mirror of
https://codeberg.org/mclemens/qrz.is.git
synced 2024-06-12 15:50:51 +00:00
21 lines
1.0 KiB
Markdown
21 lines
1.0 KiB
Markdown
|
---
|
||
|
|
title: Correlation Rule Documentation Generator for McAfee SIEM
|
||
|
|
author: micha
|
||
|
|
date: 2018-04-29T13:09:57+00:00
|
||
|
|
url: /correlation-rule-documentation-generator-for-mcafee-siem/
|
||
|
|
categories:
|
||
|
|
- Uncategorized
|
||
|
|
|
||
|
|
---
|
||
|
|
Since we are required to document all custom correlation rules inside our SIEM (McAfee Enterprise Security Manager) for our customers, I wrote a Python script that converts XML rule exports to Markdown. Afterwards its easy to convert teh resulting file e.g. to PDF, DOCX, HTML or even variuous wiki-formats with e.g. Pandoc. This way it’s possible to generate a PDF documentation of all rules with just a few clicks/commands.
|
||
|
|
|
||
|
|
![image][1]
|
||
|
|
|
||
|
|
On the long shot that this is useful for you, you can find the script on [Github][2].
|
||
|
|
|
||
|
|
Please comment on this on the [McAfee Support Community][3] or on [Github][2].
|
||
|
|
|
||
|
|
[1]: /img/esm2markdown.png
|
||
|
|
[2]: https://github.com/exitnode/esm2markdown "Github"
|
||
|
|
[3]: https://community.mcafee.com/t5/Security-Information-and-Event/Script-Automatic-Correlation-Rule-Documentation-Generator/m-p/590048
|