MSGraphIngester

command

v3.8.31 Latest Latest Go to latest Published: May 3, 2024 License: BSD-2-Clause, BSD-2-Clause Imports: 20 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/gravwell/gravwell

Links

Open Source Insights

README ¶

# Microsoft Graph Security Client

Pulls alerts & security scores from the MS Graph API.

## Setup

Register a new application with Azure AD. Give it SecurityActions.ReadAll and SecurityEvents.ReadAll permissions. Generate an authentication token and save it.

In the config file, set `Client-ID` to the "Application (client) ID" for the app, set `Client-Secret` to the auth token you just generated, and set `Tenant-Domain` to your domain (e.g. "gravwell.onmicrosoft.com").

Set up one or more ContentType definitions. The following types are available: "alerts", "secureScores", and "controlProfiles".

Your configuration should end up looking something like this:

```
Client-ID=4d2066ab-7ac8-4b4c-ba62-b4e7ca2b1de6
Client-Secret="replaceme"
Tenant-Domain=gravwell.onmicrosoft.com

[ContentType "alerts"]
	Content-Type="alerts"
	Tag-Name="graph-alerts"

[ContentType "scores"]
	Content-Type="secureScores"
	Tag-Name="graph-scores"

[ContentType "profiles"]
	Content-Type="controlProfiles"
	Tag-Name="graph-profiles"
```

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL