for Cisco ASA / FTD Message 734001 {issue}16212[16212] {pull}16612[16612]
- Add `o365audit` input type for consuming events from Office 365 Management Activity API. {issue}16196[16196] {pull}16244[16244]
- Add custom string mapping to CEF module to support Check Point devices. {issue}16041[16041] {pull}16907[16907]
- Added new module `o365` for ingesting Office 365 management activity API events. {issue}16196[16196] {pull}16386[16386]

*Heartbeat*

Expand Down
Loading

0 comments on commit c03dec4

Please sign in to comment.