Skip to content
/ one2sen Public

Go program that exports 1Password security events to Microsoft Sentinel SIEM.

4 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

hazcod/one2sen

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

157 Commits
.github
.github
 
 
cmd
cmd
 
 
config
config
 
 
pkg
pkg
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

one2sentinel

A Go program that exports 1Password usage, signin and audit events to Microsoft Sentinel SIEM.

Running

First create a yaml file, such as config.yml:

log:
  level: INFO

microsoft:
  app_id: ""
  secret_key: ""
  tenant_id: ""
  subscription_id: ""
  resource_group: ""
  workspace_name: ""

  dcr:
    endpoint: ""
    rule_id: ""
    stream_name: ""

  expires_months: 6
  update_table: false

onepassword:
  api_token: ""

And now run the program from source code:

% make
go run ./cmd/... -config=dev.yml
INFO[0000] shipping logs                                 module=sentinel_logs table_name=OnePasswordLogs total=82
INFO[0002] shipped logs                                  module=sentinel_logs table_name=OnePasswordLogs
INFO[0002] successfully sent logs to sentinel            total=82

Or binary:

% one2sen -config=config.yml

Building

% make build

About

Go program that exports 1Password security events to Microsoft Sentinel SIEM.

Topics

sentinel siem 1password onepassword

Resources

Readme
Activity

Stars

4 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases 22

v1.9.0 Latest
Oct 13, 2024
+ 21 releases

Packages

 
 
 

Contributors 2

  •  
  •  

Languages