Carbon Black Pack

This pack is targeted for collections of Carbon Black events
The Carbon_Black pipeline inside the pack includes Sample files for testing and multiple examples of Dropping events
Furthermore, the pipeline show example of shaping the events into JSON before sending the event to the Analytics store

Important Information

Carbon Black Event types details can be found here: 
https://www.carbonblack.com/products/vmware-carbon-black-cloud-endpoint/

What to Expect

Event reduction: Expect 30% reduction in total size using Drop or Sampling.
Event shaping: Expect the pack to shape the events into JSON format

Requirements

Before you begin, ensure that you have met the following requirements:

Create a Route with a filter for your Carbon Black Pack
Select the CriblCarbonBlack pack as the pipeline.

Release Notes

Version 0.5.0 - 2021-07-10

Carbon Black events pack Initial release! Support for: VMWare Carbon Black events

Contributing to the Pack

Discuss this pack on our Community Slack channel

Contact

The author of this pack is Raanan Dagan and can be contacted at [email protected].

License

This Pack uses the following license: Apache 2.0.

Name		Name	Last commit message	Last commit date
Latest commit History 1 Commit
data		data
default		default
LICENSE		LICENSE
README.md		README.md
package.json		package.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Carbon Black Pack

Important Information

What to Expect

Requirements

Release Notes

Version 0.5.0 - 2021-07-10

Contributing to the Pack

Contact

License

About

Releases

Packages

License

criblpacks/cribl-carbon-black

Folders and files

Latest commit

History

Repository files navigation

Carbon Black Pack

Important Information

What to Expect

Requirements

Release Notes

Version 0.5.0 - 2021-07-10

Contributing to the Pack

Contact

License

About

Topics

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Packages