Sentinelone AV integration

i am planning to integrate sentinelone AV with Graylog, Is anyone integrated? please guide me

Can anyone help me with this?

What type of integration do you think? Send a logs from aplication to parse it in graylog? What output format does sentinelone supports? Please send some examples of logs… Which version of graylog to you use? Be more verbose please, if you want some help…

Hi Shoothub,

I am thinking of, API based integration and graylog version is 3.1.
It supports Syslog output format but customer not ready for syslog so thiniking the possibility for API bases integration.
this sentinelone is cloud based.

Note: as of now, extracting the sample logs from sentinel is bit difficult, will share you once i have them

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.