graylog-fortigate-cef
PowerFGT
Our great sponsors
graylog-fortigate-cef | PowerFGT | |
---|---|---|
1 | 3 | |
14 | 99 | |
- | - | |
2.4 | 9.1 | |
about 1 year ago | 11 days ago | |
PowerShell | ||
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
graylog-fortigate-cef
-
I made a Graylog Content Pack for Fortigate CTF Logs - Feedback Requested
I set up a Graylog server to collect logs from a Fortigate on my home network, and I published a Content Pack on GitHub (and the Graylog Marketplace, but the listing won't update from GitHub for some reason - Graylog support is aware an investigating) for anyone to use. It works with Graylog Open, so you can do log collection and visualization for free. This is my first time using Graylog (work is a Splunk shop), so feedback is very welcome. Let me know what you think and what you'd like to see.
PowerFGT
- FortiGate - Checking for external access and security vulnerabilities
-
check-ha-synchronization-status with ansible / rest API
Are you running Analyzer (or Manager+Analyzer) too? why not pull from there? if not you can always script from PS https://github.com/FortiPower/PowerFGT if you are ok with Powershell. PowerFGT utilizes the REST API. might want to look at what they did and see how they are using the REST API. though the PowerFGT and PowerMGT Projects are getting pretty big now. your best bet is just use syslog or snmp traps unless your running some wonky HA setup (not directly connected L3 HA).
- FortiOS Rest API Documentation
What are some alternatives?
graylog - Free and open log management
psfalcon - PowerShell for CrowdStrike's OAuth2 APIs
DirectFire_Converter - DirectFire Firewall Converter - Network Security, Next-Generation Firewall Configuration Conversion, Firewall Syntax Translation and Firewall Migration Tool - supports Cisco ASA, Fortinet FortiGate (FortiOS), Juniper SRX (JunOS), SSG / Netscreen (ScreenOS) and WatchGuard (support for further devices in development). Similar to FortiConverter, SmartMove, Expedition etc.
Rapid7Nexpose - The most feature complete PowerShell module available for the Rapid7 Nexpose/InsightVM APIv3
arbor-monad-logger
Posh-ACME - PowerShell module and ACME client to create certificates from Let's Encrypt (or other ACME CA)
fortiscan - A high performance FortiGate SSL-VPN vulnerability scanning and exploitation tool.
z - Save time typing out directory paths in PowerShell by jumping around instead.
fortinet-azure-solutions - A set of Azure Templates for getting you started in Azure with Fortinet solutions. This repository is a place for beta releases and work on the latest templates to be published on github.com/fortinet or custom templates.
AdminToolbox - Repository for the AdminToolbox PowerShell Modules