carbonbeat

command module

v2.0.2 Latest Latest Go to latest Published: Mar 19, 2020 License: Apache-2.0 Imports: 3 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/indeedsecurity/carbonbeat

Links

Open Source Insights

README ¶

Carbonbeat

Carbonbeat currently supports shipping notifications from the Carbon Black Defense notifications API.

Getting Started with Carbonbeat

You'll need to provide your API credentials in carbonbeat.yml. CB Defense notifications api requires a SIEM type API key. As of carbonbeat 2.0 you need to provide both a SIEM type key for CB Defense notifications and an API type key for audit logging. Like any other beat, customize carbonbeat.full.yml to your liking, rename to carbonbeat.yml and you're ready to go. You can customize the outputs per the beats outputs documentation.

There is a multistage Dockerfile included. It does not include the config so you need to mount it when you run the container.

Output example

Carbonbeat ships events in JSON format to its outputs. Here is an example of an event indexed into Elasticsearch and displayed by Kibana:

example notification event

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
app
carbonclient
config

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL