Hello Community,
I’d like to share a Python-based solution that integrates Radware's API to retrieve Security and Operational Events and send them to a SIEM server in CEF format via Syslog.
Key Features:
Incremental Queries: Fetches only new events using timestamp files.
Scripts:
retrive_security_events.pyretrive_operational_events.py
Configurable: API credentials, Syslog details, and query intervals managed via
example_config.json.Automation: Designed to run every minute using cron jobs.
You can access the repository here:
Repository Link
Feedback:
I’m open to any suggestions or improvements. Let me know your thoughts!
Best regards,