Skip to content

qeratos/PUMA-agent

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
Puma-agent.ps1
Puma-agent.ps1
 
 
Readme.md
Readme.md
 
 

Repository files navigation

PUMA - Powershell kUMA agent with others SIEM support

Description

This project aimed to collect all logs from Windows event journals, pack them in to CEF and send by UDP to your SIEM.

Here used WinAPI Documentation.

How to use

  1. You need to create collector in your SIEM or other system.
  2. Allow UDP traffic to collector specifed port.
  3. Download this code and copy to your directory(Must be disk C:).

Dependences

There is no dependeces, only operational system must be Windows.

Installation

  1. Download repo to your PC.
  2. Unzip it to your work directory (Must be disk C:/PUMA.ps1).
  3. It can be started using PowerShell or added in to scheduler. For adding in to scheduler follow Creating task guide.

Creating task guide

About

Powershell KUMA agent

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages