Recenlty starting working with the Sophos Central API and SIEM script provided by Sophos at
I am able to connect to the API and pull the logs into a local file but cannot get it to send to a remote Syslog.
This is the main reason for the script...
The error is below:
PS C:\Sophos-Central-SIEM-Integration-master> python .\siem.py
Config loaded, retrieving results for 'x-api-key: ######################'
Config retrieving results for 'Authorization: Basic ##################################################'
syslog is not supported on this platform
This is running on a Windows 10 machine with the correct version of Python.
Almost looks like it is looking for a local Syslog rather than the remote one specified?
Does this script intend to utilize a local syslog to forward to a remote one?
The config is:
This thread was automatically locked due to age.