msiempy
msiempy copied to clipboard
mfesiem
McAfee SIEM API Python wrapper
**Describe** When trying to call the GroupEventManager API with SIEM nicknames such as with below code an error message throws saying "EVENT Field not supported". Checking the code for event.py...
**Describe** When trying to get Rule_NDSNormSigID.msg, all results break, for example: Result without asking for Rule_NDSNormSigID.msg field | LastTime | Rule.msg | | 10/27/2020 14:10:44 | TCP Scan (horizontal) |...
**Describe** The Datasource and DevTree codebase have to be rewritten to: - Fix #78 and #79 - Unify the `search()` method across list-like objects of the library as described in...
**Describe** The whole library uses API V1 and the Private ESM API. Which is not a major issue, in any case the library will depend on private ESM methods. Calls...
**Describe** The library should cover simple maintenance tasks like 1) Removing the old triggered alarms: OK: This can be done with `AlarmManager` 2) Removing older reports I don't think so....
**Describe** The library should handle a easy way to Write Data Sources and Roll Policy. May be create a `DevTree.write_policy()` method? May be also create a `DevTree.add(write_policy=True)` argument that will...
**Describe** NitroSession object should call the "miscKeepAlive" API call every 5mn to minimise the need of (automatically) re-login all the time **msiempy version:** - msiempy: 0.3.5 **Additional context** This issue...
**Describe** When trying to create a datasource object from id, the `KeyError` pops up. Workaround: use DevTree: ```python devtree = DevTree() ds = list(devtree.search_ds_group(field='ds_id', term='144116290808709120')) if len(ds): ds=ds[0] else: print("Datasource...
**Describe** Like in the code snippet, the `add()` method should call `dsAddDataSourcesStatus ` , make sure there is no error or raise an Exception if the Datasource were not added....