Hi, I am new to Sophos and wanted to build a log collector to send data to my Elastic Cluster. I do know of the SIEM script but I want to build my own in either Node.JS or Go. I am opting to build my own collector because, in case my needs are not satisfied I will need to rework the SIEM script either way and I am more comfortable editing my own code.
I have setup a small home lab like environment and installed the Server Protection Software on one of my test servers. Now I need alerts to fetch from the API but I don't know how I can generate alerts in the first place.