Forwarding metadata to SIEM tool
search cancel

Forwarding metadata to SIEM tool


Article ID: 241148


Updated On:


Security Analytics Security Analytics - VA


The metadata may be wanted on a SIEM tool for external use.  This can be done but is not recommended.


Security Analytics has an API which can be used to access the Analyze Summary reports.  A report may then be run and the data collected using the raw.tsv format. 

This may not be complete because the timing of gathering the reports may leave gaps.  The system can be overloaded if too much is requested.  This functionality is not recommended except for a very small amount of metadata.