Bring your own Any/Agent

You can publish any JSON log data into easySIEM via it's HTTP receiver.

Sample Python Code

import requests
import json
url = "https://<ALIAS>-collector.easysiem.com/agent/generic/"
data = {"pack":<MY_PACK>,"name":<MY_NAME>,....}
data.update({"auth_token":AUTH_TOKEN})
r = requests.post(url, data = json.dumps(data),verify=None)

Add fromhost-ip equal to the IP of the machine to be associated with event. data.update({"fromhost-ip":"<IP of machine >"})

Note: We are using a self-signed OpenSSL certificate for demo-collector.easysiem.com, hence verify=False is in the above example, We can provide the public certificate in order to verify if required.

Only collector sub-domains have self-signed certificates for TLS.

Learn more about OpenSSL here. https://en.wikipedia.org/wiki/OpenSSL‚Äč