Community Integrations

Overview

This article provides integration scripts to ingest log data from cloud-based services into DefenseStorm GRID via the DVM. This list of community integrations will continue to grow based on customer requirements, requests, and DefenseStorm's recommended cloud based services. 

CarbonBlack Defense

What

 EDR

How

  DS-Integration Script

GitHub Instructions

 https://github.com/DefenseStorm/cbdefenseEventLogs

Notes



Cloudflare

What

 Cloud Web Application Firewall

How

  DS-Integration ScriptSyslog

GitHub Instructions

 https://github.com/DefenseStorm/cloudflareEventLogs

Notes



Duo Security

What

  Zero-trust security platform for all users, devices, and applications

How

  DS-Integreation Script

GitHub Instructions

  https://github.com/DefenseStorm/duoEventLogs

Notes



OneLogin

What

Identity Management

How

DS-Integraton Script 

GitHub Instructions

https://github.com/DefenseStorm/oneloginEventLogs

Notes



SalesForce

What

  Customer relationship management platform

How

  DS-Integraton Script 

GitHub Instructions

 https://github.com/DefenseStorm/salesforceEventLogs

Notes



Sophos

What

Anti-Virus

How

DS-Integration Script

GitHub Instructions

 https://github.com/DefenseStorm/sophosEventLogs

Notes



Custom Scripts

Our goal is to make these scripts freely available to use with the DefenseStorm GRID or any other log aggregation tool.  These scripts leverage each vendor’s API to collect event data and, leveraging the DS-Integration module, submit events to the local Syslog service.  We welcome any contributions to these scripts as well as help to integrate with additional systems.