This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Announcements
Webinar May 29th: Log Ingestion: Bindplane + Google SecOps
Log in to ask a question

Parsers using Python

Posted on 08-22-2024 03:45 AM
vishnu_manu
Bronze 4
Bronze 4
Reply posted on --/--/---- --:-- AM

Is it possible to create custom parsers by using only "Python" and not "Logstash"?

I have seen few pre-built parses which are written in Python, curious to know how to do this.

If yes, please post the documentation links that I can look into.

Solved Solved
0 1 172
Topic Labels
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
mikewilusz
Staff
Reply posted on --/--/---- --:-- AM

Take a look at this Medium post: https://medium.com/@thatsiemguy/creating-udm-objects-in-python-3cea4cfbcf34

You can definitely parse with Python (or any language), but keep in mind you'll have to host the Python code that does all of this. The parsers within SecOps can only be the ones that leverage our parsing language.

-mike

View solution in original post

Jump to Solution
1 REPLY 1

Posted on --/--/---- --:-- AM
mikewilusz
Staff
Reply posted on --/--/---- --:-- AM

Take a look at this Medium post: https://medium.com/@thatsiemguy/creating-udm-objects-in-python-3cea4cfbcf34

You can definitely parse with Python (or any language), but keep in mind you'll have to host the Python code that does all of this. The parsers within SecOps can only be the ones that leverage our parsing language.

-mike

Jump to Solution
Top Solution Authors
View all