Pinned Repositories
esm_event_lookaround
Query McAfee ESM API for events for an IP address around a timestamp
esm_full_backup
esm_healthmon
Monitor the health of an ESM
esm_powershell
esm_query_tester
Build and test McAfee ESM queries with a YAML template
esmcheckds2
Queries a McAfee ESM for inactive data sources.
gsuite2mfe
Send events from G Suite to McAfee SIEM
mfe2snow
Open ServiceNow tickets from McAfee ESM
pfsense-parser
pfsense parsing rules for McAfee SIEM
snow2
Custom SNOW integration
AW MFE Project Archive's Repositories
aw-mfe/gsuite2mfe
Send events from G Suite to McAfee SIEM
aw-mfe/esmcheckds2
Queries a McAfee ESM for inactive data sources.
aw-mfe/esm_event_lookaround
Query McAfee ESM API for events for an IP address around a timestamp
aw-mfe/mfe2snow
Open ServiceNow tickets from McAfee ESM
aw-mfe/pfsense-parser
pfsense parsing rules for McAfee SIEM
aw-mfe/esm_healthmon
Monitor the health of an ESM
aw-mfe/esm_full_backup
aw-mfe/esm_query_tester
Build and test McAfee ESM queries with a YAML template
aw-mfe/esm_powershell
aw-mfe/snow2
Custom SNOW integration
aw-mfe/BRO-parser
BRO parsing rules for the McAfee ESM
aw-mfe/elmex
Export ELM files back to original format
aw-mfe/esm_alarm_export
Dump ESM Alarms as CSV
aw-mfe/esm_close_cases
Automatcally close all open cases on McAfee ESM SIEM
aw-mfe/esm_o365_cfg
Small script to enable/disable Office 365 Activity API content type subscriptions.
aw-mfe/mfe_siem_tz_id_to_tz_db
Mapping ESM proprietary time zone IDs to the tz database
aw-mfe/mimecast_parser
McAfee ESM parsing rules for Mimecast
aw-mfe/sfdc2mfe
Pull salesforce.com daily logs.