matano icon indicating copy to clipboard operation
matano copied to clipboard

Published 20 hours ago verified publisher icon matanolabs

Zscaler - Managed log source

Open shaeqahmed opened this issue 2 years ago • 1 comments

Add support for Zscaler logs to Matano.

Sources

  1. Zscaler Internet Access logs (zscaler_zia)

Tables:

  • alerts
  • dns
  • firewall
  • tunnel
  • web
  1. Zscaler Private Access logs (zscaler_zpa)

Tables:

  • audit
  • browser_access
  • user_activity
  • user_status

Steps

  • [ ] Implement all relevant parsers to ECS (proceses from ingest S3 bucket)
  • [ ] Build a managed poller to automatically pull logs from Zscaler

shaeqahmed avatar Dec 24 '22 05:12 shaeqahmed

Picking this up now!

kai-ten avatar Dec 24 '22 06:12 kai-ten